CVE-2024-34459

Name
CVE-2024-34459
Description
An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c.
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
cve@mitre.org https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
cve@mitre.org https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.8
cve@mitre.org https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.7

Match rules

CPE URI Source package Min version Max version

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
libxml2 3.19-main 2.11.8-r0 Carlo Landmeter <clandmeter@alpinelinux.org> fixed
libxml2 3.18-main 2.11.8-r0 Carlo Landmeter <clandmeter@alpinelinux.org> fixed
libxml2 3.20-main 2.12.7-r0 Carlo Landmeter <clandmeter@alpinelinux.org> fixed