CVE-2017-16932
Published: 23 November 2017
parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.
Priority
Low
CVSS 3 base score: 7.5
Status
| Package | Release | Status |
|---|---|---|
|
libxml2 Launchpad, Ubuntu, Debian |
artful |
Released
(2.9.4+dfsg1-4ubuntu1.1)
|
| bionic |
Released
(2.9.4+dfsg1-6.1ubuntu1.2)
|
|
| precise |
Released
(2.7.8.dfsg-5.1ubuntu4.19)
|
|
| trusty |
Released
(2.9.1+dfsg1-3ubuntu4.11)
|
|
| upstream |
Needs triage
|
|
| xenial |
Released
(2.9.3+dfsg1-1ubuntu0.4)
|
|
| zesty |
Released
(2.9.4+dfsg1-2.2ubuntu0.2)
|