CVE-2020-9926

Published: 02 April 2021

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, iCloud for Windows 7.20, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
libxml2
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 21.04 (Hirsute Hippo) Deferred
(2021-04-07)
Ubuntu 20.10 (Groovy Gorilla) Deferred
(2021-04-07)
Ubuntu 20.04 LTS (Focal Fossa) Deferred
(2021-04-07)
Ubuntu 18.04 LTS (Bionic Beaver) Deferred
(2021-04-07)
Ubuntu 16.04 LTS (Xenial Xerus) Deferred
(2021-04-07)
Ubuntu 14.04 ESM (Trusty Tahr) Deferred
(2021-04-07)