USN-6542-1: TinyXML vulnerability
7 December 2023
TinyXML could be made to crash if it opened a specially crafted file.
- tinyxml - A simple, small, minimal, C++ XML parser
Wang Zhong discovered that TinyXML incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to cause a
denial of service.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.