CVE-2015-7500 (Medium) detected in libxml2-v2.9.2 #5
Labels
security vulnerability
Security vulnerability detected by WhiteSource
Comments
mend-bolt-for-github
bot
added
the
security vulnerability
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
CVE-2015-7500 - Medium Severity Vulnerability
XML parser and markup toolkit
Library home page: https://github.com/GNOME/libxml2.git
Found in HEAD commit: e2ecf13c97834779d16859ebddc92a6dcdcb193f
* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.
The xmlParseMisc function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect entities boundaries and start tags.
Publish Date: 2015-12-15
URL: CVE-2015-7500
Base Score Metrics not available
Type: Upgrade version
Origin: https://nvd.nist.gov/vuln/detail/CVE-2015-7500
Release Date: 2015-12-15
Fix Resolution: 2.9.3
Step up your Open Source Security Game with WhiteSource here
The text was updated successfully, but these errors were encountered: