Xml Libxml Project

xml-libxml_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Xml Libxml

xml-libxml

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-10672 2Debian Xml Libxml Project 2Debian Linux Xml Libxml May 13, 2026 Jun 29, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.
CVE-2015-3451 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraOpensuse+2 more May 6, 2026 May 12, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) loa...Show more The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) load_xml function.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2017-10672

2Debian

Xml Libxml Project

2Debian Linux

Xml Libxml

May 13, 2026

Jun 29, 2017

N/A· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

CVE-2015-3451

5Canonical

DebianFedoraproject+2 more

5Debian Linux

FedoraOpensuse+2 more

May 6, 2026

May 12, 2015

N/A· v4

N/A· v3

5.0 MEDIUM· v2

The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) loa...Show more