CVE-2009-2414 (retired)

Priority
Description
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27,
and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause
a denial of service (application crash) via a large depth of element
declarations in a DTD, related to a function recursion, as demonstrated by
the Codenomicon XML fuzzing framework.
Assigned-to
kees
Package
Upstream:needs-triage
Package
Upstream:released (2.7.3.dfsg-2.1)
More Information

Updated: 2019-08-23 08:36:11 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)