CVE-2009-2414

Priority
Description
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27,
and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause
a denial of service (application crash) via a large depth of element
declarations in a DTD, related to a function recursion, as demonstrated by
the Codenomicon XML fuzzing framework.
Assigned-to
kees
Notes
Package
Upstream:needs-triage
Package
Upstream:released (2.7.3.dfsg-2.1)
More Information

Updated: 2019-12-05 20:53:28 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)