CVE-2015-7942 (retired)

Priority
Description
The xmlParseConditionalSections function in parser.c in libxml2 does not
properly skip intermediary entities when it stops parsing invalid input,
which allows context-dependent attackers to cause a denial of service
(out-of-bounds read and crash) via crafted XML data, a different
vulnerability than CVE-2015-7941.
Assigned-to
mdeslaur
More Information

Updated: 2019-08-23 09:07:58 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)