CVE-2024-25062

Published: 2024-02-04T16:15Z

Last Modified: 2024-11-21T09:00Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt