CVE-2021-3516Use After Free in Xmllint

CWE-416Use After Free9 documents9 sources
Severity
7.8HIGHNVD
GHSA7.5
EPSS
0.4%
top 41.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Xmlsoft Libxml2Xmlsoft XmllintDebian Linux+3 more
Timeline
PublishedJun 1
Latest updateFeb 29

Description

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDxmlsoft/xmllint< 2.9.11
Debianxmlsoft/libxml2< 2.9.10+dfsg-6.6+3
CVEListV5xmlsoft/libxml2libxml2 2.9.11

Also affects: Debian Linux 9.0, Fedora 33, 34, Enterprise Linux 6.0, 7.0, 8.0

Patches

Patch: gitlab.gnome.orgPatch: www.oracle.comPatch: gitlab.gnome.org

🔴Vulnerability Details

4
GHSA
GHSA-cfj9-6cq4-25vj: There's a flaw in libxml2's xmllint in versions before 22022-05-24
CVEList
CVE-2021-3516: There's a flaw in libxml2's xmllint in versions before 22021-06-01
OSV
CVE-2021-3516: There's a flaw in libxml2's xmllint in versions before 22021-06-01
GHSA
Nokogiri updates packaged dependency on libxml2 from 2.9.10 to 2.9.122021-05-17

📋Vendor Advisories

3
Ubuntu
libxml2 vulnerabilities2021-06-17
Red Hat
libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c2021-04-21
Debian
CVE-2021-3516: libxml2 - There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who i...2021

💬Community

1
Bugzilla
CVE-2021-46978 kernel: KVM: nVMX: Always make an attempt to map eVMCS after migration2024-02-29
CVE-2021-3516 — Use After Free in Xmlsoft Xmllint | cvebase