CVE-2025-49796Out-of-bounds Read in Libxml2

CWE-125Out-of-bounds Read15 documents11 sources
Severity
9.1CRITICALNVD
EPSS
1.8%
top 17.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Xmlsoft Libxml2NokogiriDebian Libxml2+3 more
Timeline
PublishedJun 16
Latest updateJan 15

Description

A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages7 packages

debiandebian/libxml2< libxml2 2.9.14+dfsg-1.3~deb12u3 (bookworm)
Debianxmlsoft/libxml2< 2.9.10+dfsg-6.7+deb11u8+3
Ubuntuxmlsoft/libxml2< 2.9.13+dfsg-1ubuntu0.8+5

🔴Vulnerability Details

5
OSV
libxml2 vulnerabilities2025-08-14
OSV
Nokogiri patches vendored libxml2 to resolve multiple CVEs2025-07-21
GHSA
Nokogiri patches vendored libxml2 to resolve multiple CVEs2025-07-21
OSV
CVE-2025-49796: A vulnerability was found in libxml22025-06-16
GHSA
GHSA-83xx-9f6p-vwfj: A vulnerability was found in libxml22025-06-16

📋Vendor Advisories

6
Oracle
Oracle Oracle Financial Services Applications Risk Matrix: Reports (libxml2) — CVE-2025-497962026-01-15
Oracle
Oracle Oracle Communications Applications Risk Matrix: Security (libxml2) — CVE-2025-497962025-10-15
Ubuntu
libxml2 vulnerabilities2025-08-14
Red Hat
libxml: Type confusion leads to Denial of service (DoS)2025-06-11
Microsoft
Libxml: type confusion leads to denial of service (dos)2025-06-10

🕵️Threat Intelligence

2
Qualys
Oracle Critical Patch Update, October 2025 Security Update Review2025-10-23
Qualys
Oracle Critical Patch Update, October 2025 Security Update Review | Qualys2025-10-23

💬Community

1
Bugzilla
CVE-2025-49796 libxml: Type confusion leads to Denial of service (DoS)2025-06-12