FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-06-26 16:42:54 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
fdd02be0-3e50-11f0-95d4-00a098b42aeblibxml2 -- Stack-based Buffer Overflow

cve@mitre.org reports:

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.


Discovery 2025-02-18
Entry 2025-05-31
libxml2
< 2.11.9_1

>= 2.12.0 lt 2.12.10

>= 2.13.0 lt 2.13.6

CVE-2025-24928
https://nvd.nist.gov/vuln/detail/CVE-2025-24928
bd2af307-3e50-11f0-95d4-00a098b42aeblibxml2 -- Use After Free

cve@mitre.org reports:

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.


Discovery 2025-02-18
Entry 2025-05-31
libxml2
< 2.11.9_1

>= 2.12.0 lt 2.12.10

>= 2.13.0 lt 2.13.6

CVE-2024-56171
https://nvd.nist.gov/vuln/detail/CVE-2024-56171