Jump to content

Advisories MDVSA-2010:243: libxml2


Recommended Posts

A vulnerability was discovered and corrected in libxml2:


libxml2 before 2.7.8 reads from invalid memory locations

during processing of malformed XPath expressions, which allows

context-dependent attackers to cause a denial of service (application

crash) via a crafted XML document (CVE-2010-4008).


Packages for 2009.0 are provided as of the Extended Maintenance

Program. Please visit this link to learn more:



The updated packages have been patched to correct these issues.

Link to comment
Share on other sites

This topic is now closed to further replies.

  • Create New...