ГлавнаяУязвимости → CVE-2022-49043
8.1высокая

CVE-2022-49043

Описание

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.

Затрагиваемое ПО
Xmlsoft Libxml2
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://github.com/php/php-src/issues/17467https://gitlab.gnome.org/GNOME/libxml2/-/commit/5a19e21605398cef6a8b1452477a8705cb41562bhttps://lists.debian.org/debian-lts-announce/2025/02/msg00028.html