Launchpad CVE tracker

CVE 2020-24977

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

Related bugs and status

CVE-2020-24977 (Candidate) is related to these bugs:

Bug #1895839: CVE-2020-24977

		In	Importance	Status
1895839	CVE-2020-24977	libxml2 (Ubuntu)	High	Fix Released
1895839	CVE-2020-24977	libxml2 (Debian)	Unknown	Fix Released
1895839	CVE-2020-24977	libxml2 (Ubuntu Hirsute)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://gitlab.gnome.o...
MLIST: [debian-lts-announce] ...
SUSE: openSUSE-SU-2020:1430
FEDORA: FEDORA-2020-35087800be
FEDORA: FEDORA-2020-7dd29dacad
FEDORA: FEDORA-2020-b60dbdd538
SUSE: openSUSE-SU-2020:1465
CONFIRM: https://security.netap...
FEDORA: FEDORA-2020-20ab468a33
FEDORA: FEDORA-2020-be489044df
FEDORA: FEDORA-2020-dd2fc19b78
MISC: https://gitlab.gnome.o...
MISC: https://security.netap...
FEDORA: FEDORA-2020-935f62c3d9
FEDORA: FEDORA-2020-7773c53bc8
FEDORA: FEDORA-2020-ff317550e4
FEDORA: FEDORA-2020-b6aaf25741
MLIST: [mina-dev] 20210225 [j...
GENTOO: GLSA-202107-05
MISC: https://www.oracle.com...
MISC: https://www.oracle.com...
MISC: https://www.oracle.com...

Launchpad.net

CVE 2020-24977

Related bugs and status

Related bugs

References