Launchpad CVE tracker

CVE 2023-28484

In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c.

Related bugs and status

CVE-2023-28484 (Candidate) is related to these bugs:

Bug #2021462: [Debian] Medium CVE: CVE-2023-28484/CVE-2023-29469: libxml2: multiple CVEs

Summary				In	Importance	Status
	2021462	[Debian] Medium CVE: CVE-2023-28484/CVE-2023-29469: libxml2: multiple CVEs		StarlingX	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://gitlab.gnome.o...
MISC: https://gitlab.gnome.o...
MLIST: [debian-lts-announce] ...
CONFIRM: https://security.netap...
CONFIRM: https://security.netap...

Launchpad.net

CVE 2023-28484

Related bugs and status

Related bugs

References