CVE-2017-8872 libxml2

Metadata

medium
6.4
libxml2
CVE-2017-8872
2017-06-18 07:52
CVE-2017-8872
2017-06-16 19:23
2017-05-17 05:03
2017-05-11 05:03
2017-05-10 23:56

Description

The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service (buffer over-read) or information disclosure.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
buster libxml2 None
jessie libxml2 None
sid libxml2 None
stretch libxml2 None
wheezy libxml2 None