Home
Packages
Report
Policy
Login
Signup
« List of all CVEs
CVE-2022-23308
Published:
2/26/2022
Last updated:
5/5/2025
Reserved:
1/17/2022
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
CNA assigner:
mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca)
Requested by:
n/a
Metrics
Version
Score
Severity
Vector String
3.1
7.5
High
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Opam packages affected (5)
bap-llvm
conf-gtksourceview
conf-gtksourceview3
conf-librsvg2
lablgtk3-gtkspell3
Products affected (1)
Product
Vendor
Version
n/a
n/a
21.0 ap241133
References (38)
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LA3MWWAYZADWJ5F6JOUBX65UZAMQB7RF/
https://lists.debian.org/debian-lts-announce/2022/04/msg00004.html
http://seclists.org/fulldisclosure/2022/May/33
http://seclists.org/fulldisclosure/2022/May/37
http://seclists.org/fulldisclosure/2022/May/35
http://seclists.org/fulldisclosure/2022/May/38
http://seclists.org/fulldisclosure/2022/May/36
http://seclists.org/fulldisclosure/2022/May/34
https://www.oracle.com/security-alerts/cpujul2022.html
https://support.apple.com/kb/HT213257
https://support.apple.com/kb/HT213256
https://support.apple.com/kb/HT213255
https://gitlab.gnome.org/GNOME/libxml2/-/blob/v2.9.13/NEWS
https://github.com/GNOME/libxml2/commit/652dd12a858989b14eed4e84e453059cd3ba340e
https://security.netapp.com/advisory/ntap-20220331-0008/
https://support.apple.com/kb/HT213253
https://support.apple.com/kb/HT213258
https://support.apple.com/kb/HT213254
https://security.gentoo.org/glsa/202210-03
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LA3MWWAYZADWJ5F6JOUBX65UZAMQB7RF/
https://lists.debian.org/debian-lts-announce/2022/04/msg00004.html
http://seclists.org/fulldisclosure/2022/May/33
http://seclists.org/fulldisclosure/2022/May/37
http://seclists.org/fulldisclosure/2022/May/35
http://seclists.org/fulldisclosure/2022/May/38
http://seclists.org/fulldisclosure/2022/May/36
http://seclists.org/fulldisclosure/2022/May/34
https://www.oracle.com/security-alerts/cpujul2022.html
https://support.apple.com/kb/HT213257
https://support.apple.com/kb/HT213256
https://support.apple.com/kb/HT213255
https://gitlab.gnome.org/GNOME/libxml2/-/blob/v2.9.13/NEWS
https://github.com/GNOME/libxml2/commit/652dd12a858989b14eed4e84e453059cd3ba340e
https://security.netapp.com/advisory/ntap-20220331-0008/
https://support.apple.com/kb/HT213253
https://support.apple.com/kb/HT213258
https://support.apple.com/kb/HT213254
https://security.gentoo.org/glsa/202210-03