« List of all CVEs

CVE-2025-27113

Published: 2/18/2025 Last updated: 11/3/2025 Reserved: 2/18/2025

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Metrics

Version Score Severity Vector String
3.1 2.9 Low CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Opam packages affected (5)

bap-llvm conf-gtksourceview conf-gtksourceview3 conf-librsvg2 lablgtk3-gtkspell3

Products affected (2)

Product Vendor Version
libxml2 xmlsoft < 10.0.14393.7606
libxml2 xmlsoft <= 4.1.2

References (22)