Cybersecurity vulnerability in libxml2:2.9.4-r3
Mugane opened this issue · 0 comments
Mugane commented
This image contains the following vulnerability:
parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16931