FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxml2 -- heap buffer overflow

Affected packages
libxml2 < 2.7.8_2
linux-f10-libxml2 < 2.7.8_2

Details

VuXML ID 57f1a624-6197-11e1-b98c-bcaec565249c
Discovery 2012-01-05
Entry 2012-02-27

Google chrome team reports:

Heap-based buffer overflow in libxml2, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

References

CVE Name CVE-2011-3919
URL http://googlechromereleases.blogspot.com/2012/01/stable-channel-update.html