PT-2019-5585 · Libxml2+6 · Libxml2+6

Publicado

2019-08-20

Atualizado

2026-03-13

CVE-2019-20388

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.10

Description The issue is related to a memory leak in the xmlschemas.c component of the libxml2 library. This occurs due to a resource not being released after its valid lifetime has expired. Exploitation of this issue could allow a remote attacker to cause a denial of service.

Recommendations For libxml2 version 2.9.10, consider applying a patch or updating to a newer version that fixes the memory leak in the xmlSchemaPreRun function in xmlschemas.c to prevent potential denial of service attacks.

Correção

Memory Leak

Improper Resource Release

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-401CWE-404

Identificadores relacionados

ALT-PU-2020-3218

ALT-PU-2020-3244

ALT-PU-2021-1579

ALT-PU-2021-2057

ALT-PU-2021-2997

ALT-PU-2021-3332

ALT-PU-2023-4266

ALT-PU-2024-7812

BDU:2020-04514

CESA-2020_3996

CESA-2020_4479

CVE-2019-20388

DLA-2369-1

MGASA-2020-0101

OPENSUSE-SU-2020:0681-1

OPENSUSE-SU-2020_0681-1

OPENSUSE-SU-2024:11016-1

OPENSUSE-SU-2024:11340-1

OPENSUSE-SU-2024:11912-1

OPENSUSE-SU-2024:13165-1

OPENSUSE-SU-2024:14174-1

OPENSUSE-SU-2025:14697-1

OPENSUSE-SU-2026:10356-1

RHSA-2020:2644

RHSA-2020:3996

RHSA-2020:4479

RHSA-2020_3996

RHSA-2020_4479

SUSE-SU-2020:1299-1

SUSE-SU-2020:2609-1

SUSE-SU-2021:14729-1

SUSE-SU-2021_14729-1

USN-4991-1

Produtos afetados

Alt Linux

Centos

Linuxmint

Red Hat

Suse

Ubuntu

Libxml2

PT-2019-5585 · Libxml2+6 · Libxml2+6

CVE-2019-20388

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 124