PT-2019-5585 · Libxml2+6 · Libxml2+6

Published

2019-08-20

Updated

2026-03-13

CVE-2019-20388

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.10

Description The issue is related to a memory leak in the xmlschemas.c component of the libxml2 library. This occurs due to a resource not being released after its valid lifetime has expired. Exploitation of this issue could allow a remote attacker to cause a denial of service.

Recommendations For libxml2 version 2.9.10, consider applying a patch or updating to a newer version that fixes the memory leak in the xmlSchemaPreRun function in xmlschemas.c to prevent potential denial of service attacks.

Fix

Memory Leak

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401CWE-404

Related Identifiers

ALT-PU-2020-3218

ALT-PU-2020-3244

ALT-PU-2021-1579

ALT-PU-2021-2057

ALT-PU-2021-2997

ALT-PU-2021-3332

ALT-PU-2023-4266

ALT-PU-2024-7812

BDU:2020-04514

CESA-2020_3996

CESA-2020_4479

CVE-2019-20388

DLA-2369-1

MGASA-2020-0101

OPENSUSE-SU-2020:0681-1

OPENSUSE-SU-2020_0681-1

OPENSUSE-SU-2024:11016-1

OPENSUSE-SU-2024:11340-1

OPENSUSE-SU-2024:11912-1

OPENSUSE-SU-2024:13165-1

OPENSUSE-SU-2024:14174-1

OPENSUSE-SU-2025:14697-1

OPENSUSE-SU-2026:10356-1

RHSA-2020:2644

RHSA-2020:3996

RHSA-2020:4479

RHSA-2020_3996

RHSA-2020_4479

SUSE-SU-2020:1299-1

SUSE-SU-2020:2609-1

SUSE-SU-2021:14729-1

SUSE-SU-2021_14729-1

USN-4991-1

Affected Products

Alt Linux

Centos

Linuxmint

Red Hat

Suse

Ubuntu

Libxml2

PT-2019-5585 · Libxml2+6 · Libxml2+6

CVE-2019-20388

Weakness Enumeration

Related Identifiers

Affected Products

References · 124