PT-2023-3193 · Libxml2+12 · Libxml2+12

Published

2023-04-11

·

Updated

2026-03-13

·

CVE-2023-29469

CVSS v2.0

7.8

High

VectorAV:N/AC:L/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions libxml2 versions prior to 2.10.4
Description The issue is related to the xmlDictComputeFastKey function in dict.c, which can produce non-deterministic values when hashing empty dict strings in a crafted XML document. This can lead to various logic and memory errors, such as a double free, allowing a remote attacker to cause a denial of service condition. The behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible, not solely the '0' value.
Recommendations For libxml2 versions prior to 2.10.4, update to version 2.10.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of crafted XML documents to minimize the risk of exploitation. Avoid using the xmlDictComputeFastKey function with empty dict strings until the issue is resolved.

Fix

DoS

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2023:4349
ALSA-2023:4529
ALT-PU-2023-1674
ALT-PU-2025-3794
ALT-PU-2025-3838
AZL-26282
BDU:2023-03302
CESA-2023_4529
CVE-2023-29469
DLA-3405-1
DSA-5391-1
GHSA-PXVG-2QJ5-37JQ
MGASA-2023-0157
OESA-2023-1262
OPENSUSE-SU-2024:12877-1
OPENSUSE-SU-2024:12963-1
OPENSUSE-SU-2024:13440-1
OPENSUSE-SU-2024:14174-1
OPENSUSE-SU-2025:14697-1
OPENSUSE-SU-2026:10356-1
RHSA-2023:4349
RHSA-2023:4529
RHSA-2023_4349
RHSA-2023_4529
RHSA-2024:0413
RLSA-2023:4529
ROSA-SA-2023-2319
ROSA-SA-2024-2321
SUSE-SU-2023:2048-1
SUSE-SU-2023:2053-1
SUSE-SU-2023:2054-1
SUSE-SU-2023:3665-1
USN-6028-1
USN-6028-2

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Ibm Aix
Linuxmint
Apple Macos
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Libxml2