QwikSec

Security Database

CVE

CWE

Training

CVE-2017-16932

Published: Nov 23, 2017

Modified: Jan 22, 2026

PUBLISHED

Description

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://blog.clamav.net/2018/07/clamav-01001-has-been-released.html

[debian-lts-announce] 20171130 [SECURITY] [DLA 1194-1] libxml2 security update

mailing-list

http://xmlsoft.org/news.html

vendor-advisory

https://github.com/GNOME/libxml2/commit/899a5d9f0ed13b8e32449a08a361e0de127dd961

https://bugzilla.gnome.org/show_bug.cgi?id=759579

[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

[debian-lts-announce] 20220408 [SECURITY] [DLA 2972-1] libxml2 security update

mailing-list

https://gitlab.gnome.org/GNOME/libxml2/-/commit/899a5d9f0ed13b8e32449a08a361e0de127dd961

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.