CNNVD-202508-766 Information

CNNVD ID

CNNVD-202508-766

Related CVE

CVE-2025-8732

• CNNVD Published: 2025-08-08

Description (Chinese)

libxml2是GNOME开源的一个用来解析XML文档的函数库。它用C语言写成，并且能为多种语言所调用，例如C语言，C++，XSH。 libxml2 2.14.5及之前版本存在安全漏洞，该漏洞源于不受控制的递归问题。

Description (English)

libxml2 is a function library for the analysis of XML documents from an open source of GNOME. It is written in C and can be called in many languages, such as C, C++, XSH. There is a security gap in libxml2 2.14.5 and earlier versions, which stems from uncontrolled regression.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

GNOME

Published

2025-08-08

Last Modified

2026-02-24

References

https://drive.google.com/file/d/1woIeYVcSQB_NwfEhaVnX6MedpWJ_nqWl/view?usp=drive_link https://gitlab.gnome.org/GNOME/libxml2/-/issues/958 https://gitlab.gnome.org/GNOME/libxml2/-/issues/958#note_2505853 https://vuldb.com/?ctiid.319228 https://vuldb.com/?id.319228 https://vuldb.com/?submit.622285 https://access.redhat.com/security/cve/cve-2025-8732