Description

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

Remediation

References

CVE-2020-24977

Related Vulnerabilities

WordPress Plugin WL Katalogsok PHP Object Injection (3.5.4)

WordPress Plugin Jekyll Exporter Remote Code Execution (2.2.0)

Oracle JRE CVE-2018-2637 Vulnerability (CVE-2018-2637)

Apache HTTP Server CVE-2004-0751 Vulnerability (CVE-2004-0751)

WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Multiple Vulnerabilities (6.9.9)

Severity

Medium

Classification

CVE-2020-24977 CWE-125 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Tags

Missing Update Known Vulnerabilities