CVE-2019-15903

Posted on 2019년 9월 4일2019년 9월 4일 by admin

CVE-2019-15903

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.

Source: CVE-2019-15903

답글 남기기 응답 취소