View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-4571 severity low: SUSE including 6 source package names (libmxml1-2.10-1.1, libmxml1-2.5-24.3.1, libmxml1-32bit-2.10-1.1, mxml-2.10-1.1, mxml-2.5-24.3.1, mxml-devel-2.10-1.1), 6 product×package rows across 2 product lines (SUSE Linux Enterprise Software Development Kit 11 SP4, openSUSE Tumbleweed): Fixed 6.
The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file.