suse · CVE-2017-10672

Quick triage

Priority: medium Published: 2021-05-30 13:58:17 UTC Updated: 2026-04-17 16:05:28 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-10672 severity moderate: SUSE including 2 source package names (perl-XML-LibXML-1.66-3.3.1, perl-XML-LibXML-2.0019-6.3.5), 37 product×package rows across 37 product lines (Image SLES12-SP5-Azure-BYOS, Image SLES12-SP5-Azure-Basic-On-Demand, … (37 product lines)): Fixed 37.

Description:

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

cvelogic Threat Intelligence