suse · CVE-2017-16932

Quick triage

Priority: medium Published: 2021-05-30 14:04:25 UTC Updated: 2026-04-17 15:49:59 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2017-16932 severity moderate: SUSE including 254 source package names (24.394:libxml2-2-2.9.4-46.54.3, 26.458:libxml2-2-2.9.4-46.54.3, …), 383 product×package rows across 52 product lines (Container suse/ltss/sle12.5/sles12sp5, Container suse/sles12sp3, … (52 product lines)): Known Affected 231, Fixed 132, Known Not Affected 20.

Description:

parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.

cvelogic Threat Intelligence