FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxml2 -- Out-of-bounds memory access

Affected packages
libxml2 < 2.14.2

Details

VuXML ID 2926c487-3e53-11f0-95d4-00a098b42aeb
Discovery 2025-04-08
Entry 2025-05-31

cve@mitre.org reports:

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindings) because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters.

[source]

References

CVE Name CVE-2025-32414
URL https://nvd.nist.gov/vuln/detail/CVE-2025-32414

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.