vulnerability
Alpine Linux: CVE-2024-25062: Use After Free
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Feb 4, 2024 | Mar 26, 2024 | Dec 5, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Feb 4, 2024
Added
Mar 26, 2024
Modified
Dec 5, 2025
Description
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
Solutions
alpine-linux-upgrade-libxml2alpine-linux-upgrade-qt6-qtwebengine
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.