---

CVE-2018-11210 - log back

CVE-2018-11210 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Remote
Type	+ Arbitrary code execution
Description	+ TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::Parse function in libtinyxml2.so.
References	+ https://github.com/leethomason/tinyxml2/issues/675
Notes	+ This is not a security issue, the initial reporter made a mistake in the fuzzing code (passing a non-null terminated buffer without the size).