---

CVE-2018-20005 - log back

CVE-2018-20005 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Local
Type	+ Arbitrary code execution
Description	+ An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after-free in mxmlWalkNext in mxml-search.c, as demonstrated by mxmldoc.
References	+ https://github.com/michaelrsweet/mxml/commit/eadf40fa7049e43dd5757df5945e9ec1c491e8a4 + https://github.com/fouzhe/security/tree/master/mxml#heap-use-after-free-in-function-mxmlwalknext
Notes