CVE-2021-3541 log

Source
Severity Low
Remote Yes
Type Denial of service
Description
A security issue was found in libxml2 before version 2.9.11. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-1883 libxml2 2.9.10-9 2.9.11-1 Medium Testing FS#70822
References
https://bugzilla.redhat.com/show_bug.cgi?id=1950515
https://blog.hartwork.org/posts/cve-2021-3541-parameter-laughs-fixed-in-libxml2-2-9-11/
https://gitlab.gnome.org/GNOME/libxml2/-/issues/228
https://gitlab.gnome.org/GNOME/libxml2/-/commit/8598060bacada41a0eb09d95c97744ff4e428f8e