Quick Links

Re: BUG #16793: Libxml2 contains a null pointer dereference flaw in xpath.c

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	srinivasg(at)jfrog(dot)com
Cc:	pgsql-bugs(at)lists(dot)postgresql(dot)org
Subject:	Re: BUG #16793: Libxml2 contains a null pointer dereference flaw in xpath.c
Date:	2020-12-28 15:14:10
Message-ID:	1598376.1609168450@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-bugs

PG Bug reporting form <noreply(at)postgresql(dot)org> writes:
> Libxml2 contains a null pointer dereference flaw in xpath.c that is
> triggered when handling errors for xpointer expressions. this may allow a
> context-dependent attacker to crash a process linked against the library.

Why are you reporting this here, and not to the libxml2 authors?
There's nothing we can do about it.

regards, tom lane

In response to

BUG #16793: Libxml2 contains a null pointer dereference flaw in xpath.c at 2020-12-28 06:41:47 from PG Bug reporting form

Browse pgsql-bugs by date

	From	Date	Subject
Next Message	Tom Lane	2020-12-28 17:14:46	Re: Missing compiled default for channel_binding param from PQconndefaults
Previous Message	Michael Paquier	2020-12-28 13:22:42	Re: Large objects and out-of-memory