CVE-2021-3541
conan/libxml2
Improper Restriction of Recursive Entity References in DTDs (XML Entity Expansion)
A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.
All versions before 2.9.11
Upgrade to version 2.9.12 or above.
2021-07-13
source |