CVE-2017-7376: Improper Restriction of Operations within the Bounds of a Memory Buffer

February 19, 2018 (updated May 17, 2019)

Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.

References

nvd.nist.gov/vuln/detail/CVE-2017-7376

Detect and mitigate CVE-2017-7376 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →