Acknowledged
Created: Jun 17, 2025
Updated: Aug 15, 2025
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace
A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.
CREATE(Triage):(User=lchen-cn) CVE-2025-49796 (https://nvd.nist.gov/vuln/detail/CVE-2025-49796)
