Wind River Support Network

HomeDefectsLIN1022-14978
Acknowledged

LIN1022-14978 : Security Advisory - libxml2 - CVE-2025-32415

Created: Apr 18, 2025    Updated: Jun 9, 2025
Found In Version: 10.22.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.

CREATE(Triage):(User=admin) CVE-2025-32415 (https://nvd.nist.gov/vuln/detail/CVE-2025-32415)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube