{"id":"CVE-2024-34459","details":"An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c.","modified":"2026-03-20T12:36:25.883293Z","published":"2024-05-14T15:39:11.917Z","related":["MGASA-2024-0211","SUSE-SU-2024:2267-1","SUSE-SU-2024:2279-1","SUSE-SU-2024:2288-1","SUSE-SU-2024:2290-1","SUSE-SU-2025:20043-1","openSUSE-SU-2024:13971-1"],"references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/07/msg00014.html"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/INKSSLW5VMZIXHRPZBAW4TJUX5SQKARG/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5HVUXKYTBWT3G5DEEQX62STJQBY367NL/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VRDJCNQP32LV56KESUQ5SNZKAJWSZZRI/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5HVUXKYTBWT3G5DEEQX62STJQBY367NL/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/INKSSLW5VMZIXHRPZBAW4TJUX5SQKARG/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VRDJCNQP32LV56KESUQ5SNZKAJWSZZRI/"},{"type":"ADVISORY","url":"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.8"},{"type":"ADVISORY","url":"https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.7"},{"type":"REPORT","url":"https://gitlab.gnome.org/GNOME/libxml2/-/issues/720"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gnome/libxml2","events":[{"introduced":"0"},{"fixed":"58a973c40ba927e5ad941789723da7c47a2d60e3"},{"introduced":"5e9b167dce73bd6a804ab107ae4c4b95e6849597"},{"fixed":"0b6d8130737125ba45981d54be7f15fe398ad2e0"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.11.8"},{"introduced":"2.12.0"},{"fixed":"2.12.7"}]}}],"versions":["v2.12.0","v2.12.1","v2.12.2","v2.12.3","v2.12.4","v2.12.5","v2.12.6"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-34459.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}