JLSEC-2025-90

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a ...

JLSEC Published: Oct 17, 2025
Modified: Oct 31, 2025
Affected Packages: XML2_jll < 2.13.8+0, >= 2.14.1+0, < 2.14.4+0
Aliases / Upstream: CVE-2025-32415

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.

References

https://gitlab.gnome.org/GNOME/libxml2/-/issues/890
https://gitlab.gnome.org/GNOME/libxml2/-/issues/890