Nixpkgs security tracker
Permalink
CVE-2026-6732
6.5 MEDIUM
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Adjacent (A)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Adjacent (A)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
Activity log
- Created suggestion
Libxml2: libxml2: denial of service via crafted xsd-validated document
A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition (XSD) validated document that includes an internal entity reference. An attacker could exploit this by providing a malicious document, leading to a type confusion error that causes the application to crash. This results in a denial of service (DoS), making the affected system or application unavailable.
References
Affected products
rhcos
libxml2
Matching in nixpkgs
pkgs.libxml2
XML parsing library for C
pkgs.libxml2_13
XML parsing library for C
pkgs.libxml2Python
None
pkgs.sbclPackages.cl-libxml2
None
-
nixos-unstable libxml2-20130615-git
- nixpkgs-unstable libxml2-20130615-git
- nixos-unstable-small libxml2-20130615-git
-
nixos-25.11 libxml2-20130615-git
- nixos-25.11-small libxml2-20130615-git
- nixpkgs-25.11-darwin libxml2-20130615-git
pkgs.perlPackages.AlienLibxml2
Install the C libxml2 library on your system
-
nixos-unstable Libxml2-0.19
- nixpkgs-unstable Libxml2-0.19
- nixos-unstable-small Libxml2-0.19
-
nixos-25.11 Libxml2-0.19
- nixos-25.11-small Libxml2-0.19
- nixpkgs-25.11-darwin Libxml2-0.19
pkgs.python312Packages.libxml2
XML parsing library for C
pkgs.python313Packages.libxml2
XML parsing library for C
pkgs.python314Packages.libxml2
XML parsing library for C
pkgs.perl5Packages.AlienLibxml2
Install the C libxml2 library on your system
-
nixos-unstable Libxml2-0.19
- nixpkgs-unstable Libxml2-0.19
- nixos-unstable-small Libxml2-0.19
pkgs.perl538Packages.AlienLibxml2
Install the C libxml2 library on your system
-
nixos-25.11 Libxml2-0.19
- nixos-25.11-small Libxml2-0.19
- nixpkgs-25.11-darwin Libxml2-0.19
pkgs.perl540Packages.AlienLibxml2
Install the C libxml2 library on your system
-
nixos-25.11 Libxml2-0.19
- nixos-25.11-small Libxml2-0.19
- nixpkgs-25.11-darwin Libxml2-0.19
Package maintainers
-
@jtojnar Jan Tojnar <jtojnar@gmail.com>
-
@gepbird Gutyina Gergő <gutyina.gergo.2@gmail.com>
-
@7c6f434c Michael Raskin <7c6f434c@mail.ru>
-
@hraban Hraban Luyat <hraban@0brg.net>
-
@lukego Luke Gorrie <luke@snabb.co>
-
@nagy Daniel Nagy <danielnagy@posteo.de>
-
@Uthar Kasper Gałkowski <galkowskikasper@gmail.com>