libxml2 Denial of Service Vulnerability

info
discussion
exploit
solution
references

libxml2 Denial of Service Vulnerability

The libxml2 library is prone to a denial-of-service vulnerability caused by an error when handling files using entities in entity definitions.

An attacker can exploit this issue to cause the library to consume an excessive amount of memory, denying service to legitimate users.

The issue affects libxml2 2.7 prior to 2.7.2.