An use-after-free was found in libxml2 in xmlXIncludeDoProcess() in xinclude.c when processing crafted files.
Created libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1954243]
Created mingw-libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1954244]
Name: zodf0055980 (SQLab NCTU Taiwan)
This flaw is out of support scope for Red Hat Enterprise Linux 6 and 7. To learn more about Red Hat Enterprise Linux support life cycles, please see https://access.redhat.com/support/policy/updates/errata .
This issue has been addressed in the following products:
Red Hat Enterprise Linux 8
Via RHSA-2021:2569 https://access.redhat.com/errata/RHSA-2021:2569
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):