xml parsing

A deep parsing bug in polkit’s XML policy handler can be triggered by a crafted .policy file with unusually deep nesting (32 or more elements), producing an out‑of‑bounds write that can crash polkit’s daemon and — in the worst case — might be leveraged toward code execution; vendors and upstream...

libxml2 contained a subtle but real use‑after‑free in its tree manipulation code that was assigned CVE‑2023‑45322 — a bug that only triggers after a specific memory allocation fails, but which nevertheless exposes real availability and stability risks for any software that embeds the library...

A small, innocuous-looking malformed XML string can crash an XML parser and take a service offline — that’s the practical reality behind CVE-2023-34411, a high‑severity denial‑of‑service vulnerability in the widely used Rust crate xml-rs that affected versions 0.8.9 through 0.8.13 and was fixed...