Security Advisory

CVE-2021-27918

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-10 23:54:43

Last updated 2024-08-03 21:33:16

Assigner mitre

State PUBLISHED

Description

encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, DecodeElement, or Skip method.

← Browse all CVEs View on cve.org ↗