Security vulnerability CVE-2024-40896 in libxml2 in Strawberry Perl Distribution #229

TheOncomingStorm57 · 2025-01-03T11:58:50Z

TheOncomingStorm57
Jan 3, 2025

Security vulnerability CVE-2024-40896 in libxml2 (A remote, anonymous attacker can exploit a vulnerability in libxml2 to manipulate files or cause a denial of service.)
Our scanners have detected that Strawberry Perl 5.32.1.1 with libxml2-2.9.9 (and also in the current 5.40 with libxml2-2.12.6) uses versions with a critical security vulnerability. Will you be releasing an update for this?

Answered by shawnlaffan

Jan 3, 2025

Thanks for this.

SP 5.32 is out of support so is unlikely to be updated.

I'll look into building an updated libxml for 5.38 and 5.40.

View full answer

shawnlaffan · 2025-01-03T22:21:37Z

shawnlaffan
Jan 3, 2025
Collaborator

Thanks for this.

SP 5.32 is out of support so is unlikely to be updated.

I'll look into building an updated libxml for 5.38 and 5.40.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Security vulnerability CVE-2024-40896 in libxml2 in Strawberry Perl Distribution #229

{{title}}

Replies: 1 comment

{{title}}

Select a reply

Security vulnerability CVE-2024-40896 in libxml2 in Strawberry Perl Distribution #229

TheOncomingStorm57 Jan 3, 2025

Replies: 1 comment

shawnlaffan Jan 3, 2025 Collaborator

TheOncomingStorm57
Jan 3, 2025

shawnlaffan
Jan 3, 2025
Collaborator