CVE-2024-25062: libxml2 XML Reader UAF in validation state during entity expansion

CVE-2024-25062: Use-After-Free in libxml2 XML Reader with DTD Validation and XInclude

CVE-2023-29469: NULL dereference in xmlDictComputeFastKey with empty dict strings

CVE-2021-3518 libxml2 use-after-free in xmlXIncludeCopyNode during recursive XInclude

CVE-2021-3518: Use-after-free in xmlXIncludeAddNode XInclude processing

CVE-2022-40304: libxml2 dict corruption via entity reference cycle (content[0]=0 on dict-owned pointer)

CVE-2022-40304: Dictionary Corruption via Entity Reference Cycles in libxml2 v2.9.14

CVE-2022-40303: Integer overflow in libxml2 xmlParseCharData → xmlBufAdd with XML_PARSE_HUGE

CVE-2023-0286: OpenSSL X.509 x400Address type confusion — ASN1_STRING decoded, read as ASN1_TYPE

CVE-2023-0286: Type Confusion in OpenSSL X.509 GENERAL_NAME Processing

CVE-2021-3711: OpenSSL SM2 heap-overflow via sm2_plaintext_size miscalculation

CVE-2022-3602: OpenSSL Punycode Decoder Stack Buffer Overflow

CVE-2022-0778 — OpenSSL BN_mod_sqrt infinite loop on non-prime modulus via crafted EC certificate

CVE-2022-0778: Infinite loop in BN_mod_sqrt Tonelli-Shanks algorithm

CVE-2014-0160 Heartbleed: missing bounds check in tls1_process_heartbeat enables OOB heap read

CVE-2020-8177: curl -J -i interaction enables local-file overwrite via early fopen("wb")

CVE-2023-27534: curl SFTP path traversal via weak tilde-prefix check in Curl_getworkingpath

CVE-2023-38545: Heap Buffer Overflow in SOCKS5 Hostname Handling

glibc CVE-2022-23218: Stack Buffer Overflow in clnt_create() with UNIX socket paths

CVE-2021-35942: Integer overflow in glibc wordexp() w_addword leads to heap overflow