{"id":"OSV-2021-777","summary":"Heap-use-after-free in xmlAddNextSibling","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34461\n\n```\nCrash type: Heap-use-after-free READ 4\nCrash state:\nxmlAddNextSibling\nxmlXIncludeCopyRange\nxmlXIncludeCopyXPointer\n```\n","modified":"2026-05-24T14:19:53.738342Z","published":"2021-05-20T00:00:30.166614Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=34461"}],"affected":[{"package":{"name":"libxml2","ecosystem":"OSS-Fuzz","purl":"pkg:generic/libxml2"},"ranges":[{"type":"GIT","repo":"https://gitlab.gnome.org/GNOME/libxml2.git","events":[{"introduced":"6c128fd58a0e4641c23a345d413672494622db1b"}]}],"versions":["CVE-2021-3541","v2.9.11","v2.9.12","v2.9.13","v2.9.14","v2.10.0","v2.10.1","v2.10.2","v2.10.3","v2.10.4","v2.11.0","v2.11.1","v2.11.2","v2.11.3","v2.11.4","v2.11.5","v2.11.6","v2.12.0","v2.12.1","v2.12.2","v2.12.3","v2.12.4","v2.12.5","v2.11.7","v2.12.6","v2.11.8","v2.12.7","v2.12.8","v2.13.0","v2.13.1","v2.13.2","v2.13.3","v2.11.9","v2.12.9","v2.13.4","v2.13.5","v2.13.6","v2.12.10","v2.13.7","v2.14.0","v2.14.1","v2.13.8","v2.14.2","v2.14.3","v2.14.4","v2.14.5","v2.13.9","v2.14.6","v2.15.0","v2.15.1","v2.15.2","v2.15.3"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libxml2/OSV-2021-777.yaml"}}],"schema_version":"1.7.5"}