1From 31f5d0a3636440ede2b08cad0ad48cbbf12b55e8 Mon Sep 17 00:00:00 2001 2From: Nick Wellnhofer <wellnhofer@aevum.de> 3Date: Sun, 6 Apr 2025 12:41:11 +0200 4Subject: [PATCH] [Backport][CVE-2025-32415] schemas: Fix heap buffer overflow 5CVE: CVE-2025-32415 6Reference: https://gitlab.gnome.org/GNOME/libxml2/-/commit/8ac33b1c821b4e67326e8e416945b31c9537c7c0 7--- 8 xmlschemas.c | 4 ++-- 9 1 file changed, 2 insertions(+), 2 deletions(-) 10 11diff --git a/xmlschemas.c b/xmlschemas.c 12index 796e0ed..6a678ce 100644 13--- a/xmlschemas.c 14+++ b/xmlschemas.c 15@@ -23336,7 +23336,7 @@ xmlSchemaIDCFillNodeTables(xmlSchemaValidCtxtPtr vctxt, 16 j++; 17 } while (j < nbDupls); 18 } 19- if (nbNodeTable) { 20+ if (bind->nbNodes) { 21 j = 0; 22 do { 23 if (nbFields == 1) { 24@@ -23387,7 +23387,7 @@ xmlSchemaIDCFillNodeTables(xmlSchemaValidCtxtPtr vctxt, 25 26 next_node_table_entry: 27 j++; 28- } while (j < nbNodeTable); 29+ } while (j < bind->nbNodes); 30 } 31 /* 32 * If everything is fine, then add the IDC target-node to 33-- 342.1.4 35 36