Tool Description: A flaw was found in libxml2. When a reference cycle is detected in the XML entity cleanup function the XML entity data can be stored in a dictionary. In this case, the dictionary becomes corrupted resulting in logic errors, including memory errors like double free.
Due Date: 2022-10-27
A high severity vulnerability has been discovered in your project.
Project Name: twrap-go
Scanner Name: trivy
Cwe ID: 1035
Cwe Name: Using Components with Known Vulnerabilities
Cwe Link: https://cwe.mitre.org/data/definitions/1035.html
CVE ID: CVE-2022-40304
Target: nginx:latest (debian 11.5)
Packages:
Kondukto Remediation
1: sdfsdfsdfTool Description: A flaw was found in libxml2. When a reference cycle is detected in the XML entity cleanup function the XML entity data can be stored in a dictionary. In this case, the dictionary becomes corrupted resulting in logic errors, including memory errors like double free.
Custom Description: test
Kondukto Link: http://79.kondukto.local/projects/634fe837a5be8478724352c4/vulns/appsec?page=1&perPage=15&id=in:6358f3d2b8bfc0fbb2c3b957 Deeplink: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40304