VYPR
High severity7.5NVD Advisory· Published Apr 13, 2016· Updated Jun 17, 2026

CVE-2015-8806

CVE-2015-8806

Description

dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring in a crafted HTML document.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
nokogiriRubyGems
>= 1.6.0, < 1.6.81.6.8

Affected products

38

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.