VYPR
Unrated severityNVD Advisory· Published Jul 17, 2026

Debian libxml-bare-perl: XML::Bare versions through 0.53 for Perl will hang in an infinite loop when pars…

CVE-2026-13401

Description

XML::Bare versions through 0.53 for Perl will hang in an infinite loop when parsing malformed attributes. The parserc_parse function never advances the attribute-parse state cursor on certain malformed attribute forms, looping forever. Nameless attributes such as "" or unbalanced quotes "" can trigger this condition.

Affected products

2

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.