VYPR

PyPI package

vtk

pkg:pypi/vtk

Vulnerabilities (1)

  • CVE-2021-42521HigAug 25, 2022
    affected < 9.0.1fixed 9.0.1

    There is a NULL pointer dereference vulnerability in VTK before 9.2.5, and it lies in IO/Infovis/vtkXMLTreeReader.cxx. The vendor didn't check the return value of libxml2 API 'xmlDocGetRootElement', and try to dereference it. It is unsafe as the return value can be NULL and that