Version inconsistency in CVE-2016-3705
Hi,
We discovered that the CVE-2016-3705 vulnerability, which was found to only affect libxml2 2.9.3, affects libxml2 2.9.2.
We utilized the same PoC and reproducer in https://bugzilla.gnome.org/show_bug.cgi?id=765207
This is a minor issue, but NVD mentions only 2.9.3 is affected by CVE-2016-3705, and we are worried that it will adversely affect developers who are using 2.9.2.
Please reflect on this after confirmation. Thank you.
Edited by WOOSEUNGHOON