Some vulnerabilities have been reported in Libxml2, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

1) A double free error exists in the processing of XPath queries.

For more information, see vulnerability #5 in:
SA45698

2) A double free error exists in the processing of XPath queries.

For more information, see vulnerability #20 in:
SA46049

3) Errors within the parser can be exploited to cause out-of-bounds reads.

For more information, see vulnerability #2 in:
SA47231

4) A boundary error within the "xmlStringLenDecodeEntities()" function (parser.c) can be exploited to cause a heap-based buffer overflow.

For more information see vulnerability #2 in:
SA47449

The vulnerabilities are reported in version 2.7.8. Other versions may also be affected.

Solution
Fixed in the GIT repository.
Further details available to Secunia VIM customers

Provided and/or discovered by
1, 2) Yang Dingning from NCNIPC, Graduate University of Chinese Academy of Sciences.
3) Originally reported in Google Chrome by Google Chrome Security Team (Inferno).
4) Originally reported in Google Chrome by Jüri Aedla.

Changelog
Further details available to Secunia VIM customers

Original Advisory
http://code.google.com/p/chromium/issues/detail?id=89402
http://code.google.com/p/chromium/issues/detail?id=93472
http://code.google.com/p/chromium/issues/detail?id=95465
http://code.google.com/p/chromium/issues/detail?id=107128
http://codereview.chromium.org/9072008

Other references
Further details available to Secunia VIM customers

Deep Links
Links available to Secunia VIM customers