CVE-2007-6284

The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.

Date published : 2008-01-11

http://lists.apple.com/archives/security-announce/2008//Jul/msg00001.html

http://www.securityfocus.com/bid/27248