From 9b08582bd7520aa61302ee809e8b219712576dc0 Mon Sep 17 00:00:00 2001
From: "LI, WENJIE" <liwenjie@kylinos.cn>
Date: Wed, 30 Nov 2022 22:00:52 +0800
Subject: [PATCH] add cve/libxml2/2021/yaml/CVE-2021-3518.yaml.

---
 cve/libxml2/2021/yaml/CVE-2021-3518.yaml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 cve/libxml2/2021/yaml/CVE-2021-3518.yaml

diff --git a/cve/libxml2/2021/yaml/CVE-2021-3518.yaml b/cve/libxml2/2021/yaml/CVE-2021-3518.yaml
new file mode 100644
index 00000000..54dd1885
--- /dev/null
+++ b/cve/libxml2/2021/yaml/CVE-2021-3518.yaml
@@ -0,0 +1,19 @@
+id: CVE-2021-3518
+source: https://gitlab.gnome.org/GNOME/libxml2/-/issues/237
+info:
+  name: libxml2是开源的一个用来解析XML文档的函数库。它用C语言写成，并且能为多种语言所调用，例如C语言，C++，XSH。
+  severity: High
+  description: |
+    libxml2 中xinclude.c存在资源管理错误漏洞，该漏洞源于网络系统或产品对系统资源（如内存、磁盘空间、文件等）的管理不当。
+  scope-of-influence:
+    
+  reference:
+    - https://nvd.nist.gov/vuln/detail/CVE-2021-3518
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
+    cvss-score: 8.8
+    cve-id: CVE-2021-3518
+    cwe-id: CWE-416
+    cnvd-id: None
+    kve-id: None
+  tags: cve2021,资源管理错误
\ No newline at end of file
-- 
Gitee