On Fri, Oct 29, 2021 at 10:40:06AM +0000, Joel Mariadasan (jomariad) wrote:
> Hi,
>
> The scanning tool used by our organization has detected the presence of vulnerable libxml version in the latest Postgres 13.4 release for windows (Zip version).
>
> Detected by Automated Scanning tool:
> libxml 2.9.10
>
> Can you confirm if this is the same version of libxml used in Postgres?
> We want to confirm if the detection is a false positive or a vulnerability.
Joel: Could you provide the exact link for the postgres ZIP you used ?
--
Justin