On Fri, Oct 29, 2021 at 10:40:06AM +0000, Joel Mariadasan (jomariad) wrote: > Hi, > > The scanning tool used by our organization has detected the presence of > vulnerable libxml version in the latest Postgres 13.4 release for windows > (Zip version). > > Detected by Automated Scanning tool: > libxml 2.9.10 > > Can you confirm if this is the same version of libxml used in Postgres? > We want to confirm if the detection is a false positive or a vulnerability.
Joel: Could you provide the exact link for the postgres ZIP you used ? -- Justin
