<table border="1" cellspacing="0" cellpadding="8">
<tr>
<th>Issue</th>
<td>
<a href=https://github.com/llvm/llvm-project/issues/131849>131849</a>
</td>
</tr>
<tr>
<th>Summary</th>
<td>
SecurityGroup archive: Chromium issue 42410036 Vulnerable Version of xml2js Used in MLIR Manifest File
</td>
</tr>
<tr>
<th>Labels</th>
<td>
SecurityArchive
</td>
</tr>
<tr>
<th>Assignees</th>
<td>
</td>
</tr>
<tr>
<th>Reporter</th>
<td>
smithp35
</td>
</tr>
</table>
<pre>
This is an archival issue from the Security Group's Chromium bug-tracker which has now been archived. Capturing the contents of the Chromium issue in a PDF in case link.
https://issuetracker.google.com/u/1/issues/42410036 Vulnerable Version of xml2js Used in MLIR Manifest File
Published in https://llvm.org/docs/SecurityTransparencyReports.html#id3
[Vulnerable Version of xml2js Used in MLIR Manifest File \[42410036\] - Issue Tracker.pdf](https://github.com/user-attachments/files/19323328/Vulnerable.Version.of.xml2js.Used.in.MLIR.Manifest.File.42410036.-.Issue.Tracker.pdf)
</pre>
<img width="1" height="1" alt="" src="http://email.email.llvm.org/o/eJykk0FvnD4QxT-NuVhrwRh24cBhkxV_RfpHitI0d2MG7MTYyDZJ99tXsEuT9NBDewJL4zc_v3kjQtCDRaxJcUOKUyLmqJyvw6ijmniRtK47109KB6oDFZYKL5V-E4bqEGakvXcjjQrpN5Sz1_FM__NunggcAr1V3o16Hmk7D7vohXxFT9-VlooqEah177RF3CSxY_RWTHH22g6rpHQ2oo2Bun49_9K7tNaWCvpwapYfKQJSo-0rI-mRpEcV4xQIPxJoCDRr_RWADc4NBpl0I4FmJtBkW0Ug0OSQZ2nK9_R5Nha9aA3SZ_RBO7tg_BgNvAT6PWC3tL3__-6R3gurewyRNtrgpf3D3Bod1KXoK4sxbyNzfiDQdE4uLTfnnrywYRIerTw_4uR8DEzF0RDguuMXYVLc_CUYJcUtKW62962nE93Ru9XLp6s5U9eT4kSg_Ao96KjmdvMsoN-JGIVU4zIeAk2vzepeVnHgHEoCzQcmu2Iy17MLJlswmbZswWQbJlsw2QbIdmxFY5_RoEq6mncVr0SCdXbIgWcF8CpRdVn03T7Nyx57WZVdhflellUme1EWCNk-0TWkUKQ8K7M9HLKK9XteYSoORQm8wLYgeYqj0IZtI0rWVNQZz8q8Soxo0YR1TQC2mR0v0SUAy-74erm6a-chkDw1OsTwIRZ1NFhvF9ct2ZJP-PH3cP9rDpPZm_oPQ1ywrp_d5N0Lyvh5Da5vfqvhZwAAAP__muRcjQ">