There's a merged pull request on the void-packages repository

libxml2: fix CVE-2019-20388.
https://github.com/void-linux/void-packages/pull/20300

Description:
None