libxml2 could be made to crash if it opened a specially crafted file ...
Synopsis
Moderate: libxml2 security update
Type/Severity
Security Advisory: Moderate
Topic
Updated libxml2 packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having Moderate securityimpact Common Vulnerability Scoring ...
Synopsis
Moderate: libxml2 security update
Type/Severity
Security Advisory: Moderate
Topic
Updated libxml2 packages that fix multiple security issues are nowavailable for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having Moderate securityimpact Common Vulnerability Scoring ...
Several vulnerabilities were discovered in libxml2, a library providing
support to read, modify and write XML and HTML files A remote attacker
could provide a specially crafted XML or HTML file that, when processed
by an application using libxml2, would cause that application to use an
excessive amount of CPU, leak potentially sensitive informatio ...
Debian Bug report logs -
#806384
libxml2: CVE-2015-8241: Buffer overread with XML parser in xmlNextChar
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Thu, 26 Nov 2015 20:48:01 UTC
Se ...
Debian Bug report logs -
#802827
libxml2: CVE-2015-7942: heap-buffer-overflow in xmlParseConditionalSections
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 23 Oct 2015 20:51:01 UT ...
Debian Bug report logs -
#803942
CVE-2015-8035: DoS with XZ compression support loop
Package:
libxml2;
Maintainer for libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>; Source for libxml2 is src:libxml2 (PTS, buildd, popcon)
Reported by: Raphael Hertzog <hertzog@debianorg>
Date: Tue, 3 ...
Debian Bug report logs -
#782782
libxml2: CVE-2015-1819: denial of service processing a crafted XML document
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Fri, 17 Apr 2015 19:39:02 UT ...
Debian Bug report logs -
#782985
libxml2: parsing an unclosed comment can result in `Conditional jump or move depends on uninitialised value(s)` and unsafe memory access
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso & ...
Debian Bug report logs -
#783010
libxml2: out-of-bounds read
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Mon, 20 Apr 2015 15:27:02 UTC
Severity: normal
Tags: fixed-upstream, jessie ...
A denial of service flaw was found in libxml2 A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to leak potentially sensitive information(CVE-2015-8242)
A denial of service flaw was found in libxml2 A remote attacker could provide a specially cr ...
A denial of service flaw was found in the way the libxml2 library parsed certain XML files An attacker could provide a specially crafted XML file that, when parsed by an application using libxml2, could cause that application to use an excessive amount of memory
The xmlParseConditionalSections function in parserc in libxml2 does not properly ski ...
A denial of service flaw was found in libxml2 A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to crash ...
Vulmon