The xmlParseElementDecl function in parser.c in libxml2 prior to 2.9.4 allows context-dependent malicious users to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp icewall federation agent 3.0 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 15.10 |
||
canonical ubuntu linux 14.04 |
||
debian debian linux 8.0 |
||
debian debian linux 7.0 |
||
oracle vm server 3.4 |
||
oracle vm server 3.3 |
||
apple itunes 12.4.1 |
||
apple iphone os |
||
apple tvos |
||
apple watchos |
||
apple mac os x |
||
xmlsoft libxml2 |
||
mcafee web gateway |