A vulnerability found in libxml2 in versions prior to 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest threat from this vulnerability is to system availability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xmlsoft libxml2 |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 6.0 |
||
redhat jboss core services - |
||
redhat enterprise linux 8.0 |
||
debian debian linux 9.0 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
netapp ontap select deploy administration utility - |
||
netapp clustered data ontap - |
||
netapp clustered data ontap antivirus connector - |
||
netapp snapdrive - |
||
netapp active iq unified manager - |
||
netapp manageability software development kit - |
||
netapp hci_h410c_firmware - |
||
oracle peoplesoft enterprise peopletools 8.58 |
||
oracle enterprise manager base platform 13.4.0.0 |
||
oracle enterprise manager ops center 12.4.0.0 |
||
oracle openjdk 8 |
||
oracle enterprise manager base platform 13.5.0.0 |
||
oracle mysql workbench |
||
oracle real user experience insight 13.4.1.0 |
||
oracle real user experience insight 13.5.1.0 |
||
oracle communications cloud native core network function cloud native environment 1.10.0 |