logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2020-24977

Description

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.


Affected Software


CPE Name Name Version
xmlsoft:libxml2 xmlsoft libxml2 2.9.10
debian:debian_linux debian debian linux 9.0
fedoraproject:fedora fedoraproject fedora 31
fedoraproject:fedora fedoraproject fedora 32
fedoraproject:fedora fedoraproject fedora 33
opensuse:leap opensuse leap 15.1
opensuse:leap opensuse leap 15.2
netapp:snapdrive netapp snapdrive -
netapp:clustered_data_ontap netapp clustered data ontap -
netapp:clustered_data_ontap_antivirus_connector netapp clustered data ontap antivirus connector -
netapp:snapdrive netapp snapdrive -
netapp:active_iq_unified_manager netapp active iq unified manager *
netapp:active_iq_unified_manager netapp active iq unified manager *
netapp:manageability_software_development_kit netapp manageability software development kit -
netapp:inventory_collect_tool netapp inventory collect tool -
netapp:hci_h410c_firmware netapp hci h410c firmware -
oracle:http_server oracle http server 12.2.1.3.0
oracle:peoplesoft_enterprise_peopletools oracle peoplesoft enterprise peopletools 8.58
oracle:enterprise_manager_base_platform oracle enterprise manager base platform 13.4.0.0
oracle:http_server oracle http server 12.2.1.4.0
oracle:enterprise_manager_ops_center oracle enterprise manager ops center 12.4.0.0
oracle:enterprise_manager_base_platform oracle enterprise manager base platform 13.5.0.0
oracle:mysql_workbench oracle mysql workbench 8.0.26
oracle:real_user_experience_insight oracle real user experience insight 13.4.1.0
oracle:real_user_experience_insight oracle real user experience insight 13.5.1.0
oracle:communications_cloud_native_core_network_function_cloud_native_environment oracle communications cloud native core network function cloud native environment 1.10.0

Related