Lucene search

K
debianDebianDEBIAN:DLA-0016-1:08E9F
HistoryJul 19, 2014 - 3:07 p.m.

[DLA-0016-1] libxml2 security update

2014-07-1915:07:28
lists.debian.org
15

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.024

Percentile

90.1%

Package : libxml2
Version : 2.7.8.dfsg-2+squeeze9
CVE ID : CVE-2014-0191
Debian Bug : #747309

Daniel P. Berrange discovered a denial of service vulnerability in
libxml2 entity substitution.

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.3

Confidence

High

EPSS

0.024

Percentile

90.1%