Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-4008HistoryNov 17, 2010 - 1:00 a.m.
CVE-2010-4008
2010-11-1701:00:00
Debian Security Bug Tracker
security-tracker.debian.org
19
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
53.5%
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libxml2 | < 2.7.8.dfsg-1 | libxml2_2.7.8.dfsg-1_all.deb |
| Debian | 11 | all | libxml2 | < 2.7.8.dfsg-1 | libxml2_2.7.8.dfsg-1_all.deb |
| Debian | 10 | all | libxml2 | < 2.7.8.dfsg-1 | libxml2_2.7.8.dfsg-1_all.deb |
| Debian | 999 | all | libxml2 | < 2.7.8.dfsg-1 | libxml2_2.7.8.dfsg-1_all.deb |
| Debian | 13 | all | libxml2 | < 2.7.8.dfsg-1 | libxml2_2.7.8.dfsg-1_all.deb |
Related
nessus
nessus
openSUSE Security Update : libxml2 (openSUSE-SU-2010:1004-1)
2011-05-05 00:00:00
Debian DSA-2128-1 : libxml2 - invalid memory access
2010-12-02 00:00:00
veracode
veracode
Denial Of Service (Dos)
2019-01-15 08:55:09
osv
osv
libxml2 - potential code execution
2010-12-01 00:00:00
securityvulns
securityvulns
[USN-1016-1] libxml2 vulnerability
2010-11-15 00:00:00
libxml2 memory corruption
2010-11-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1016-1)
2010-11-16 00:00:00
Apple Safari libxml Denial of Service Vulnerability
2010-11-23 00:00:00
Debian: Security Advisory (DSA-2128-1)
2023-03-08 00:00:00
cve
cve
CVE-2010-4008
2010-11-17 01:00:00
CVE-2010-4200
2010-11-06 00:00:00
ubuntucve
ubuntucve
CVE-2010-4008
2010-11-08 00:00:00
prion
prion
Design/Logic Flaw
2010-11-17 01:00:00
Design/Logic Flaw
2010-11-06 00:00:00
ubuntu
ubuntu
libxml2 vulnerability
2010-11-10 00:00:00
debian
debian
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
2010-12-01 20:15:40
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
2010-12-01 20:15:40
gentoo
gentoo
libxml2: Multiple vulnerabilities
2011-10-26 00:00:00
oraclelinux
oraclelinux
libxml2 security update
2012-01-11 00:00:00
libxml2 security and bug fix update
2011-12-14 00:00:00
mingw32-libxml2 security update
2013-01-31 00:00:00
redhat
redhat
(RHSA-2012:0017) Important: libxml2 security update
2012-01-11 00:00:00
(RHSA-2011:1749) Low: libxml2 security and bug fix update
2011-12-06 00:00:00
(RHSA-2013:0217) Important: mingw32-libxml2 security update
2013-01-31 00:00:00
centos
centos
libxml2 security update
2012-01-11 19:19:14
mingw32 security update
2013-02-01 00:53:30
vmware
vmware
VMware ESXi update to third party library
2012-07-12 00:00:00
VMware ESXi update to third party library
2012-07-12 00:00:00
VMware ESX updates to ESX Service Console
2012-04-26 00:00:00
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
53.5%
Related for DEBIANCVE:CVE-2010-4008