Lucene search
IBM4C8DB6FB8D853744F8CBC0141529BF07449EB6D651818BFB5D6DAF1FA2584C27HistoryJun 08, 2023 - 6:25 p.m.
Security Bulletin: CVE-2023-29469 may affect IBM CICS TX Advanced 10.1
2023-06-0818:25:41
www.ibm.com
12
ibm cics tx advanced
gnome libxml2
denial of service
vulnerability
fix
linux
0.001 Low
EPSS
Percentile
41.1%
Summary
CVE-2023-29469 may affect IBM CICS TX Advanced 10.1. IBM CICS TX Advanced 10.1 has addressed the applicable CVE.
Vulnerability Details
CVEID:CVE-2023-29469
**DESCRIPTION:**GNOME libxml2 is vulnerable to a denial of service, caused by a double free flaw in the xmlDictComputeFastKey function due to hashing empty strings are not null-terminated. By persuading a victim to open a specially crafted XML content, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 5.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/253143 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM CICS TX Advanced | 10.1 |
Remediation/Fixes
| Product | Version | Platform | Remediation/Fix |
|---|---|---|---|
| IBM CICS TX Advanced |
10.1
| Linux| Fix Central Link
Workarounds and Mitigations
None
Related
redhatcve
redhatcve
CVE-2023-29469
2023-04-11 19:29:50
freebsd
freebsd
electron -- vulnerability
2023-05-17 00:00:00
libxml2 -- multiple vulnerabilities
2023-04-11 00:00:00
f5
f5
K000139592: libxml2 vulnerability CVE-2023-29469
2024-05-13 00:00:00
debiancve
debiancve
CVE-2023-29469
2023-04-24 21:15:09
cbl_mariner
cbl_mariner
CVE-2023-29469 affecting package libxml2 for versions less than 2.10.4-1
2023-08-03 02:51:21
nessus
nessus
FreeBSD : electron -- vulnerability (b09d77d0-b27c-48ae-b69b-9641bb68b39e)
2023-05-18 00:00:00
F5 Networks BIG-IP : libxml2 vulnerability (K000139592)
2024-05-14 00:00:00
CentOS 8 : libxml2 (CESA-2023:4529)
2024-02-08 00:00:00
ibm
ibm
cvelist
cvelist
CVE-2023-29469
2023-04-24 00:00:00
alpinelinux
alpinelinux
CVE-2023-29469
2023-04-24 21:15:09
osv
osv
CVE-2023-29469
2023-04-24 21:15:09
libxml2 vulnerabilities
2023-04-19 13:42:53
libxml2 - security update
2023-04-30 00:00:00
prion
prion
Double free
2023-04-24 21:15:00
ubuntucve
ubuntucve
CVE-2023-29469
2023-04-12 00:00:00
veracode
veracode
Double Free
2023-04-20 04:30:38
cve
cve
CVE-2023-29469
2023-04-24 21:15:09
rosalinux
rosalinux
Advisory ROSA-SA-2024-2321
2024-01-09 09:53:22
Advisory ROSA-SA-2023-2319
2023-12-26 12:04:20
openvas
openvas
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2527)
2023-08-01 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2504)
2023-08-01 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2762)
2023-09-11 00:00:00
oraclelinux
oraclelinux
libxml2 security update
2023-08-02 00:00:00
libxml2 security update
2023-08-10 00:00:00
github
github
Nokogiri updates packaged libxml2 to v2.10.4 to resolve multiple CVEs
2023-04-11 21:48:01
ubuntu
ubuntu
libxml2 vulnerabilities
2023-04-19 00:00:00
libxml2 vulnerabilities
2023-06-07 00:00:00
aix
aix
AIX is vulnerable to a denial of service due to libxml2
2023-07-25 11:08:32
rocky
rocky
libxml2 security update
2023-10-06 23:10:01
redos
redos
ROS-20230616-04
2023-06-16 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: libxml2-2.10.4-1.fc38
2023-04-18 01:40:06
[SECURITY] Fedora 37 Update: libxml2-2.10.4-1.fc37
2023-04-18 01:32:12
redhat
redhat
(RHSA-2023:4529) Moderate: libxml2 security update
2023-08-08 07:21:37
(RHSA-2023:4349) Moderate: libxml2 security update
2023-08-01 07:58:11
(RHSA-2024:0413) Moderate: libxml2 security update
2024-01-24 14:40:23
debian
debian
[SECURITY] [DLA 3405-1] libxml2 security update
2023-04-30 11:30:47
[SECURITY] [DSA 5391-1] libxml2 security update
2023-04-20 20:46:15
almalinux
almalinux
Moderate: libxml2 security update
2023-08-08 00:00:00
Moderate: libxml2 security update
2023-08-01 00:00:00
amazon
amazon
Medium: libxml2
2023-04-27 18:36:00
Medium: libxml2
2023-04-27 16:19:00
cloudfoundry
cloudfoundry
USN-6028-1: libxml2 vulnerabilities | Cloud Foundry
2023-04-29 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0569
2023-04-23 00:00:00
Moderate Photon OS Security Update - PHSA-2023-5.0-0001
2023-05-02 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0380
2023-04-25 00:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerability
2023-05-06 21:19:07
gentoo
gentoo
libxml2: Multiple Vulnerabilities
2024-02-09 00:00:00
slackware
slackware
[slackware-security] libxml2
2023-12-10 01:15:09
apple
apple
About the security content of iOS 16.5 and iPadOS 16.5
2023-05-18 00:00:00
About the security content of macOS Ventura 13.4
2023-05-18 00:00:00
ics
ics
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00
0.001 Low
EPSS
Percentile
41.1%
Related for 4C8DB6FB8D853744F8CBC0141529BF07449EB6D651818BFB5D6DAF1FA2584C27