Fedora Update for libxml2 FEDORA-2008-0462

Fedora Update for libxml2 FEDORA-2008-046

Reporter	Title	Published	Views	Family All 85
Tenable Nessus	VLC Media Player < 0.8.6h Multiple Vulnerabilities (deprecated)	18 Aug 200400:00	–	nessus
Tenable Nessus	CentOS 3 / 4 / 5 : libxml2 (CESA-2008:0032)	14 Jan 200800:00	–	nessus
Tenable Nessus	Debian DSA-1461-1 : libxml2 - missing input validation	14 Jan 200800:00	–	nessus
Tenable Nessus	Fedora 8 : libxml2-2.6.31-1.fc8 (2008-0462)	14 Jan 200800:00	–	nessus
Tenable Nessus	Fedora 7 : libxml2-2.6.31-1.fc7 (2008-0477)	14 Jan 200800:00	–	nessus
Tenable Nessus	GLSA-200801-20 : libxml2: Denial of Service	1 Feb 200800:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : libxml2 (MDVSA-2008:010)	23 Apr 200900:00	–	nessus
Tenable Nessus	Oracle Linux 5 : Important: / libxml2 (ELSA-2008-0032)	12 Jul 201300:00	–	nessus
Tenable Nessus	OracleVM 2.1 : libxml2 (OVMSA-2009-0018)	26 Nov 201400:00	–	nessus
Tenable Nessus	RHEL 2.1 / 3 / 4 / 5 : libxml2 (RHSA-2008:0032)	14 Jan 200800:00	–	nessus

Source	Link
redhat	www.redhat.com/archives/fedora-package-announce/2008-January/msg00379.html

###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for libxml2 FEDORA-2008-0462
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_affected = "libxml2 on Fedora 8";
tag_insight = "This library allows to manipulate XML files. It includes support
  to read, modify and write XML and HTML files. There is DTDs support
  this includes parsing and validation even with complex DtDs, either
  at parse time or later once the document has been modified. The output
  can be a simple SAX stream or and in-memory DOM like representations.
  In this case one can use the built-in XPath and XPointer implementation
  to select subnodes or ranges. A flexible Input/Output mechanism is
  available, with existing HTTP and FTP modules and combined to an
  URI library.";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name : "URL" , value : "https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00379.html");
  script_id(860226);
  script_version("$Revision: 6623 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-10 08:10:20 +0200 (Mon, 10 Jul 2017) $");
  script_tag(name:"creation_date", value:"2009-02-17 17:12:43 +0100 (Tue, 17 Feb 2009)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_xref(name: "FEDORA", value: "2008-0462");
  script_cve_id("CVE-2007-6284");
  script_name( "Fedora Update for libxml2 FEDORA-2008-0462");

  script_summary("Check for the Version of libxml2");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "FC8")
{

  if ((res = isrpmvuln(pkg:"libxml2", rpm:"libxml2~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-python", rpm:"libxml2-python~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2", rpm:"libxml2~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-debuginfo", rpm:"libxml2-debuginfo~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-devel", rpm:"libxml2-devel~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-debuginfo", rpm:"libxml2-debuginfo~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-python", rpm:"libxml2-python~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2-devel", rpm:"libxml2-devel~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libxml2", rpm:"libxml2~2.6.31~1.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

10 Jul 2017 00:00Current

7.1High risk

Vulners AI Score7.1

EPSS0.05097