Amazon Linux 2 : libxml2, --advisory ALAS2-2026-3122 (ALAS-2026-3122)

The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3122 advisory. A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...

Low: libxml2

Issue Overview: A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has be...

CVE-2025-7425 affecting package libxml2 for versions less than 2.11.5-8

CVE-2025-7425 affecting package libxml2 for versions less than 2.11.5-8. A patched version of the package is available...

MiracleLinux 8 : libxml2-2.9.7-8.el8 (AXSA:2020-1001:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-1001:04 advisory. libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c CVE-2019-19956 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c...

MiracleLinux 8 : libxml2-2.9.7-7.el8 (AXSA:2020-301:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-301:02 advisory. libxml2: NULL pointer dereference in xmlXPathCompOpEval function in xpath.c CVE-2018-14404 libxml2: infinite loop in xzdecomp function in xzlib.c...

MiracleLinux 9 : libxml2-2.9.13-6.el9 (AXSA:2024-7767:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7767:02 advisory. libxml2: use-after-free in XMLReader CVE-2024-25062 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 7 : libxml2-2.9.1-6.6.0.1.el7.AXS7 (AXSA:2021-2474:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2474:03 advisory. libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Tenable has extracted the preceding description block directly from the...

MiracleLinux 8 : libxml2-2.9.7-13.el8.1 (AXSA:2022-3668:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3668:04 advisory. libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write CVE-2022-29824 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : libxml2-2.9.7-18.el8_9 (AXSA:2024-7397:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7397:01 advisory. libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : libxml2-2.9.13-3.el9 (AXSA:2023-4863:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4863:02 advisory. libxml2: integer overflows with XMLPARSEHUGE CVE-2022-40303 libxml2: dict corruption caused by entity reference cycles CVE-2022-40304 Tenable has...

MiracleLinux 9 : libxml2-2.9.13-5.el9_3 (AXSA:2023-7045:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-7045:07 advisory. libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 9 : libxml2-2.9.13-3.el9.1 (AXSA:2023-6287:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6287:04 advisory. libxml2: NULL dereference in xmlSchemaFixupComplexType CVE-2023-28484 libxml2: Hashing of empty dict strings isn't deterministic CVE-2023-29469...

MiracleLinux 9 : libxml2-2.9.13-1.el9.1 (AXSA:2022-3979:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3979:05 advisory. libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write CVE-2022-29824 Tenable has extracted the preceding description block directly...

MiracleLinux 8 : libxml2-2.9.7-9.el8 (AXSA:2021-1786:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1786:01 advisory. libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal in entities.c CVE-2020-24977 Tenable has extracted the preceding description block direct...

MiracleLinux 8 : libxml2-2.9.7-12.el8 (AXSA:2022-3108:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3108:01 advisory. libxml2: Use-after-free of ID and IDREF attributes CVE-2022-23308 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

MiracleLinux 8 : libxml2-2.9.7-15.el8.1 (AXSA:2023-4778:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4778:01 advisory. libxml2: integer overflows with XMLPARSEHUGE CVE-2022-40303 libxml2: dict corruption caused by entity reference cycles CVE-2022-40304 Tenable has...

MiracleLinux 7 : libxml2-2.9.1-6.5.0.1.el7.AXS7 (AXSA:2020-765:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-765:03 advisory. libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c CVE-2019-19956 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c...

MiracleLinux 8 : libxml2-2.9.7-18.el8_10.1 (AXSA:2024-8162:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8162:03 advisory. libxml2: use-after-free in XMLReader CVE-2024-25062 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

MiracleLinux 8 : libxml2-2.9.7-16.el8.1 (AXSA:2023-6331:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6331:05 advisory. libxml2: NULL dereference in xmlSchemaFixupComplexType CVE-2023-28484 libxml2: Hashing of empty dict strings isn't deterministic CVE-2023-29469...

MiracleLinux 8 : libxml2-2.9.7-15.el8 (AXSA:2022-4126:06)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4126:06 advisory. libxml2: Incorrect server side include parsing can lead to XSS CVE-2016-3709 Tenable has extracted the preceding description block directly from the...