libxml2 security and bug fix update

2.7.6-4.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4 - Fixes another XPath problem CVE-2011-2834 - Resolves: rhbz732335 2.7.6-3 - Fixes various other issues in 2.7.6 XPath evaluation - Resolves: rhbz732335 2.7.6-2 - Fix a...

CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

DEBIAN-CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

Out-of-bounds

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3905

CVE-2011-3905 is a libxml2 out-of-bounds memory read vulnerability. It affects libxml2 used by Chrome before 16.0.912.63 and can be triggered by processing crafted XML, potentially crashing the application or enabling arbitrary code execution. Mitigations documented in multiple advisories (e.g., ...

CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2011-3905

libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

SuSE 10 Security Update : libxml2 (ZYPP Patch Number 7600)

Specially crafted xml files could crash applications using libxml2 CVE-2011-1944. This has been fixed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid57223;...

RHEL 6 : libxml2 (RHSA-2011:1749)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1749 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. One of those standards is the XML Path...

libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...

libxml2: double-free in XPath processing code

Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...

libxml2: Off-by-one error leading to heap-based buffer overflow in encoding

Off-by-one error in libxml in Apple Safari before 5.0.6 allows remote attackers to execute arbitrary code or cause a denial of service heap-based buffer overflow and application crash via a crafted web site...

libxml2: double free caused by malformed XPath expression in XSLT

Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression...

libxml2: double-free caused by malformed XPath expression in XSLT

Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...

libxml2: Heap-based buffer overflow by adding new namespace node to an existing nodeset or merging nodesets

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when addi...

Low: Red Hat Security Advisory: libxml2 security and bug fix update

Updated libxml2 packages that fix several security issues and various bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

GLSA-201110-26 : libxml2: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201110-26 libxml2: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libxml2. Please review the CVE identifiers referenced below for details. Impact : A local or remote attacker may be able to execute...

libxml2 memory corruption

Multiple vulnerabilities related to XPath processing...