6887 matches found
Double free
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...
CVE-2010-4494
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...
CVE-2010-4494
CVE-2010-4494 is a double-free vulnerability in libxml2 (notably 2.7.8 and related versions) used by Chrome and other products. The issue affects libxml2’s handling of XPath/XML entities and could allow a remote attacker to crash or potentially execute code via crafted XML input. Public advisorie...
CVE-2010-4494
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling...
PT-2010-1062 · Mingw +6 · Mingw32-Libxml2-Debuginfo +8
Name of the Vulnerable Software and Affected Versions: libxml2 versions prior to 2.8.0 mingw32-libxml2 versions 2.7.6 mingw32-libxml2-debuginfo versions 2.7.6 mingw32-libxml2-static versions 2.7.6 Description: The issue concerns multiple vulnerabilities in the libxml2 package, which can lead to...
SuSE 11 / 11.1 Security Update : libxml2 (SAT Patch Numbers 3460 / 3461)
libxml2: Invalid memory access in the xpath handling has been fixed. CVE-2010-4008 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is...
Debian DSA-2128-1 : libxml2 - invalid memory access
Bui Quang Minh discovered that libxml2, a library for parsing and handling XML data files, does not well process a malformed XPATH, causing crash and allowing arbitrary code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
SuSE 10 Security Update : libxml2 (ZYPP Patch Number 7214)
libxml2: Invalid memory access in the xpath handling has been fixed. CVE-2010-4008 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-2128-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano December 01, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA-2128-1] New libxml2 packages fix potential code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-2128-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano December 01, 2010 http://www.debian.org/security/faq -...
DSA-2128-1 libxml2 - potential code execution
Bulletin has no description...
Mandriva Linux Security Advisory : libxml2 (MDVSA-2010:243)
A vulnerability was discovered and corrected in libxml2 : libxml2 before 2.7.8 reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a crafted XML document CVE-2010-4008...
CVE-2010-4008
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
CVE-2010-4008
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
DEBIAN-CVE-2010-4008
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
Design/Logic Flaw
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
CVE-2010-4008
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
CVE-2010-4008
libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...
CVE-2010-4008
CVE-2010-4008 affects libxml2 prior to 2.7.8 and is triggered by malformed XPath expressions, causing an application crash via invalid memory access. It is noted in advisories tied to libxml2 updates for platforms using the library (e.g., Chrome and Safari stacks). The connected records reference...
Ubuntu Update for libxml2 vulnerability USN-1016-1
Ubuntu Update for Linux kernel vulnerabilities USN-1016-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10161.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for libxml2 vulnerability USN-1016-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...