Ubuntu: Security Advisory (USN-1016-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libxml2 memory corruption

Memory corruption on XPath attributes parsing...

[USN-1016-1] libxml2 vulnerability

=========================================================== Ubuntu Security Notice USN-1016-1 November 10, 2010 libxml2 vulnerability CVE-2010-4008 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.04 LTS...

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : libxml2 vulnerability (USN-1016-1)

Bui Quang Minh discovered that libxml2 did not properly process XPath namespaces and attributes. If an application using libxml2 opened a specially crafted XML file, an attacker could cause a denial of service or possibly execute code as the user invoking the program. Note that Tenable Network...

USN-1016-1: libxml2 vulnerability

Bui Quang Minh discovered that libxml2 did not properly process XPath namespaces and attributes. If an application using libxml2 opened a specially crafted XML file, an attacker could cause a denial of service or possibly execute code as the user invoking the program...

CVE-2010-4008

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service application crash via a...

GLSA-201009-07 : libxml2: Denial of Service

The remote host is affected by the vulnerability described in GLSA-201009-07 libxml2: Denial of Service The following vulnerabilities were reported after a test with the Codenomicon XML fuzzing framework: Two use-after-free vulnerabilities are possible when parsing a XML file with Notation or...

libxml2: Denial of service

Background libxml2 is a library to manipulate XML files. Description The following vulnerabilities were reported after a test with the Codenomicon XML fuzzing framework: Two use-after-free vulnerabilities are possible when parsing a XML file with Notation or Enumeration attribute types...

openoffice.org -- Multiple vulnerabilities

OpenOffice.org Security Team reports: Fixed in OpenOffice.org 3.3 CVE-2010-2935 / CVE-2010-2936: Security Vulnerability in OpenOffice.org related to PowerPoint document processing CVE-2010-3450: Security Vulnerability in OpenOffice.org related to Extensions and filter package files CVE-2010-3451 ...

FreeBSD : openoffice.org -- multiple vulnerabilities (c97d7a37-2233-11df-96dd-001b2134ef46)

OpenOffice.org Security Team reports : Fixed in OpenOffice.org 3.2 CVE-2006-4339: Potential vulnerability from 3rd party libxml2 libraries CVE-2009-0217: Potential vulnerability from 3rd party libxmlsec libraries CVE-2009-2493: OpenOffice.org 3 for Windows bundles a vulnerable version of MSVC...

Debian DSA-1859-1 : libxml2 - several vulnerabilities

Rauli Kaksonen, Tero Rontti and Jukka Taimisto discovered several vulnerabilities in libxml2, a library for parsing and handling XML data files, which can lead to denial of service conditions or possibly arbitrary code execution in the application using the library. The Common Vulnerabilities and...

OpenOffice Zaps Six Security Bugs

OpenOffice.org has shipped a new version of the desktop productivity suite to patch six vulnerabilities that could expose users to malicious hacker attacks. The flaws fixed in OpenOffice.org 3.2 could be exploited via GIF, XPM files and Microsoft Word document processing, according to an advisory...

OpenOffice < 3.2 Multiple Vulnerabilities

Binary data 5339.prm...

Sun OpenOffice.org < 3.2 Multiple Vulnerabilities

The version of Sun Microsystems OpenOffice.org installed on the remote host is prior to version 3.2. It is, therefore, affected by several issues : - Signatures may not be handled properly due to a vulnerability in the libxml2 library. CVE-2006-4339 - There is an HMAC truncation authentication...

Multiple Products libxml2 XML File Processing Entity Name Buffer Overflow (CVE-2008-3529)

A vulnerability has been reported in libxml2 that could allow remote attackers to execute arbitrary code on the vulnerable system.The vulnerability is due to a boundary error within the Libxml2, specifically in the way libxml2 handles long XML entity names. Remote attackers could exploit this...

Mandriva Security Advisory MDVSA-2009:200-1 (libxml)

The remote host is missing an update to libxml announced via advisory MDVSA-2009:200-1. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Safari < 4.0.4 Multiple Vulnerabilities

Binary data 5232.prm...

SLES10: Security update for libxml2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libxml2 libxml2-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...

SLES10: Security update for libxml2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libxml2 libxml2-devel libxml2-python More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...

SLES10: Security update for libxml2

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: libxml2 libxml2-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...