OESA-2026-1283 tinyxml2 security update

TinyXML-2 is a simple, small, efficient, C++ XML parser that can be easily integrated into other programs. TinyXML-2 parses an XML document, and builds from that a Document Object Model DOM that can be read, modified, and saved. Security Fixes: TinyXML2 through 10.0.0 has a reachable assertion fo...

Fedora: Security Advisory (FEDORA-2025-9b8c8ca077)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Advisory ROSA-SA-2025-3020

software: tinyxml2 6.2.0 WASP: ROSA-CHROME unaffected versions = tinyxml2-6.2.0-2 affected versions tinyxml2-6.2.0-2 CVE-ID: CVE-2024-50615 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in TinyXML2 before 10.0.0: Reachable assertion in XMLUtil::GetCharacterRef could cause application...

TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.

...

Linux Distros Unpatched Vulnerability : CVE-2024-50615

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef. CVE-2024-50615...

Fedora 43 : Macaulay2 / ags / bullet / cppcheck / docparser / dvblinkremote / etc (2025-9b8c8ca077)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-9b8c8ca077 advisory. Security update for CVE-2024-50614: updates tinyxml2 to 11.0.0. Tenable has extracted the preceding description block directly from the Fedora security...

Fedora 44 : Macaulay2 / ags / bullet / cppcheck / docparser / dvblinkremote / etc (2025-7c42801720)

The remote Fedora 44 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2025-7c42801720 advisory. Security update for CVE-2024-50614: updates tinyxml2 to 11.0.0. Tenable has extracted the preceding description block directly from the Fedora security...

Linux Distros Unpatched Vulnerability : CVE-2018-11210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TinyXML2 6.2.0 has a heap-based buffer over-read in the XMLDocument::Parse function in libtinyxml2.so. NOTE: The tinyxml2 developers have determined that the...

CVE-2024-50615

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...

CBL Mariner 2.0 Security Update: tinyxml2 (CVE-2024-50615)

The version of tinyxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50615 advisory. - TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that May lead to application exit, in...

Azure Linux 3.0 Security Update: tinyxml2 (CVE-2024-50615)

The version of tinyxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50615 advisory. - TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/digit, that May lead to application exit, in...

CVE-2024-50615 affecting package tinyxml2 for versions less than 9.0.0-2

CVE-2024-50615 affecting package tinyxml2 for versions less than 9.0.0-2. A patched version of the package is available...

CVE-2024-50615 affecting package tinyxml2 for versions less than 9.0.0-2

CVE-2024-50615 affecting package tinyxml2 for versions less than 9.0.0-2. A patched version of the package is available...

TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef.

...

Linux Distros Unpatched Vulnerability : CVE-2024-50614

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef. CVE-2024-50614 No...

SUSE CVE-2024-50614

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...

CVE-2024-50614

A flaw was found in the TinyXML2 package. A reachable assertion error may be triggered via a specially-crafted XML file, which can lead to a denial of service...

Improper Check or Handling of Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check or Handling of Exceptional Conditions due to the XMLUtil::GetCharacterRef function. An attacker can cause the application to exit unexpectedly by triggering a reachable assertion for UINTMAX/16. Remediation There is no...

Improper Check or Handling of Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check or Handling of Exceptional Conditions via to the XMLUtil::GetCharacterRef function. An attacker can cause the application to exit by triggering a reachable assertion for UINTMAX/digit. Remediation Upgrade tinyxml2 to...

AZL-51874 CVE-2024-50614 affecting package cppcheck 2.7-2

TinyXML2 through 10.0.0 has a reachable assertion for UINTMAX/16, that may lead to application exit, in tinyxml2.cpp XMLUtil::GetCharacterRef...