Lucene search
+L

23 matches found

Snyk
Snyk
added 2026/06/29 1:21 p.m.5 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow in the xmlcatalog process when operating in shell mode. An attacker can cause memory corruption, application crash, or execute arbitrary code by supplying an excessively long input line. Remediation A fix was pushed into...

7.8CVSS6.1AI score0.00148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.11 views

EulerOS Virtualization 2.10.1 : libxml2 (EulerOS-SA-2026-2028)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are handled. The parser does not...

6.2CVSS5.8AI score0.00755EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.17 views

AIX : Multiple Vulnerabilities (IJ58122)

The version of AIX installed on the remote host is prior to APAR IJ58122. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ58122 advisory. - A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition XSD...

7.5CVSS5.6AI score0.00755EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.14 views

AIX : Multiple Vulnerabilities (IJ58140)

The version of AIX installed on the remote host is prior to APAR IJ58140. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ58140 advisory. - A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition XSD...

7.5CVSS5.6AI score0.00755EPSS
Exploits4References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/28 9:4 p.m.16 views

Security Bulletin: Vulnerabilities in libxml2 (CVE-2026-0989, CVE-2026-0990, CVE-2026-0992) affect AIX

Summary Vulnerabilities in libxml2 could cause a denial of service CVE-2026-0989, CVE-2026-0990, CVE-2026-0992. AIX uses libxml2 as part of its XML parsing functions. Vulnerability Details CVEID:CVE-2026-6732 DESCRIPTION: A flaw was found in libxml2. This vulnerability occurs when the library...

7.5CVSS5.8AI score0.00755EPSS
Exploits4Affected Software2
OSV
OSV
added 2026/04/08 1:30 p.m.14 views

CLSA-2026-1775649722 libxml2: Fix of 6 CVEs

CVE-2024-34459: fix buffer over-read in xmlHTMLPrintFileContext in xmllint - CVE-2025-8732: fix stack overflow from self-referencing SGML CATALOG entries - CVE-2026-0989: add RelaxNG include recursion limit - CVE-2026-0990: prevent infinite recursion in xmlCatalogListXMLResolveURI -...

7.5CVSS6AI score0.02298EPSS
Exploits5References1
SUSE Linux
SUSE Linux
added 2026/03/03 1:35 p.m.5 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS6AI score0.00755EPSS
Exploits2References26
OSV
OSV
added 2026/03/03 1:35 p.m.2 views

SUSE-SU-2026:0782-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

6.2CVSS6AI score0.00755EPSS
Exploits2References14
SUSE Linux
SUSE Linux
added 2026/02/24 11:19 a.m.5 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.5AI score0.00755EPSS
Exploits4References40
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.8 views

AIX (IJ57276)

The version of AIX installed on the remote host is prior to APAR IJ57276. It is, therefore, affected by a vulnerability as referenced in the IJ57276 advisory. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function...

4.8CVSS4.8AI score0.00202EPSS
Exploits1References3
Amazon
Amazon
added 2026/02/05 12:0 a.m.8 views

Medium: libxml2

Issue Overview: A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issu...

5.9CVSS5.6AI score0.00755EPSS
Exploits2
Microsoft CVE
Microsoft CVE
added 2026/01/19 9:1 a.m.4 views

Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing

...

5.9CVSS5.4AI score0.00755EPSS
Exploits1
OSV
OSV
added 2026/01/15 3:15 p.m.6 views

AZL-74780 CVE-2026-0990 affecting package libxml2 2.11.5-8

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS5.8AI score0.00755EPSS
Exploits1References1
OSV
OSV
added 2026/01/15 3:15 p.m.8 views

AZL-74778 CVE-2026-0992 affecting package libxml2 for versions less than 2.10.4-10

A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when processing XML catalogs that contain repeated elements pointing to the same downstream catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to...

2.9CVSS6AI score0.00308EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/01/15 2:20 p.m.1 views

CVE-2026-0992 Libxml2: libxml2: denial of service via crafted xml catalogs

A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when processing XML catalogs that contain repeated elements pointing to the same downstream catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to...

2.9CVSS6.3AI score0.00308EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/15 2:20 p.m.41 views

CVE-2026-0990 Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS0.00755EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/15 2:20 p.m.2 views

CVE-2026-0990 Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS6.3AI score0.00755EPSS
Exploits1References4
CVE
CVE
added 2026/01/15 2:20 p.m.78 views

CVE-2026-0990

Vulnerability: CVE-2026-0990 affects libxml2. An uncontrolled recursion bug in xmlCatalogXMLResolveURI is triggered when a delegate URI entry references itself, allowing a remote attacker to craft an XML catalog that causes infinite recursion and stack exhaustion, resulting in DoS via application...

5.9CVSS6.3AI score0.00755EPSS
Exploits1References4Affected Software4
OSV
OSV
added 2026/01/15 2:20 p.m.2 views

CVE-2026-0990 Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing

A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references itself. A remote attacker could exploit this configuration-dependent issue by providing a...

5.9CVSS6AI score0.00755EPSS
Exploits1References9
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.6 views

libxml2 security vulnerability

Libxml2 is an open-source library from GNOME that is used for parsing XML documents. It is written in C language and can be called in various languages, such as C, C++, and XSH. Libxml2 has a security vulnerability. This vulnerability stems from the xmlCatalogXMLResolveURI function, which allows...

5.9CVSS5.8AI score0.00755EPSS
Exploits1References3
Rows per page
Query Builder