Lucene search
+L

209 matches found

Rockylinux
Rockylinux
added 3 days ago6 views

perl-XML-LibXML security update

An update is available for perl-XML-LibXML. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This module implements a Perl interface to the GNOME libxml2 library...

7.5CVSS6.1AI score0.00629EPSS
Exploits0
OSV
OSV
added 3 days ago4 views

RLSA-2026:39553 Important: perl-XML-LibXML security update

This module implements a Perl interface to the GNOME libxml2 library which provides interfaces for parsing and manipulating XML files. This module allows Perl programmers to make use of the highly capable validating XML parser and the high performance DOM implementation. Security Fixes:...

7.5CVSS6.1AI score0.00629EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 3 days ago7 views

perl-XML-LibXML: XML::LibXML: Denial of Service via truncated UTF-8 in XML node names

A flaw was found in XML::LibXML for Perl. A remote attacker could exploit this vulnerability when processing specially crafted XML node names containing incomplete UTF-8 character sequences. This can lead to an out-of-bounds read in heap memory, potentially causing the application to crash and...

7.5CVSS6AI score0.00629EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 3 days ago5 views

Important: Red Hat Security Advisory: perl-XML-LibXML security update

An update for perl-XML-LibXML is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

7.5CVSS6.1AI score0.00629EPSS
Exploits0References2
OSV
OSV
added 2026/07/08 12:0 a.m.3 views

ALSA-2026:36734 Low: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling CVE-2025-6170 For more details about the security issues, including the impact, a CVSS score,...

2.5CVSS7AI score0.00202EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/07/01 12:0 a.m.5 views

The vulnerability of the xmlHTMLPrintFileContext() function in the xmllint component of the Libxml2 library allows a attacker to disclose confidential information or enhance their privileges.

The vulnerability of the xmlHTMLPrintFileContext function in the xmllint component of the Libxml2 library is related to buffer overflows in dynamic memory. Exploiting this vulnerability could allow an attacker to disclose confidential information or gain elevated privileges...

7.8CVSS6.5AI score0.02298EPSS
Exploits1References10Affected Software6
SUSE CVE
SUSE CVE
added 2026/06/26 2:7 a.m.7 views

SUSE CVE-2026-57236

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Documentencoding= with an invalid encoding e.g., a non-string, or a string containing a null byte raises an exception, but only after freeing the document's current encoding string without...

8.2CVSS5.8AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 3:16 p.m.7 views

UBUNTU-CVE-2026-57236

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Documentencoding= with an invalid encoding e.g., a non-string, or a string containing a null byte raises an exception, but only after freeing the document's current encoding string without...

8.2CVSS5.8AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 3:16 p.m.5 views

UBUNTU-CVE-2026-57434

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain methods on allocated-but-uninitialized native wrapper classes that inherit from Nokogiri::XML::Node. This caused a NULL pointer dereference that could...

7.5CVSS5.8AI score0.00357EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 3:16 p.m.5 views

UBUNTU-CVE-2026-57436

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Documentroot= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the document root. The result is a heap use-after-free during garbage...

6.3CVSS5.7AI score0.00312EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/06/25 2:33 p.m.9 views

CVE-2026-57436

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Documentroot= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the document root. The result is a heap use-after-free during garbage...

6.3CVSS5.8AI score0.00312EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 2:32 p.m.9 views

CVE-2026-57435

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a Ruby wrapper pointing to freed memory when replacing the value of an XML attribute. If Ruby code had already accessed an attribute child node,...

7.5CVSS5.9AI score0.00357EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 2:32 p.m.9 views

CVE-2026-57434

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain methods on allocated-but-uninitialized native wrapper classes that inherit from Nokogiri::XML::Node. This caused a NULL pointer dereference that could...

7.5CVSS5.9AI score0.00357EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/25 2:31 p.m.8 views

CVE-2026-57235

Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::NodeSet and its alias slice checked the requested index against the node set's bounds using a 32-bit-truncated copy of the index. A large negative index could pass the check and then...

8.2CVSS5.9AI score0.00331EPSS
Exploits0
OSV
OSV
added 2026/06/24 10:8 a.m.5 views

RHSA-2026:28254 Red Hat Security Advisory: libxml2 security update

Bulletin has no description...

5.5CVSS6.5AI score0.02298EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.9 views

RHEL 8 : libxml2 (RHSA-2026:27736)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:27736 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: buffer over-read in...

7.5CVSS6.9AI score0.02298EPSS
Exploits1References5
Amazon
Amazon
added 2026/06/08 12:0 a.m.13 views

Medium: perl-XML-LibXML

Issue Overview: XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences. A node name ending in the middle of a multi byte UTF-8 sequence causes the parser to read past the end of the input string into adjace...

7.5CVSS5.5AI score0.00629EPSS
Exploits0
Amazon
Amazon
added 2026/06/08 12:0 a.m.14 views

Medium: perl-XML-LibXML

Issue Overview: XML::LibXML versions through 2.0210 for Perl read out-of-bounds heap memory when parsing XML node names containing truncated UTF-8 byte sequences. A node name ending in the middle of a multi byte UTF-8 sequence causes the parser to read past the end of the input string into adjace...

7.5CVSS5.5AI score0.00629EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/05 12:59 p.m.15 views

CVE-2026-8177 affecting package perl-XML-LibXML for versions less than 2.0209-3

CVE-2026-8177 affecting package perl-XML-LibXML for versions less than 2.0209-3. A patched version of the package is available...

7.5CVSS5.4AI score0.00629EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in libxml2

In libxml2 version 2.9.13, the valid.c file contains a use-after-free issue with the ID and IDREF attributes...

7.5CVSS7.2AI score0.0601EPSS
Exploits0References2
Rows per page
Query Builder