8 matches found
Huawei EulerOS: Security Advisory for libplist (EulerOS-SA-2024-1147)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux 2 : libplist (ALAS-2023-2067)
The version of libplist installed on the remote host is prior to 1.12-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2067 advisory. A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plistfromxml of the fil...
Medium: libplist
Issue Overview: A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plistfromxml of the file src/xplist.c of the component XML Handler. The manipulation leads to xml external entity reference. The name of the patch is...
SUSE: Security Advisory (SUSE-SU-2023:0872-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : libplist (SUSE-SU-2023:0872-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0872-1 advisory. - CVE-2015-10082: Fixed XXEsecurity vulnerability with XML plists bsc1208546. Tenable has extracted the preceding...
SUSE-SU-2023:0872-1 Security update for libplist
This update for libplist fixes the following issues: - CVE-2015-10082: Fixed XXEsecurity vulnerability with XML plists bsc1208546...
CVE-2015-10082
CVE-2015-10082 affects UIKit0 libplist 1.12; the XML handler’s plist_from_xml function in src/xplist.c is vulnerable to an XML External Entity Reference (XXE). The patch is identified by the hash c086cb139af7c82845f6d565e636073ff4b37440. Documented references across multiple advisories (including...
CVE-2015-10082 UIKit0 libplist XML xplist.c plist_from_xml xml external entity reference
A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plistfromxml of the file src/xplist.c of the component XML Handler. The manipulation leads to xml external entity reference. The patch is named c086cb139af7c82845f6d565e636073ff4b37440. It ...