Lucene search
K

16 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:0 p.m.45 views

K04450715: libxml2 vulnerability CVE-2015-8806

Security Advisory Description dict.c in libxml2 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via an unexpected character immediately after the " Identified Medium screen. To determine if your release is known to be vulnerable, the componen...

7.5CVSS6.7AI score0.04964EPSS
Exploits0Affected Software23
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2016-0263)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.1398EPSS
Exploits11References6
Rosalinux
Rosalinux
added 2021/07/02 5:25 p.m.33 views

Advisory ROSA-SA-2021-1905

Software: libxml2 2.9.1 OS: Cobalt 7.9 CVE-ID: CVE-2013-0339 CVE-Crit: HIGH CVE-DESC: libxml2 before 2.9.1 does not handle external entity extension properly if the application developer does not use the xmlSAX2ResolveEntity or xmlSetExternalEntityLoader function, which allows remote attackers to...

9.8CVSS8.8AI score0.05436EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2016:1538-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.1398EPSS
Exploits11References17
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.37 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-2211)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.7AI score0.04964EPSS
Exploits4References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.51 views

Security Bulletin: Vulnerabilities in libxml2 affect IBM Flex System Networking Switch products

Summary IBM Flex System Networking Switch products have addressed the following vulnerabilities in libxml2. Vulnerability Details Summary IBM Flex System Networking Switch products have addressed the following vulnerabilities in libxml2. Vulnerability Details: CVE-ID: CVE-2016-3627 Description:...

7.5CVSS1.1AI score0.1398EPSS
Exploits3Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.47 views

Security Bulletin: Vulnerabilities in libxml2 affect IBM RackSwitch Networking products

Summary IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2. Vulnerability Details Summary IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2. Vulnerability Details: CVE-ID: CVE-2016-3627 Description: libxml2 is...

7.5CVSS0.9AI score0.1398EPSS
Exploits3Affected Software7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 2:17 p.m.35 views

Security Bulletin: IBM Streams may be affected by XMLsoft Libxml2 vulnerabilities

Summary The libxml2 library, used by IBM Streams may have security vulnerabilities. IBM Streams has addressed the applicable CVE. Vulnerability Details CVE-ID: CVE-2015-8806 Description: Libxml2 is vulnerable to a denial of service, caused by a heap-buffer overread in dict.c. By persuading a vict...

7.5CVSS1AI score0.04964EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2017/03/17 12:0 a.m.54 views

F5 BIG-IP - libxml2 vulnerability CVE-2015-8806

dict.c in libxml2 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via an unexpected character immediately after the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyrig...

7.5CVSS6.6AI score0.74EPSS
Exploits7References1
Mageia
Mageia
added 2016/07/26 9:59 p.m.59 views

Updated libxml2 packages fix security vulnerability

A heap-based buffer overflow flaw was found in the way libxml2 parsed certain crafted XML input. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or execute arbitrary code with the...

10CVSS8.9AI score0.1398EPSS
Exploits11References4
OpenVAS
OpenVAS
added 2016/06/17 12:0 a.m.43 views

openSUSE: Security Advisory for libxml2 (openSUSE-SU-2016:1595-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.4AI score0.1398EPSS
Exploits6References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/06/16 1:10 p.m.49 views

Security update for libxml2 (important)

This update for libxml2 fixes the following security issues: - CVE-2016-2073, CVE-2015-8806, CVE-2016-1839: A Heap-buffer overread was fixed in libxml2/dict.c bsc963963, bsc965283, bsc981114. - CVE-2016-4483: Code was added to avoid an out of bound access when serializing malformed strings...

10CVSS1.4AI score0.1398EPSS
Exploits11References14
Tenable Nessus
Tenable Nessus
added 2016/06/07 12:0 a.m.42 views

Ubuntu 14.04 LTS / 16.04 LTS : libxml2 vulnerabilities (USN-2994-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2994-1 advisory. It was discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a...

9.3CVSS7.3AI score0.1398EPSS
Exploits12References17
Ubuntu
Ubuntu
added 2016/06/06 4:43 p.m.108 views

USN-2994-1: libxml2 vulnerabilities

It was discovered that libxml2 incorrectly handled certain malformed documents. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. CVE-2015-8806, CVE-2016-2073, CVE-2016-3627,...

9.3CVSS7AI score0.1398EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2016/06/03 12:0 a.m.54 views

Debian DSA-3593-1 : libxml2 - security update

Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause a denial-of-service against the...

9.3CVSS7AI score0.1398EPSS
Exploits12References23
CVE
CVE
added 2016/04/13 5:0 p.m.138 views

CVE-2015-8806

CVE-2015-8806 — libxml2 heap-buffer overread in dict.c . A remote attacker can crash an affected application by sending a crafted HTML document containing an unexpected character immediately after the "

7.5CVSS7.1AI score0.04964EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder