Lucene search
K

34 matches found

F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.48 views

K24322529: libxml2 vulnerabilities CVE-2016-4447 and CVE-2016-4449

Security Advisory Description CVE-2016-4447 The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service heap-based buffer underread and application crash via a crafted file, involving xmlParseName. CVE-2016-4449 XML external...

7.5CVSS7.2AI score0.1398EPSS
Exploits1Affected Software15
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.17 views

Slackware: Security Advisory (SSA:2016-148-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.7AI score0.1398EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:1538-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.7AI score0.1398EPSS
Exploits11References17
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.47 views

Security Bulletin: Vulnerabilities in libxml2 affect IBM RackSwitch Networking products

Summary IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2. Vulnerability Details Summary IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2. Vulnerability Details: CVE-ID: CVE-2016-3627 Description: libxml2 is...

7.5CVSS0.9AI score0.1398EPSS
Exploits3Affected Software7
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.51 views

Security Bulletin: Vulnerabilities in libxml2 affect IBM Flex System Networking Switch products

Summary IBM Flex System Networking Switch products have addressed the following vulnerabilities in libxml2. Vulnerability Details Summary IBM Flex System Networking Switch products have addressed the following vulnerabilities in libxml2. Vulnerability Details: CVE-ID: CVE-2016-3627 Description:...

7.5CVSS1.1AI score0.1398EPSS
Exploits3Affected Software4
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:14 a.m.34 views

Security Bulletin: Rational Systems Tester is affected by Libxml2 vulnerabilities (CVE-2016-4447, CVE-2016-4448, CVE-2016-4449)

Summary A set of Libxml2 vulnerabilities were disclosed by the Libxml2 Project. Libxml2 is used by Rational Systems Tester. Rational Systems Tester has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-4447 DESCRIPTION: libxml2 is vulnerable to a denial of service, caused by a...

10CVSS1.4AI score0.1398EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:46 p.m.36 views

Security Bulletin: IBM Security Access Manager for Mobile is affected by security vulnerabilities in libxml2

Summary Vulnerabilities have been identified in the libxml2 library, which is a development toolbox providing the implementation of various XML standards. IBM Security Access Manager for Mobile uses libxml2 and is affected by these vulnerabilities. Vulnerability Details CVEID: CVE-2016-4448...

10CVSS1.8AI score0.1398EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 11:50 p.m.25 views

Security Bulletin: IBM Cognos AnalyticsのLibxml2脆弱性について

Summary IBM Cognos Analytics 11.0.5.0で修正されている複数の脆弱性についてお知らせ致します。 IBM® WebSphere Application Server Libertyには複数のLibxml2 脆弱性が存在します。LibertyはCognos Analytics で使用されています。これらの問題はIBM WebSphere Application Server Libertyの更新の一部として公開されました。 2つのクロスサイトスクリプティングに関する脆弱性も修正されています。 脆弱性の詳細につきましては、下記サイトをご覧ください。...

10CVSS1.2AI score0.1398EPSS
Exploits2Affected Software1
Apple
Apple
added 2017/06/10 11:47 a.m.48 views

About the security content of iTunes 12.4.2 for Windows - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

10CVSS1.4AI score0.1398EPSS
Exploits3Affected Software1
OpenVAS
OpenVAS
added 2017/04/20 12:0 a.m.30 views

Fedora Update for libxml2 FEDORA-2017-be8574d593

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.9AI score0.1398EPSS
Exploits11References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/04/11 12:0 a.m.72 views

JVN#17535578: Multiple vulnerabilities in Cybozu Office

Cybozu Office contains multiple vulnerabilities listed below. Cross-site scripting in the design setting screen CWE-79 - CVE-2017-2114 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N| Base Score: 5.4 CVSS v2| AV:N/AC:L/Au:S/C:N/I:P/A:N| Base Score: 4.0...

7.1CVSS7.8AI score0.01661EPSS
Exploits0
ALT Linux
ALT Linux
added 2017/03/07 12:0 a.m.53 views

Security fix for the ALT Linux 8 package libxml2 version 1:2.9.4.0.12.e905-alt1

1:2.9.4.0.12.e905-alt1 built March 7, 2017 Dmitry V. Levin in task 179256 --- March 3, 2017 Dmitry V. Levin - v2.9.3-5-g65112cb - v2.9.4-12-ge905f08 fixes: CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627,...

10CVSS3.3AI score0.08628EPSS
Exploits10
ALT Linux
ALT Linux
added 2017/03/03 12:0 a.m.42 views

Security fix for the ALT Linux 10 package libxml2 version 1:2.9.4.0.12.e905-alt1

March 3, 2017 Dmitry V. Levin 1:2.9.4.0.12.e905-alt1 - v2.9.3-5-g65112cb - v2.9.4-12-ge905f08 fixes: CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705, CVE-2016-4449, CVE-2016-4483, CVE-2016-4658,...

10CVSS7.7AI score0.08628EPSS
Exploits10
ALT Linux
ALT Linux
added 2017/03/03 12:0 a.m.28 views

Security fix for the ALT Linux 9 package libxml2 version 1:2.9.4.0.12.e905-alt1

March 3, 2017 Dmitry V. Levin 1:2.9.4.0.12.e905-alt1 - v2.9.3-5-g65112cb - v2.9.4-12-ge905f08 fixes: CVE-2016-1833, CVE-2016-1834, CVE-2016-1835, CVE-2016-1836, CVE-2016-1837, CVE-2016-1838, CVE-2016-1839, CVE-2016-1840, CVE-2016-3627, CVE-2016-3705, CVE-2016-4449, CVE-2016-4483, CVE-2016-4658,...

10CVSS7.7AI score0.08628EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2016/12/20 12:0 a.m.55 views

F5 Networks BIG-IP : libxml2 vulnerabilities (K24322529)

CVE-2016-4447 The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service heap-based buffer underread and application crash via a crafted file, involving xmlParseName. CVE-2016-4449 XML external entity XXE vulnerability in t...

7.5CVSS8.1AI score0.1398EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.45 views

Amazon Linux: Security Advisory (ALAS-2016-719)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.1398EPSS
Exploits11References2
Mageia
Mageia
added 2016/07/26 9:59 p.m.58 views

Updated libxml2 packages fix security vulnerability

A heap-based buffer overflow flaw was found in the way libxml2 parsed certain crafted XML input. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or execute arbitrary code with the...

10CVSS8.9AI score0.1398EPSS
Exploits11References4
RedhatCVE
RedhatCVE
added 2016/07/18 2:19 p.m.37 views

CVE-2016-4449

XML external entity XXE vulnerability in the xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.4, when not in validating mode, allows context-dependent attackers to read arbitrary files or cause a denial of service resource consumption via unspecified vectors...

7.1CVSS7AI score0.01661EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.50 views

Amazon Linux AMI : libxml2 (ALAS-2016-719)

A heap-based buffer overflow flaw was found in the way libxml2 parsed certain crafted XML input. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or execute arbitrary code with the...

10CVSS7AI score0.1398EPSS
Exploits11References15
Tenable Nessus
Tenable Nessus
added 2016/06/24 12:0 a.m.141 views

Oracle Linux 6 / 7 : libxml2 (ELSA-2016-1292)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-1292 advisory. - Heap-based buffer overread in xmlNextChar CVE-2016-1762 - Bug 763071: Heap-buffer-overflow in xmlStrncat CVE-2016-1834 - Bug 757711:...

10CVSS7.1AI score0.1398EPSS
Exploits11References15
Rows per page
Query Builder