3104 matches found
[SECURITY] [DSA 5271-1] libxml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5271-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 05, 2022 https://www.debian.org/security/faq -...
Amazon Linux 2022 : libxml2, libxml2-devel, libxml2-static (ALAS2022-2022-198)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-198 advisory. valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the...
SUSE: Security Advisory (SUSE-SU-2022:3717-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:3717-1 Security update for libxml2
This update for libxml2 fixes the following issues: - CVE-2016-3709: Fixed possible XSS vulnerability bsc1201978. - CVE-2022-40303: Fixed integer overflows with XMLPARSEHUGE bsc1204366. - CVE-2022-40304: Fixed dict corruption caused by entity reference cycles bsc1204367...
Amazon Linux 2 : libxml2 (ALAS-2022-1848)
The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2022-1848 advisory. A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the xmlBuffer types. A substantial input...
GSD-2022-1006504 i2c: mux: harden i2c_mux_alloc() against integer overflows
i2c: mux: harden i2cmuxalloc against integer overflows This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.12 by commit...
GSD-2022-1006460 i2c: mux: harden i2c_mux_alloc() against integer overflows
i2c: mux: harden i2cmuxalloc against integer overflows This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0 by commit...
EulerOS Virtualization 3.0.6.6 : libxml2 (EulerOS-SA-2022-2517)
According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 - In libxml2 before 2.9.14,...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2022-2354)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2022-2390)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization 2.9.0 : libxml2 (EulerOS-SA-2022-2390)
According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In libxml2 before 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer don't check for integer...
Apple Mac OS X Security Update (HT211931)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AIX 7.2 TL 4 : libxml2 (IJ42381)
https://vulners.com/cve/CVE-2022-29824 https://vulners.com/cve/CVE-2022-29824 GNOME libxml2 is vulnerable to a denial of service, caused by an integer overflows in several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer. By persuading a victim to open a specially-crafted XML file, ...
AIX 7.3 TL 0 : libxml2 (IJ42341)
https://vulners.com/cve/CVE-2022-29824 https://vulners.com/cve/CVE-2022-29824 GNOME libxml2 is vulnerable to a denial of service, caused by an integer overflows in several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer. By persuading a victim to open a specially-crafted XML file, ...
AIX is vulnerable to a denial of service due to libxml2 (CVE-2022-29824)
IBM SECURITY ADVISORY First Issued: Mon Sep 12 15:07:01 CDT 2022 |Updated: Mon Dec 12 12:49:47 CST 2022 |Update: Added iFixes for AIX 7.2 TL5 SP5 and VIOS 3.1.4.10. The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/libxml2advisory3.asc...
Amazon Linux 2022 : libxml2, libxml2-devel, libxml2-static (ALAS2022-2022-068)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-068 advisory. valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the...
SUSE-SU-2022:2958-1 Security update for postgresql12
This update for postgresql12 fixes the following issues: - Upgrade to 12.12: - CVE-2022-2625: Fixed an issue where extension scripts would replace objects not belonging to that extension bsc1202368. - Upgrade to 12.11: - CVE-2022-1552: Confined additional operations within 'security restricted...
Ubuntu: Security Advisory (USN-344-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-3212-4)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-291-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...