6886 matches found
Photon OS 4.0: Libxml2 PHSA-2025-4.0-0787
An update of the libxml2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0787. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CentOS 9 : libxml2-2.9.13-10.el9
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libxml2-2.9.13-10.el9 build changelog. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issu...
SUSE SLES12 Security Update : libxml2 (SUSE-SU-2025:02294-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02294-1 advisory. - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 - CVE-2025-49796: Fixed type confusion which...
FreeBSD : libxml2 -- multiple vulnerabilities (abbc8912-5efa-11f0-ae84-99047d0a6bcc)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the abbc8912-5efa-11f0-ae84-99047d0a6bcc advisory. Alan Coopersmith reports: As discussed in https://gitlab.gnome.org/GNOME/libxml2/-/issues/913...
SUSE-SU-2025:02294-1 Security update for libxml2
This update for libxml2 fixes the following issues: - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 - CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 - CVE-2025-6170: Fixed a stack buffer overflow which could...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2025-1783)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Azure Linux 3.0 Security Update: libxml2 (CVE-2025-32414)
The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32414 advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API...
AlmaLinux 8 : libxml2 (ALSA-2025:10698)
The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10698 advisory. libxml: Heap use after free UAF leads to Denial of service DoS CVE-2025-49794 libxml: Type confusion leads to Denial of service DoS CVE-2025-49796 libxml...
Azure Linux 3.0 Security Update: libxml2 (CVE-2025-32415)
The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32415 advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-...
AlmaLinux 9 : libxml2 (ALSA-2025:10699)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:10699 advisory. libxml: Heap use after free UAF leads to Denial of service DoS CVE-2025-49794 libxml: Type confusion leads to Denial of service DoS CVE-2025-49796 libxml...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2025-1806)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CBL Mariner 2.0 Security Update: libxml2 (CVE-2025-32415)
The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32415 advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-...
CBL Mariner 2.0 Security Update: libxml2 (CVE-2025-32414)
The version of libxml2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32414 advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API...
CVE-2025-32414 affecting package libxml2 for versions less than 2.10.4-7
CVE-2025-32414 affecting package libxml2 for versions less than 2.10.4-7. A patched version of the package is available...
CVE-2025-32415 affecting package libxml2 for versions less than 2.10.4-7
CVE-2025-32415 affecting package libxml2 for versions less than 2.10.4-7. A patched version of the package is available...
Security update for libxml2
This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...
SUSE-SU-2025:02275-1 Security update for libxml2
This update for libxml2 fixes the following issues: - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 - CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 - CVE-2025-6170: Fixed a stack buffer overflow which could...
AZL-75182 CVE-2025-7425 affecting package libxml2 for versions less than 2.10.4-10
A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may acce...
AZL-73183 CVE-2025-7425 affecting package libxml2 for versions less than 2.11.5-8
A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may acce...
RHSA-2025:10699 Red Hat Security Advisory: libxml2 security update
Bulletin has no description...