EulerOS 2.0 SP10 : libxml2 (EulerOS-SA-2025-1527)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.CVE-2025-27113 libxml2 before 2.12.10...

EulerOS 2.0 SP10 : libxml2 (EulerOS-SA-2025-1526)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c.CVE-2025-27113 libxml2 before 2.12.10...

K000151254: libxml2 vulnerability CVE-2024-40896

Security Advisory Description In libxml2 2.11 before 2.11.9, 2.12 before 2.12.9, and 2.13 before 2.13.3, the SAX parser can produce events for external entities even if custom SAX handlers try to override entity content by setting "checked". This makes classic XXE attacks possible. CVE-2024-40896...

CLSA-2025-1746791922 libxml2: Fix of 2 CVEs

CVE-2025-32415: fix heap-based buffer under-read in xmlSchemaIDCFillNodeTables function - CVE-2025-32414: fix out-of-bounds memory access in Python API by correcting return value in xmlPythonFileRead and xmlPythonFileReadRaw...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.8.1.8)

The version of AOS installed on the remote host is prior to 6.8.1.8. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.8.1.8 advisory. - BZ2decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. CVE-2019-129...

CLSA-2025-1746654421 libxml2: Fix of CVE-2025-32415

CVE-2025-32415: fix heap-based buffer under-read in xmlSchemaIDCFillNodeTables...

RLSA-2025:2686 Important: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: Use-After-Free in libxml2 CVE-2024-56171 libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 CVE-2025-24928 For more details about the security issues,...

libxml2 security update

An update is available for libxml2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libxml2 library is a development toolbox providing the implementation of...

RLSA-2024:0119 Moderate: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other relat...

libxml2 security update

An update is available for libxml2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libxml2 library is a development toolbox providing the implementation of...

PT-2025-29478 · Undefined · Undefined

Уязвимость функции xmlSchemaCopyValue библиотеки libxml2 связана с разыменованием нулевого указателя. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании с помощью специально созданного документа...

RockyLinux 8 : libxml2 (RLSA-2025:2686)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:2686 advisory. libxml2: Use-After-Free in libxml2 CVE-2024-56171 libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2 CVE-2025-24928 Tenable has...

RockyLinux 8 : libxml2 (RLSA-2024:0119)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:0119 advisory. libxml2: crafted xml can cause global buffer overflow CVE-2023-39615 Tenable has extracted the preceding description block directly from the RockyLinux security...

Security Bulletin: AIX is vulnerable to a denial of service due to libxml2 (CVE-2022-49043)

Summary UPDATED May 5 2025 New iFixes provided for AIX 7.2 TL5 SP7, 7.3 TL1 SP2 and SP3, 7.3 TL2 SP1, and VIOS 3.1.4.31. The new iFixes include a packaging change to clarify that the iFixes are cumulative and address relevant, previously issued AIX/VIOS libxml2 security bulletins. There is no...

ROS-20250505-31

A vulnerability in the libxml2 library is related to out-of-bounds reads that occur in Python APIs Python bindings due to an invalid return value. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service...

ROS-20250505-32

A vulnerability in the libxml2 library is related to out-of-bounds reads that occur in Python APIs Python bindings due to an invalid return value. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service...

Photon OS 5.0: Libxml2 PHSA-2025-5.0-0516

An update of the libxml2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0516. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

ROS-20250505-10

A vulnerability in the libxml2 library is related to out-of-bounds reads that occur in Python APIs Python bindings due to an invalid return value. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service...

The vulnerability of the Python API component of the libxml2 library, which allows a hacker to trigger a denial-of-service attack.

The vulnerability of the Python API component of the libxml2 library is related to incorrect checking of the returned value from methods or functions. Exploiting this vulnerability could allow an attacker to cause service failures remotely...

The vulnerability of the xmlSnprintfElements() function in the libxml2 library allows a hacker to execute arbitrary code.

The vulnerability of the xmlSnprintfElements function in the libxml2 library is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...