Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to GNOME libxml2 denial of service vulnerability [ CVE-2024-25062]

Summary Potential GNOME libxml2 denial of service vulnerability CVE-2024-25062 have been identified that could affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-25062...

CVE-2023-45322 affecting package libxml2 for versions less than 2.11.5-3

CVE-2023-45322 affecting package libxml2 for versions less than 2.11.5-3. A patched version of the package is available...

CVE-2024-34459 affecting package libxml2 for versions less than 2.11.5-3

CVE-2024-34459 affecting package libxml2 for versions less than 2.11.5-3. A patched version of the package is available...

USN-7240-1: libxml2 vulnerabilities

It was discovered that libxml2 incorrectly handled certain memory operations. A remote attacker could use this issue to cause libxml2 to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2022-49043 It was discovered that the libxml2 xmllint tool incorrectly handled...

USN-7240-1 libxml2 vulnerabilities

It was discovered that libxml2 incorrectly handled certain memory operations. A remote attacker could use this issue to cause libxml2 to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2022-49043 It was discovered that the libxml2 xmllint tool incorrectly handled...

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : libxml2 vulnerabilities (USN-7240-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7240-1 advisory. It was discovered that libxml2 incorrectly handled certain memory operations. A remote attacker could use this issue to cause...

PT-2025-7651 · Git +1 · Libxml2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow crash. Technical details about the crash include the xmlValidateElementContent, xmlValidateOneElement, an...

Security Bulletin: Vulnerability in libxml2 (CVE-2024-25062) affects Power HMC.

Summary The libxml2 library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2024-25062 DESCRIPTION: An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD...

Security Bulletin: Vulnerability in libxml2 affects IBM Integrated Analytics System [ CVE-2024-25062]

Summary Redhat provided libxml2 is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE CVE-2024-25062 Vulnerability Details CVEID:CVE-2024-25062 DESCRIPTION: An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using...

Advisory ROSA-SA-2025-2624

software: libxml2 2.9.14 OS: ROSA-CHROME packageevrstring: libxml2-2.9.14-6 CVE-ID: CVE-2024-25062 BDU-ID: 2024-01415 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the xmlValidatePopElement function of the XML Reader Interface component of the Libxml2 library is related to memory usage after it is...

SUSE CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

PT-2025-7047

Name of the Vulnerable Software and Affected Versions libxml2 versions 2.12.10 and earlier, 2.13.x versions prior to 2.13.6 Description The issue is a stack-based buffer overflow in the xmlSnprintfElements function in valid.c. To exploit this, DTD validation must occur for an untrusted document o...

CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

DEBIAN-CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

AZL-55967 CVE-2022-49043 affecting package libxml2 for versions less than 2.10.4-5

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

UBUNTU-CVE-2022-49043

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free...

libxml2 安全漏洞

libxml2 is a GNOME open source library for parsing XML documents. It is written in C and can be called by many languages, such as C, C++, and XSH. A security vulnerability exists in libxml2 versions prior to 2.11.0 due to a post-release reuse vulnerability in the xmlXIncludeAddNode function...

CVE-2022-49043

Summary: CVE-2022-49043 affects libxml2 before 2.11.0, where xmlXIncludeAddNode in xinclude.c has a use-after-free vulnerability. The vulnerability is documented across multiple connected sources (Linux distributions and advisories) and is associated with a high impact due to potential memory cor...