Debian Security Advisory DSA 1666-1 (libxml2)

The remote host is missing an update to libxml2 announced via advisory DSA 1666-1. OpenVAS Vulnerability Test $Id: deb16661.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1666-1 libxml2 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: libxml2

The remote host is missing an update to the system as announced in the referenced advisory. VID f1e0164e-b67b-11dd-a55e-00163e000016 OpenVAS Vulnerability Test $ Description: Auto generated from VID f1e0164e-b67b-11dd-a55e-00163e000016 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

[SECURITY] Fedora 10 Update: libxml2-2.7.2-2.fc10

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

SuSE 10 Security Update : libxml2 (ZYPP Patch Number 5756)

This update fixes an integer overflow in libxml2 that could lead to memory corruption and arbitrary code execution. CVE-2008-4226 Thanks to: Drew Yao of Apple Product Security %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

Fedora 9 : libxml2-2.7.2-2.fc9 (2008-9773)

Fixes a couple of security issues when overflowing text data size of buffer size. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Fedora 8 : libxml2-2.7.2-2.fc8 (2008-9729)

Fixes a couple of security issues when overflowing text data size of buffer size. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / current : libxml2 (SSA:2008-324-01)

New libxml2 packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix security issues including a denial or service or the possible execution of arbitrary code if untrusted XML is processed. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

openSUSE 10 Security Update : libxml2 (libxml2-5754)

This update fixes an integer overflow in libxml2 that could lead to memory corruption and arbitrary code execution. CVE-2008-4226 Thanks to: Drew Yao of Apple Product Security %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...

FreeBSD : libxml2 -- multiple vulnerabilities (f1e0164e-b67b-11dd-a55e-00163e000016)

Secunia reports : Two vulnerabilities have been reported in Libxml2, which can be exploited by malicious people to cause a DoS Denial of Service or to potentially compromise an application using the library. 1 An integer overflow error in the 'xmlSAX2Characters' function can be exploited to trigg...

[slackware-security] libxml2

New libxml2 packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix security issues including a denial or service or the possible execution of arbitrary code if untrusted XML is processed. More details about the issues may be found in the Common Vulnerabilitie...

libxml2 xmlSAX2Characters()函数整数溢出漏洞

BUGTRAQ ID: 32326 CVECAN ID: CVE-2008-4226 libxml软件包提供允许用户操控XML文件的函数库，包含有读、修改和写XML和HTML文件支持。 libxml2库的xmlSAX2Characters函数中存在整数溢出漏洞，如果用户受骗使用链接到该库的应用程序打开了超大的XML文件的话，就可以触发这个溢出，导致执行任意指令。 XMLSoft Libxml2 2.7.2 Debian ------ Debian已经为此发布了一个安全公告（DSA-1666-1）以及相应补丁: DSA-1666-1：New libxml2 packages fix...

[SECURITY] Fedora 8 Update: libxml2-2.7.2-2.fc8

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

USN-673-1: libxml2 vulnerabilities

Drew Yao discovered that libxml2 did not correctly handle certain corrupt XML documents. If a user or automated system were tricked into processing a malicious XML document, a remote attacker could cause applications linked against libxml2 to enter an infinite loop, leading to a denial of service...

RHEL 4 / 5 : libxml2 (RHSA-2008:0988)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2008:0988 advisory. libxml2 is a library for parsing and manipulating XML files. It includes support for reading, modifying, and writing XML and HTML files...

Debian DSA-1666-1 : libxml2 - several vulnerabilities

Several vulnerabilities have been discovered in the GNOME XML library. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4225 Drew Yao discovered that missing input sanitising in the xmlBufferResize function may lead to an infinite loop, resulting in...

libxml2 security update

CentOS Errata and Security Advisory CESA-2008:0988 Updated libxml2 packages that fix security issues are now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. libxml2 is a library for...

[SECURITY] [DSA 1666-1] New libxml2 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1666-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 17, 2008 http://www.debian.org/security/faq -...

Important: Red Hat Security Advisory: libxml2 security update

Updated libxml2 packages that fix security issues are now available for Red Hat Enterprise Linux 2.1, 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. libxml2 is a library for parsing and manipulating XML files. It includes support...

libxml2: integer overflow leading to infinite loop in xmlBufferResize

Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service infinite loop via a large XML document...

libxml2: integer overflow leading to memory corruption in xmlSAX2Characters

Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a large XML document...