libxml2: Fix of CVE-2024-25062

CVE-2024-25062: Fix xmlValidatePopElement use-after-free in XML Reader interface with DTD validation and XInclude expansion enabled - test suite was partially activated...

CLSA-2024-1708639015 libxml2: Fix of CVE-2024-25062

CVE-2024-25062: Fix xmlValidatePopElement use-after-free when processing crafted XML documents with DTD validation and XInclude expansion enabled - test suite was partially enabled...

SUSE SLED15: libxml2-2 / libxml2-2-32bit / libxml2-devel / libxml2-devel-32bit / etc (SUSE-SU-2024:0555-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0555-1 advisory. - CVE-2024-25062: Fixed use-after-free in XMLReader bsc1219576. Tenable has extracted the preceding...

SUSE SLES12: libxml2-2 / libxml2-2-32bit / libxml2-devel / libxml2-doc / etc (SUSE-SU-2024:0556-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0556-1 advisory. - CVE-2024-25062: Fixed use-after-free in XMLReader bsc1219576. Tenable has extracted the preceding description block directly from the SUSE...

SUSE: Security Advisory (SUSE-SU-2024:0556-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important Photon OS Security Update - PHSA-2024-4.0-0572

Updates of 'libxml2' packages of Photon OS have been released...

Important Photon OS Security Update - PHSA-2024-5.0-0215

Updates of 'dnsmasq', 'libxml2', 'apache-tomcat9' packages of Photon OS have been released...

SUSE-SU-2024:0555-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2024-25062: Fixed use-after-free in XMLReader bsc1219576...

CLSA-2024-1708426517 libxml2: Fix of CVE-2024-25062

CVE-2024-25062: Fix use-after-free issue in XML Reader interface...

CLSA-2024-1708426314 libxml2: Fix of CVE-2024-25062

CVE-2024-25062: Fix use-after-free issue in XML Reader interface...

Advisory ROSA-SA-2024-2356

Software: libxml2 2.9.7 OS: ROSA Virtualization 2.1 packageevrstring: libxml2-2.9.7-16.rv3 CVE-ID: CVE-2016-3709 BDU-ID: 2023-07602 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Libxml2 library is related to the failure to take measures to protect the structure of a web page. Exploitation of...

CLSA-2024-1708417192 libxml2: Fix of 3 CVEs

CVE-2017-7375: add validation for parsed entity references - CVE-2017-7376: fix buffer overflow in URL handling - CVE-2017-8872: free input buffer in xmlHaltParser...

CLSA-2024-1708416911 libxml2: Fix of CVE-2024-25062

CVE-2024-25062: Fix use-after-free issue in libxml2 XML Reader interface with DTD validation and XInclude expansion enabled...

The vulnerability of the xmlValidatePopElement function in the XML Reader Interface component of the Libxml2 library allows a attacker to trigger a service failure.

The vulnerability of the xmlValidatePopElement function in the XML Reader Interface component of the Libxml2 library is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure by using a specially created file...

openSUSE 15 Security Update : libxml2 (SUSE-SU-2024:0461-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:0461-1 advisory. - CVE-2024-25062: Fixed use-after-free in XMLReader bsc1219576. Tenable has extracted the preceding description block directly from the SUSE security advisor...

PT-2024-40561 · Git +1 · Libxml2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free error, which occurs when the program attempts to access memory that has already been freed. The crash state...

GLSA-202402-11 : libxml2: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202402-11 libxml2: Multiple Vulnerabilities - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in...

PT-2024-40852 · Libxml2 · Libxml2

Name of the Vulnerable Software and Affected Versions: libxml2 affected versions not specified Description: The issue is related to a heap-use-after-free error, which occurs when the program attempts to access memory that has already been freed. This error is specifically a READ 8 type, indicatin...

CentOS 8 : libxml2 (CESA-2023:0173)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:0173 advisory. - An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XMLPARSEHUGE parser option enabled, several...

CentOS 8 : libxml2 (CESA-2023:4529)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:4529 advisory. - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in...