libxml2: crafted xml can cause global buffer overflow

A flaw was found in Libxml2, where it contains a global buffer overflow via the xmlSAX2StartElement function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a denial of service DoS by supplying a crafted XML file...

Moderate: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE SLED15: libxml2-2 / libxml2-2-32bit / libxml2-devel / libxml2-devel-32bit / etc (SUSE-SU-2023:4537-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4537-1 advisory. - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129. Tenable has extracted the...

SUSE-SU-2023:4537-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129...

SUSE: Security Advisory (SUSE-SU-2023:4505-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15: libxml2-2 / libxml2-2-32bit / libxml2-devel / libxml2-devel-32bit / etc (SUSE-SU-2023:4504-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4504-1 advisory. - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129. Tenable has extracted the...

SUSE SLES12 Security Update : libxml2 (SUSE-SU-2023:4505-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4505-1 advisory. - libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in...

SUSE-SU-2023:4505-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129...

SUSE-SU-2023:4504-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129...

openSUSE 15 Security Update : libxml2 (SUSE-SU-2023:4464-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:4464-1 advisory. - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129. Tenable has extracted the preceding description block directly from the SUSE...

SUSE-SU-2023:4464-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2023-45322: Fixed a use-after-free in xmlUnlinkNode in tree.c bsc1216129...

The vulnerability of the Libxml2 library, related to the lack of measures taken to protect the structure of web pages, allows attackers to access confidential data and compromise its integrity.

The vulnerability of the Libxml2 library is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability can allow an attacker to gain access to confidential data and compromise its integrity...

CVE-2023-45322 affecting package libxml2 for versions less than 2.10.4-2

CVE-2023-45322 affecting package libxml2 for versions less than 2.10.4-2. A patched version of the package is available...

NewStart CGSL MAIN 6.06 : libxml2 Multiple Vulnerabilities (NS-SA-2023-0131)

The remote NewStart CGSL host, running version MAIN 6.06, has libxml2 packages installed that are affected by multiple vulnerabilities: - Possible cross-site scripting vulnerability in libxml after commit 960f0e2. CVE-2016-3709 - An issue was discovered in libxml2 before 2.10.3. When parsing a...

CLSA-2023-1699393971 libxml2: Fix of CVE-2016-4658

CVE-2016-4658: disallow namespace nodes in XPointer ranges...

libxml2: Fix of CVE-2016-4658

CVE-2016-4658: disallow namespace nodes in XPointer ranges...

CLSA-2023-1699381307 libxml2: Fix of CVE-2016-4658

CVE-2016-4658: disallow namespace nodes in XPointer ranges...

Rocky Linux 8 : libxml2 (RLSA-2022:5317)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:5317 advisory. - In libxml2 before 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer don't check for integer overflows. This can result in...

Rocky Linux 8 : libxml2 (RLSA-2022:0899)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:0899 advisory. - valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. CVE-2022-23308 Note that Nessus has not tested for this issue but has instead...

Rocky Linux 9 : libxml2 (RLSA-2022:5250)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:5250 advisory. - In libxml2 before 2.9.14, several buffer handling functions in buf.c xmlBuf and tree.c xmlBuffer don't check for integer overflows. This can result in...