Lucene search
K

6939 matches found

OSV
OSV
added 2021/06/01 2:15 p.m.30 views

CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

7.8CVSS6.6AI score
Exploits0References9
OSV
OSV
added 2021/06/01 2:15 p.m.2 views

DEBIAN-CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

7.8CVSS7AI score0.0199EPSS
Exploits1References1
OSV
OSV
added 2021/06/01 2:15 p.m.1 views

UBUNTU-CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

7.8CVSS6.8AI score0.0199EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2021/06/01 2:15 p.m.34 views

CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

7.8CVSS6.8AI score0.0199EPSS
Exploits1References4
Prion
Prion
added 2021/06/01 2:15 p.m.35 views

Design/Logic Flaw

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

6.8CVSS8.2AI score0.0199EPSS
Exploits1References9Affected Software5
CVE
CVE
added 2021/06/01 1:38 p.m.374 views

CVE-2021-3516

CVE-2021-3516 affects libxml2’s xmllint prior to 2.9.11. The issue is a use-after-free in xmllint when processing a crafted file, with impact to confidentiality, integrity, and availability. Remediation: update libxml2 to 2.9.11 or later (or apply vendor patch). The connected sources corroborate ...

7.8CVSS7.9AI score0.0199EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2021/06/01 1:38 p.m.29 views

CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

8.2AI score0.0199EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2021/06/01 1:38 p.m.45 views

CVE-2021-3516

There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this flaw is to confidentiality, integrity, and availability...

7.8CVSS7.4AI score0.0199EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/06/01 12:0 a.m.35 views

Debian DLA-2669-1 : libxml2 security update

An issue has been found in libxml2, the GNOME XML library. This issue is called 'Parameter Laughs'-attack and is related to parameter entities expansion. It is similar to the 'Billion Laughs'-attacks found earlier in libexpat. More information can be found at 1 1...

6.5CVSS7AI score0.01861EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/05/31 12:0 a.m.30 views

Debian: Security Advisory (DLA-2669-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01861EPSS
Exploits0References5
Photon
Photon
added 2021/05/31 12:0 a.m.68 views

Important Photon OS Security Update - PHSA-2021-0399

Updates of 'libxml2' packages of Photon OS have been released...

5.9CVSS6.8AI score0.03503EPSS
Exploits0
OSV
OSV
added 2021/05/30 12:0 a.m.29 views

DLA-2669-1 libxml2 - security update

Bulletin has no description...

6.5CVSS6.7AI score0.01861EPSS
Exploits0
Fedora
Fedora
added 2021/05/28 1:1 a.m.46 views

[SECURITY] Fedora 34 Update: python-lxml-4.6.3-1.fc34

lxml is a Pythonic, mature binding for the libxml2 and libxslt libraries. It provides safe and convenient access to these libraries using the ElementTre e It extends the ElementTree API significantly to offer support for XPath, Relax NG, XML Schema, XSLT, C14N and much more.To contact the project...

4.3CVSS0.5AI score0.04002EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/05/27 12:0 a.m.28 views

Fedora: Security Advisory for libxml2 (FEDORA-2021-e8b7e177a4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.4AI score0.01861EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2021/05/26 7:0 a.m.7 views

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.

...

8.6CVSS7AI score0.0828EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2021/05/26 7:0 a.m.2 views

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality integrity and availability.

...

8.8CVSS7AI score0.03653EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.46 views

Oracle Linux 8 : libxml2 (ELSA-2021-1597)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-1597 advisory. 2.9.7-9.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-9 - Fix CVE-2020-24977 1878252 Tenable ha...

6.5CVSS7.2AI score0.03672EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/05/25 12:0 a.m.61 views

openSUSE Security Update : libxml2 (openSUSE-2021-764)

This update for libxml2 fixes the following issues : - CVE-2021-3537: NULL pointer dereference in valid.c:xmlValidBuildAContentModel bsc1185698 - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess bsc1185408. - CVE-2021-3517: Fixed a heap based buffer overflow in...

8.8CVSS7.5AI score0.0828EPSS
Exploits1References8
Oracle linux
Oracle linux
added 2021/05/25 12:0 a.m.52 views

libxml2 security update

2.9.7-9.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-9 - Fix CVE-2020-24977 1878252...

6.5CVSS1.6AI score0.03672EPSS
Exploits1
Fedora
Fedora
added 2021/05/24 1:2 a.m.48 views

[SECURITY] Fedora 34 Update: libxml2-2.9.12-2.fc34

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

4CVSS0.5AI score0.01861EPSS
Exploits0
Rows per page
Query Builder