6941 matches found
Updated libxml2 packages fix a security vulnerability
libxml2 v2.9.10 and earlier has a global Buffer Overflow vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c CVE-2020-24977...
About the security content of iCloud for Windows 11.5 - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...
libxml2 Resource Management Error Vulnerability
libxml2 is a library written in C for parsing XML documents. A security vulnerability exists in libxml2, where processing of maliciously crafted web content could result in code execution. The following products and versions are affected: macOS Mojave 10.14.6, macOS Catalina 10.15.7...
Debian: Security Advisory (DSA-4810-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-4810-1 : lxml - security update
Yaniv Nizry discovered that the clean module of lxml, Python bindings for libxml2 and libxslt could be bypassed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4810. The text itself is copyright C Software i...
[SECURITY] [DSA 4810-1] lxml security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4810-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 13, 2020 https://www.debian.org/security/faq -...
USN-4666-2: lxml vulnerability
USN-4666-1 partially fixed a vulnerability in lxml, but an additional patch was needed. This update provides the corresponding additional patch in order to properly fix the vulnerability. Original advisory details: It was discovered that lxml incorrectly handled certain HTML. An attacker could...
USN-4666-1: lxml vulnerability
It was discovered that lxml incorrectly handled certain HTML. An attacker could possibly use this issue to cross-site scripting XSS attacks...
NewStart CGSL CORE 5.05 / MAIN 5.05 : libxml2 Multiple Vulnerabilities (NS-SA-2020-0091)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libxml2 packages installed that are affected by multiple vulnerabilities: - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of...
SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2020:2612-1)
This update for libxml2 fixes the following issues : CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal bsc1176179. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...
SUSE SLES12 Security Update : libxml2 (SUSE-SU-2020:2609-1)
This update for libxml2 fixes the following issues : CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun bsc1161521. CVE-2020-7595: Fixed an infinite loop in an EOF situation bsc1161517. CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal bsc1176179. Fixed invalid xmlns...
NewStart CGSL CORE 5.04 / MAIN 5.04 : libxml2 Multiple Vulnerabilities (NS-SA-2020-0060)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libxml2 packages installed that are affected by multiple vulnerabilities: - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of...
Denial Of Service (DoS)
libxml2 is vulnerable to denial of service DoS. The vulnerability exists in the htmlParseTryOrFinish function in HTMLparser.c due to buffer-over-read, allowing an attacker to crash the application...
About the security content of iCloud for Windows 11.5
About the security content of iCloud for Windows 11.5 This document describes the security content of iCloud for Windows 11.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...
KLA12017 Mulitple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in...
CVE-2020-24977 affecting package libxml2 2.9.10-4
CVE-2020-24977 affecting package libxml2 2.9.10-4. A patched version of the package is available...
Fedora 32 : libxml2 (2020-b6aaf25741)
Add correct fix for CVE-2020-24977 RHBZ1877788, thanks: Jan de Groot. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
[SECURITY] Fedora 32 Update: libxml2-2.9.10-8.fc32
This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...
Fedora: Security Advisory for libxml2 (FEDORA-2020-b6aaf25741)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
The vulnerability of the libxml2 library in iOS, iPadOS, tvOS, watchOS, and macOS allows attackers to execute arbitrary code.
The vulnerability of the libxml2 library in iOS, iPadOS, tvOS, watchOS, and macOS is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...