Lucene search
K

6941 matches found

Mageia
Mageia
added 2021/01/04 2:42 p.m.49 views

Updated libxml2 packages fix a security vulnerability

libxml2 v2.9.10 and earlier has a global Buffer Overflow vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c CVE-2020-24977...

6.5CVSS7.4AI score0.03672EPSS
Exploits1References3
Apple
Apple
added 2020/12/15 6:6 a.m.84 views

About the security content of iCloud for Windows 11.5 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.3CVSS2.2AI score0.08491EPSS
Exploits2Affected Software1
CNNVD
CNNVD
added 2020/12/15 12:0 a.m.6 views

libxml2 Resource Management Error Vulnerability

libxml2 is a library written in C for parsing XML documents. A security vulnerability exists in libxml2, where processing of maliciously crafted web content could result in code execution. The following products and versions are affected: macOS Mojave 10.14.6, macOS Catalina 10.15.7...

8.8CVSS7AI score0.01295EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/12/15 12:0 a.m.16 views

Debian: Security Advisory (DSA-4810-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.7AI score0.03934EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/14 12:0 a.m.28 views

Debian DSA-4810-1 : lxml - security update

Yaniv Nizry discovered that the clean module of lxml, Python bindings for libxml2 and libxslt could be bypassed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4810. The text itself is copyright C Software i...

6.1CVSS7.1AI score0.03934EPSS
Exploits1References4
Debian
Debian
added 2020/12/13 6:19 p.m.54 views

[SECURITY] [DSA 4810-1] lxml security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4810-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 13, 2020 https://www.debian.org/security/faq -...

6.1CVSS6.8AI score0.03934EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/12/11 12:39 a.m.94 views

USN-4666-2: lxml vulnerability

USN-4666-1 partially fixed a vulnerability in lxml, but an additional patch was needed. This update provides the corresponding additional patch in order to properly fix the vulnerability. Original advisory details: It was discovered that lxml incorrectly handled certain HTML. An attacker could...

6.1CVSS7AI score0.03934EPSS
Exploits1
Ubuntu
Ubuntu
added 2020/12/09 1:28 p.m.67 views

USN-4666-1: lxml vulnerability

It was discovered that lxml incorrectly handled certain HTML. An attacker could possibly use this issue to cross-site scripting XSS attacks...

6.1CVSS7AI score0.03934EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.24 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : libxml2 Multiple Vulnerabilities (NS-SA-2020-0091)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libxml2 packages installed that are affected by multiple vulnerabilities: - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of...

8.8CVSS7.2AI score0.043EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.40 views

SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2020:2612-1)

This update for libxml2 fixes the following issues : CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal bsc1176179. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

6.5CVSS7.1AI score0.03672EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.31 views

SUSE SLES12 Security Update : libxml2 (SUSE-SU-2020:2609-1)

This update for libxml2 fixes the following issues : CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun bsc1161521. CVE-2020-7595: Fixed an infinite loop in an EOF situation bsc1161517. CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal bsc1176179. Fixed invalid xmlns...

7.5CVSS6.9AI score0.07836EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.33 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : libxml2 Multiple Vulnerabilities (NS-SA-2020-0060)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libxml2 packages installed that are affected by multiple vulnerabilities: - Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of...

8.8CVSS7.2AI score0.043EPSS
Exploits3References7
Veracode
Veracode
added 2020/12/06 4:2 a.m.28 views

Denial Of Service (DoS)

libxml2 is vulnerable to denial of service DoS. The vulnerability exists in the htmlParseTryOrFinish function in HTMLparser.c due to buffer-over-read, allowing an attacker to crash the application...

9.1CVSS3.6AI score0.02306EPSS
Exploits0References3Affected Software1
Apple
Apple
added 2020/12/02 12:0 a.m.55 views

About the security content of iCloud for Windows 11.5

About the security content of iCloud for Windows 11.5 This document describes the security content of iCloud for Windows 11.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

9.3CVSS9.3AI score0.08491EPSS
Exploits2References1Affected Software1
Kaspersky
Kaspersky
added 2020/12/02 12:0 a.m.60 views

KLA12017 Mulitple vulnerabilities in Apple iCloud

Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in...

9.3CVSS10AI score0.08491EPSS
Exploits2References3
CBLMariner
CBLMariner
added 2020/11/30 7:30 p.m.18 views

CVE-2020-24977 affecting package libxml2 2.9.10-4

CVE-2020-24977 affecting package libxml2 2.9.10-4. A patched version of the package is available...

6.5CVSS9.9AI score0.03672EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.29 views

Fedora 32 : libxml2 (2020-b6aaf25741)

Add correct fix for CVE-2020-24977 RHBZ1877788, thanks: Jan de Groot. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.5CVSS7.2AI score0.03672EPSS
Exploits1References2
Fedora
Fedora
added 2020/11/27 1:12 a.m.35 views

[SECURITY] Fedora 32 Update: libxml2-2.9.10-8.fc32

This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...

6.5CVSS0.5AI score0.03672EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/11/27 12:0 a.m.19 views

Fedora: Security Advisory for libxml2 (FEDORA-2020-b6aaf25741)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.3AI score0.03672EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2020/11/24 12:0 a.m.3 views

The vulnerability of the libxml2 library in iOS, iPadOS, tvOS, watchOS, and macOS allows attackers to execute arbitrary code.

The vulnerability of the libxml2 library in iOS, iPadOS, tvOS, watchOS, and macOS is related to buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

10CVSS8.5AI score0.02964EPSS
Exploits0References9Affected Software9
Rows per page
Query Builder