6942 matches found
CVE-2019-8749
Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows 7.14, iCloud for Windows 10.7, tvOS 13, macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, watchOS 6, iTunes 12.10....
CVE-2019-8749
CVE-2019-8749 involves multiple memory corruption issues in libxml2. The Red Hat advisory notes an underlying root cause of memory corruption addressed by improved input validation, with patches applied across Apple platforms (macOS Catalina 10.15 and 10.15.1, iOS 13, tvOS 13, watchOS 6, iCloud p...
Medium: libxml2
Issue Overview: xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs. CVE-2019-19956 A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being...
Amazon Linux AMI : libxml2 (ALAS-2020-1438)
The version of libxml2 installed on the remote host is prior to 2.9.1-6.4.41. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1438 advisory. xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-2228)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-202010-04 : libxml2: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202010-04 libxml2: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libxml2. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...
Scientific Linux Security Update : libxml2 on SL7.x x86_64 (20201001)
Security Fixes : - libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c CVE-2019-19956 - libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c CVE-2019-20388 - libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations CVE-2020-7595 C Tenable Network...
EulerOS Virtualization 3.0.2.2 : libxml2 (EulerOS-SA-2020-2228)
According to the version of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.CVE-2020-7595 Note...
libxml2 security update
CentOS Errata and Security Advisory CESA-2020:3996 An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
CentOS 7 : libxml2 (RHSA-2020:3996)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3996 advisory. - xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs. CVE-2019-19956 - xmlSchemaPreRun i...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-2178)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-2168)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : libxml2 (EulerOS-SA-2020-2168)
According to the version of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GNOME project libxml2 v2.9.10 and earlier have a global Buffer Overflow vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issu...
EulerOS 2.0 SP9 : libxml2 (EulerOS-SA-2020-2178)
According to the version of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GNOME project libxml2 v2.9.10 and earlier have a global Buffer Overflow vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issu...
CVE-2019-20388 affecting package libxml2 2.9.10-4
CVE-2019-20388 affecting package libxml2 2.9.10-4. A patched version of the package is available...
CVE-2020-7595 affecting package libxml2 2.9.10-4
CVE-2020-7595 affecting package libxml2 2.9.10-4. A patched version of the package is available...
libxml2 security and bug fix update
2.9.1-6.0.1.5 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.5 - Fix CVE-2019-19956 1793000 - Fix CVE-2019-20388 1810057 - Fix CVE-2020-7595 1810073 - Fix xsd:any schema validation 1812145...
The vulnerability of the xmlschemas.c component in the libxml2 library allows a attacker to cause a service failure.
The vulnerability of the xmlschemas.c component in the libxml2 library is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability could allow a malicious actor to cause service failures...
The vulnerability in the parser.c component of the libxml2 library allows a hacker to trigger a service failure.
The vulnerability of the parser.c component in the libxml2 library is related to the failure to release resources after their useful period has ended. Exploiting this vulnerability can allow an attacker to cause service failures...
libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...