6942 matches found
Moderate: Red Hat Security Advisory: libxml2 security and bug fix update
An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c
A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service. System availability is the highest threat from this vulnerability...
libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c
xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs...
RHEL 7 : libxml2 (RHSA-2020:3996)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3996 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: memory leak in...
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-2154)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : libxml2 (EulerOS-SA-2020-2154)
According to the version of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GNOME project libxml2 v2.9.10 and earlier have a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The iss...
Fedora 31 : libxml2 (2020-20ab468a33)
Add fix for CVE-2020-24977 RHBZ1877788. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable...
libxml2:xml: Heap-use-after-free in xmlStaticCopyNode
Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed Report: https://oss-fuzz.com/testcase?key=6039216293937152 Project: libxml2 Fuzzing Engine: honggfuzz Fuzz Target: xml Job Type: honggfuzzasanlibxml2 Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address: 0x60c00000220...
Fedora: Security Advisory for libxml2 (FEDORA-2020-20ab468a33)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for mingw-libxml2 (FEDORA-2020-be489044df)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for libxml2 (FEDORA-2020-dd2fc19b78)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 31 Update: libxml2-2.9.10-4.fc31
This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX strea...
[SECURITY] Fedora 33 Update: mingw-libxml2-2.9.10-3.fc33
MinGW Windows libxml2 XML processing library...
About the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave
About the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave This document describes the security content of macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. About Apple security updates F...
FreeBSD : libxml -- multiple vulnerabilities (f5abafc0-fcf6-11ea-8758-e0d55e2a8bf9)
CVE mitre reports : CVE-2019-20388 xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. CVE-2020-7595 xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation. CVE-2020-24977 GNOME project libxml2...
Vulnerabilities fixed in libxml2
Vulnerabilities have been fixed in libxml2. The vulnerabilities allow a malicious party to perform a denial-of-service DoS execution. The developers of libxml12 categorize these vulnerabilities according to the CVSSv3 method with a highest score of 7.5. FreeBSD has released updates to fix the...
Fedora 31 : mingw-libxml2 (2020-7dd29dacad)
Add fix for CVE-2020-24977 RHBZ1877788, RHBZ1877789. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...
openSUSE Security Update : libxml2 (openSUSE-2020-1465)
This update for libxml2 fixes the following issues : - CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal bsc1176179. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks in this plug...
Photon OS 3.0: Libxml2 PHSA-2020-3.0-0142
An update of the libxml2 package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0142. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid140707;...
Fedora 32 : mingw-libxml2 (2020-b60dbdd538)
Add fix for CVE-2020-24977 RHBZ1877788, RHBZ1877789. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...