6941 matches found
Updated libxml2 packages fix security vulnerability
A denial of service in libxml2 when parsing a specially crafted XML file if XZ support is enabled may cause applications to hang as the parsing never terminates CVE-2015-8035...
MGASA-2015-0423 Updated libxml2 packages fix security vulnerabilities
Updated libxml2 packages fix security vulnerability: Crafted xml causes out of bound memory access in libxml2 due to a heap buffer-overflow in xmlParseConditionalSections in parser.c CVE-2015-7942...
Updated libxml2 packages fix security vulnerabilities
Updated libxml2 packages fix security vulnerability: Crafted xml causes out of bound memory access in libxml2 due to a heap buffer-overflow in xmlParseConditionalSections in parser.c CVE-2015-7942...
CVE-2015-8035
The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...
UBUNTU-CVE-2015-8035
The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...
PT-2015-2754
Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.1 Description The issue is related to the xz decomp function in xzlib.c, which does not properly handle compression errors. This allows attackers to cause a denial of service, resulting in a process hang, by providing craft...
[SECURITY] [DLA 334-2] libxml2 regression update
Package : libxml2 Version : 2.7.8.dfsg-2+squeeze14 Unfortunately I mixed up the build of the i386 version of the libxml2 package. dpkg did not understand the contents of an included trigger file and threw an error message. This new upload should fix this and you can get rid of the error message...
Debian DLA-334-2 : libxml2 regression update
Unfortunately I mixed up the build of the i386 version of the libxml2 package. dpkg did not understand the contents of an included trigger file and threw an error message. This new upload should fix this and you can get rid of the error message with for example : apt-get update; apt-get -f instal...
DLA-334-2 libxml2 - regression update
Bulletin has no description...
[SECURITY] [DLA 334-1] libxml2 security update
Package : libxml2 Version : 2.7.8.dfsg-2+squeeze13 CVE ID : CVE-2015-7942 Debian Bug : 802827 Crafted xml causes out of bound memory access. heap-buffer-overflow in xmlParseConditionalSections...
DLA-334-1 libxml2 - security update
Bulletin has no description...
CVE-2015-7942
The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via crafted XML data, a different vulnerability than...
CVE-2015-7941
libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service out-of-bounds read and libxml2 crash via crafted XML data to the 1 xmlParseEntityDecl or 2 xmlParseConditionalSections function in parser.c, as demonstrated by...
UBUNTU-CVE-2015-7942
The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via crafted XML data, a different vulnerability than...
UBUNTU-CVE-2015-7941
libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service out-of-bounds read and libxml2 crash via crafted XML data to the 1 xmlParseEntityDecl or 2 xmlParseConditionalSections function in parser.c, as demonstrated by...
PT-2015-2751
Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.2 Description The issue is caused by improper handling of invalid input, allowing context-dependent attackers to cause a denial of service via crafted XML data. This can lead to an out-of-bounds read and a crash in libxml2...
PT-2015-3213
Name of the Vulnerable Software and Affected Versions libxml2 affected versions not specified Description The issue is related to the xmlParseConditionalSections function in the libxml2 library, which can cause a denial of service due to an out-of-bounds read when parsing specially crafted XML...
Mageia: Security Advisory (MGASA-2015-0358)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple iOS < 8.4.1 Multiple Vulnerabilities
Binary data 8978.prm...
Oracle: Security Advisory (ELSA-2015-1419)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...