6939 matches found
Amazon Linux AMI : libxml2 (ALAS-2014-341)
It was discovered that libxml2, a library providing support to read, modify and write XML files, incorrectly performs entity substituton in the doctype prolog, even if the application using libxml2 disabled any entity substitution. A remote attacker could provide a specially crafted XML file that...
[SECURITY] [DSA 3038-1] libvirt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3038-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 27, 2014 http://www.debian.org/security/faq -...
GLSA-201409-08 : libxml2: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201409-08 libxml2: Denial of Service A vulnerability in the xmlParserHandlePEReference function of parser.c, when expanding entity references, can be exploited to consume large amounts of memory and cause a crash or hang. Impact :...
libxml2: Denial of service
Background libxml2 is the XML C parser and toolkit developed for the Gnome project. Description A vulnerability in the xmlParserHandlePEReference function of parser.c, when expanding entity references, can be exploited to consume large amounts of memory and cause a crash or hang. Impact A remote...
AIX 6.1 TL 9 : libxml2 (IV62448)
Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...
AIX 6.1 TL 8 : libxml2 (IV62447)
Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...
AIX 7.1 TL 2 : libxml2 (IV62449)
Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...
AIX 7.1 TL 3 : libxml2 (IV62450)
Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...
AIX libxml2 vulnerability,VIOS libxml2 vulnerability
IBM SECURITY ADVISORY First Issued: Fri Aug 15 10:26:30 CDT 2014 Updated: Fri Aug 22 08:17:41 CDT 2014 Update: fixed APAR availability dates |Update: Mon Aug 25 15:18:37 CDT 2014 |Update Corrected a couple Service Pack levels The most recent version of this document is available here:...
Updated kdelibs4 packages fix security vulnerability and various bugs
This update fixes a security vulnerability in the polkit authentication backend of kdelibs CVE-2014-5033 mga13792, and fixes some additional issues: - duplicate targets in PythonMacros.cmake reviewboard kde 111371, - kded4 leak sockets in NetworkInterface::isWireless bko324954, - media type...
CentOS 7 : libvirt (CESA-2014:0914)
Updated libvirt packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
libvirt: unsafe parsing of XML documents allows libvirt DoS and/or arbitrary file read
It was found that libvirt passes the XMLPARSENOENT flag when parsing XML documents using the libxml2 library, in which case all XML entities in the parsed documents are expanded. A user able to force libvirtd to parse an XML document with an entity pointing to a file could use this flaw to read t...
[DLA-0016-1] libxml2 security update
Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...
libxml2 security update
Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...
libxml2 security update
Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...
DLA-0016-1 libxml2 - security update
Bulletin has no description...
Debian DSA-2978-1 : libxml2 - security update
Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2978. The text itself is copyright C Softwar...
[SECURITY] [DSA 2978-1] libxml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2978-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 11, 2014 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2978-1 (libxml2 - security update)
Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution. OpenVAS Vulnerability Test $Id: deb2978.nasl 6724 2017-07-14 09:57:17Z teissa $ Auto-generated from advisory DSA 2978-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright:...
DSA-2978-1 libxml2 - security update
Bulletin has no description...