Lucene search
K

6939 matches found

Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.35 views

Amazon Linux AMI : libxml2 (ALAS-2014-341)

It was discovered that libxml2, a library providing support to read, modify and write XML files, incorrectly performs entity substituton in the doctype prolog, even if the application using libxml2 disabled any entity substitution. A remote attacker could provide a specially crafted XML file that...

4.3CVSS7AI score0.081EPSS
Exploits1References2
Debian
Debian
added 2014/09/27 3:52 p.m.44 views

[SECURITY] [DSA 3038-1] libvirt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3038-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 27, 2014 http://www.debian.org/security/faq -...

5.8CVSS9.4AI score0.02751EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/09/22 12:0 a.m.37 views

GLSA-201409-08 : libxml2: Denial of Service

The remote host is affected by the vulnerability described in GLSA-201409-08 libxml2: Denial of Service A vulnerability in the xmlParserHandlePEReference function of parser.c, when expanding entity references, can be exploited to consume large amounts of memory and cause a crash or hang. Impact :...

4.3CVSS6.8AI score0.081EPSS
Exploits1References2
Gentoo Linux
Gentoo Linux
added 2014/09/19 12:0 a.m.36 views

libxml2: Denial of service

Background libxml2 is the XML C parser and toolkit developed for the Gnome project. Description A vulnerability in the xmlParserHandlePEReference function of parser.c, when expanding entity references, can be exploited to consume large amounts of memory and cause a crash or hang. Impact A remote...

4.3CVSS7.7AI score0.081EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.42 views

AIX 6.1 TL 9 : libxml2 (IV62448)

Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...

4.3CVSS6.8AI score0.081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.39 views

AIX 6.1 TL 8 : libxml2 (IV62447)

Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...

4.3CVSS6.8AI score0.081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.36 views

AIX 7.1 TL 2 : libxml2 (IV62449)

Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...

4.3CVSS6.8AI score0.081EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/08/20 12:0 a.m.73 views

AIX 7.1 TL 3 : libxml2 (IV62450)

Libxml2 is vulnerable to a denial of service, caused by the expansion of internal entities within the xmlParserHandlePEReference. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text in the description was extracted from AIX Security Advisory libxml2advisory.asc...

4.3CVSS6.8AI score0.081EPSS
Exploits1References2
IBM AIX
IBM AIX
added 2014/08/15 10:26 a.m.126 views

AIX libxml2 vulnerability,VIOS libxml2 vulnerability

IBM SECURITY ADVISORY First Issued: Fri Aug 15 10:26:30 CDT 2014 Updated: Fri Aug 22 08:17:41 CDT 2014 Update: fixed APAR availability dates |Update: Mon Aug 25 15:18:37 CDT 2014 |Update Corrected a couple Service Pack levels The most recent version of this document is available here:...

4.3CVSS8AI score0.081EPSS
Exploits1
Mageia
Mageia
added 2014/08/12 9:16 a.m.40 views

Updated kdelibs4 packages fix security vulnerability and various bugs

This update fixes a security vulnerability in the polkit authentication backend of kdelibs CVE-2014-5033 mga13792, and fixes some additional issues: - duplicate targets in PythonMacros.cmake reviewboard kde 111371, - kded4 leak sockets in NetworkInterface::isWireless bko324954, - media type...

6.9CVSS8.2AI score0.00359EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2014/07/23 12:0 a.m.45 views

CentOS 7 : libvirt (CESA-2014:0914)

Updated libvirt packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

1.9CVSS6.8AI score0.0056EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2014/07/22 6:31 p.m.2 views

libvirt: unsafe parsing of XML documents allows libvirt DoS and/or arbitrary file read

It was found that libvirt passes the XMLPARSENOENT flag when parsing XML documents using the libxml2 library, in which case all XML entities in the parsed documents are expanded. A user able to force libvirtd to parse an XML document with an entity pointing to a file could use this flaw to read t...

1.2CVSS7.2AI score0.00529EPSS
Exploits0References5
Debian
Debian
added 2014/07/19 3:7 p.m.29 views

[DLA-0016-1] libxml2 security update

Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...

4.3CVSS7.3AI score0.081EPSS
Exploits1
Debian
Debian
added 2014/07/19 2:46 p.m.25 views

libxml2 security update

Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...

4.3CVSS3.8AI score0.081EPSS
Exploits1
Debian
Debian
added 2014/07/19 2:43 p.m.28 views

libxml2 security update

Package : libxml2 Version : 2.7.8.dfsg-2+squeeze9 CVE ID : CVE-2014-0191 Debian Bug : 747309 Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution...

4.3CVSS3.8AI score0.081EPSS
Exploits1
OSV
OSV
added 2014/07/19 12:0 a.m.6 views

DLA-0016-1 libxml2 - security update

Bulletin has no description...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/07/15 12:0 a.m.33 views

Debian DSA-2978-1 : libxml2 - security update

Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-2978. The text itself is copyright C Softwar...

4.3CVSS6.8AI score0.081EPSS
Exploits1References3
Debian
Debian
added 2014/07/11 2:29 p.m.35 views

[SECURITY] [DSA 2978-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2978-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 11, 2014 http://www.debian.org/security/faq -...

4.3CVSS8.2AI score0.081EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/07/11 12:0 a.m.31 views

Debian Security Advisory DSA 2978-1 (libxml2 - security update)

Daniel P. Berrange discovered a denial of service vulnerability in libxml2 entity substitution. OpenVAS Vulnerability Test $Id: deb2978.nasl 6724 2017-07-14 09:57:17Z teissa $ Auto-generated from advisory DSA 2978-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright:...

4.3CVSS0.4AI score0.081EPSS
Exploits1References1
OSV
OSV
added 2014/07/11 12:0 a.m.7 views

DSA-2978-1 libxml2 - security update

Bulletin has no description...

7.2AI score
Exploits0
Rows per page
Query Builder