6939 matches found
Debian: Security Advisory (DSA-2978-2)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libxml2 Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31555/info The libxml2 library is prone to a denial-of-service vulnerability caused by an error when handling files using entities in entity definitions. An attacker can exploit this issue to cause the library to consume ...
Libxml2 Multiple Remote Stack Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/11526/info The 'libxml2' library is reported prone to multiple remote stack-based buffer-overflow vulnerabilities caused by insufficient boundary checks. Remote attackers may exploit these issues to execute arbitrary code...
lxml security update
Package : lxml Version : 2.2.8-2+deb6u1 CVE ID : CVE-2014-3146 Debian Bug : 746812 It was discovered that cleanhtml function of lxml pythonic bindings for the libxml2 and libxslt libraries performed insufficient sanitisation for some non-printable characters. This could lead to cross-site scripti...
lxml security update
Package : lxml Version : 2.2.8-2+deb6u1 CVE ID : CVE-2014-3146 Debian Bug : 746812 It was discovered that cleanhtml function of lxml pythonic bindings for the libxml2 and libxslt libraries performed insufficient sanitisation for some non-printable characters. This could lead to cross-site scripti...
DLA-0009-1 lxml - security update
Bulletin has no description...
Ubuntu: Security Advisory (USN-2214-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : libxml2 regression (USN-2214-3)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2214-3 advisory. USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a number of regressions. This update fixes the problem. We apologize for the inconvenienc...
USN-2214-3 libxml2 regression
USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a number of regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested...
USN-2214-3: libxml2 regression
USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a number of regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested...
Ubuntu: Security Advisory (USN-2214-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0107-1)
A heap-based buffer overflow during decoding of entity references with overly long names has been fixed. CVE-2011-3919 has been assigned. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0073-1)
Specially crafted XPath expressions could allow attackers to cause a denial of service or possibly have unspecified other impact CVE-2011-2821,CVE-2011-2834. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
openSUSE Security Update : libxml2 (openSUSE-SU-2011:0839-1)
Specially crafted xml files could crash applications using libxml2 CVE-2011-1944. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libxml2-4811. The text description of this plugin is C SUSE LL...
openSUSE Security Update : libxml2 (openSUSE-SU-2014:0645-1)
fix for CVE-2014-0191 bnc876652 - libxml2: external parameter entity loaded when entity substitution is disabled - added libxml2-CVE-2014-0191.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
openSUSE Security Update : libxml2 (openSUSE-2012-30)
Specially crafted xml files could crash applications linked against libxml2 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-30. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0342-1)
This update of libxml2 fixes the hash table collision flaw which could be exploited by attackers to cause a Denial of Service CVE-2012-0841. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : libxml2 / python-libxml2 (openSUSE-SU-2014:0716-1)
Updated fix for openSUSE-SU-2014:0645-1 because of a regression that caused xmllint to break. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-394. The text description of this...
openSUSE Security Update : libxml2 (openSUSE-SU-2013:0552-1)
libxml2 was updated to limit internal entity expansion denial of service problems IXE CVE-2013-0338 bnc805233 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-263. The text...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0421-1)
add fix for hash table collisions CVE-2012-0841 bnc748561 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-179. The text description of this plugin is C SUSE LLC...