6939 matches found
openSUSE Security Update : libxml2 (openSUSE-SU-2010:1004-1)
libxml2: Invalid memory access in the xpath handling has been fixed. CVE-2010-4008 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libxml2-3459. The text...
openSUSE Security Update : libxml2 (openSUSE-SU-2011:0839-1)
Specially crafted xml files could crash applications using libxml2 CVE-2011-1944. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libxml2-4811. The text description of this plugin is C SUSE LL...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:1647-1)
A Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 allowed remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0073-1)
Specially crafted XPath expressions could allow attackers to cause a denial of service or possibly have unspecified other impact CVE-2011-2821,CVE-2011-2834. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0107-1)
A heap-based buffer overflow during decoding of entity references with overly long names has been fixed. CVE-2011-3919 has been assigned. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0975-1)
Fixed an integer overflow in libxml2 which could lead to crashes or potential code execution. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-501. The text description of this...
openSUSE Security Update : libxml2 (openSUSE-SU-2013:0945-1)
fix for CVE-2013-1969 bnc815665 - libxml2-CVE-2013-1969.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-374. The text description of this plugin is C SUSE LLC...
openSUSE Security Update : libxml2 (openSUSE-SU-2011:0255-1)
A bug in the Xpath processing inside libxml2 has been fixed. CVE-2010-4494 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update libxml2-3758. The text description o...
openSUSE Security Update : libxml2 / python-libxml2 (openSUSE-SU-2014:0753-1)
Removed fix for CVE-2014-0191. This fix breaks existing applications and there's currently no way to prevent that. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-409. The text...
openSUSE Security Update : libxml2 (openSUSE-SU-2013:1221-1)
Libxml2 was updated to fix buffer overread problems which could lead to crashes out of bounds read. CVE-2013-2877 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-592. The text...
openSUSE Security Update : emacs and depending packages (openSUSE-SU-2012:1348-1)
This update fixes the following issues for emacs, emacs-w3, gnuplot and ddskk: emacs : - Add fix for bnc775993 which disable arbitrary lisp code execution when 'enable-local-variables' is set to ':safe' CVE-2012-3479 - Add fix for bnc780653 to allow emacs to parse tar archives with PAX extended...
openSUSE Security Update : libxml2 (openSUSE-SU-2012:0731-1)
specially crafted xpath statements could cause an out of bounds memory write %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-320. The text description of this plugin is C SUSE LL...
Ubuntu 14.04 LTS : libxml2 regression (USN-2214-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2214-2 advisory. USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a regression when using xmllint with the --postvalid option. This update fixes the proble...
USN-2214-2 libxml2 regression
USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a regression when using xmllint with the --postvalid option. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform...
USN-2214-2: libxml2 regression
USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a regression when using xmllint with the --postvalid option. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform...
RedHat Update for libvirt RHSA-2014:0560-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DSA-2941-1 lxml - security update
Bulletin has no description...
CentOS 6 : libvirt (CESA-2014:0560)
Updated libvirt packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
RHEL 6 : libvirt (RHSA-2014:0560)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0560 advisory. The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition,...
Scientific Linux Security Update : libvirt on SL6.x i386/x86_64 (20140527)
It was found that libvirt passes the XMLPARSENOENT flag when parsing XML documents using the libxml2 library, in which case all XML entities in the parsed documents are expanded. A user able to force libvirtd to parse an XML document with an entity pointing to a special file that blocks on read...