Lucene search
K

6932 matches found

Debian
Debian
added 2013/10/13 9:2 p.m.31 views

[SECURITY] [DSA 2779-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2779-1 [email protected] http://www.debian.org/security/ Michael Gilbert October 13, 2013 http://www.debian.org/security/faq -...

5CVSS1.7AI score0.04733EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/10/13 12:0 a.m.29 views

Debian Security Advisory DSA 2779-1 (libxml2 - denial of service)

Aki Helin of OUSPG discovered many out-of-bounds read issues in libxml2, the GNOME project's XML parser library, which can lead to denial of service issues when handling XML documents that end abruptly. OpenVAS Vulnerability Test $Id: deb2779.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generat...

5CVSS0.2AI score0.04733EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/10/12 12:0 a.m.20 views

Debian: Security Advisory (DSA-2779-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.8AI score0.04733EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.26 views

Amazon Linux AMI : libxml2 (ALAS-2013-188)

libxml2 2.9.0 and earlier allows context-dependent attackers to cause a denial of service CPU and memory consumption via an XML file containing an entity declaration with long replacement text and many references to this entity, aka 'internal entity expansion' with linear complexity. C Tenable...

4.3CVSS7.2AI score0.02972EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.28 views

Amazon Linux AMI : libxml2 (ALAS-2012-134)

Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way libxml2 handled documents that enable entity expansion. A remote attacker could provide a large, specially crafted XML file that, when opened in an application linked against libxml2, would cause the...

6.8CVSS8.7AI score0.0266EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.33 views

Amazon Linux AMI : libxml2 (ALAS-2012-36)

A heap-based buffer overflow flaw was found in the way libxml2 decoded entity references with long names. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrar...

7.5CVSS8.7AI score0.02399EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.18 views

Amazon Linux AMI : libxml2 (ALAS-2012-52)

It was found that the hashing routine used by libxml2 arrays was susceptible to predictable hash collisions. Sending a specially crafted message to an XML service could result in longer processing time, which could lead to a denial of service. To mitigate this issue, randomization has been added ...

5CVSS7.9AI score0.03167EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.34 views

Amazon Linux AMI : libxml2 (ALAS-2012-143)

A heap-based buffer underflow flaw was found in the way libxml2 decoded certain entities. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrary code with the...

6.8CVSS8.4AI score0.04382EPSS
Exploits1References2
0day.today
0day.today
added 2013/08/27 12:0 a.m.23 views

xml2 Fuzzer 1.0 exploit

xml2 Fuzzer is a fuzzing utility that daemonizes in order to fuzz the client side of a web browser. / xml2 fuzz ver 1.0 -- C:\x90c\xml2fuzz ./xmlfuzz / \ / \ | || | | | \ / / . || | | | / | include include define FUZZDAEMONPORT 9090 / fuzz type / define AAAAFUZZ 1 define NUMERICFUZZ 2 static char...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2013/08/07 12:0 a.m.41 views

VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries

VMware has updated several third party libraries in ESX and ESXi to address multiple security vulnerabilities. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0009.nasl 6074 2017-05-05 09:03:14Z teissa $ VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries Authors: Michael Meyer...

6.9CVSS0.4AI score0.35584EPSS
Exploits6References1
Tenable Nessus
Tenable Nessus
added 2013/08/02 12:0 a.m.56 views

VMSA-2013-0009 : VMware vSphere, ESX and ESXi updates to third-party libraries

a. vCenter Server and ESX userworld update for OpenSSL library The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2013-0169 and CVE-2013-0166 to these...

6.9CVSS6.9AI score0.35584EPSS
Exploits6References7
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.28 views

Ubuntu Update for libxml2 USN-1904-2

Check for the Version of libxml2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19042.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for libxml2 USN-1904-2 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.30 views

Ubuntu Update for libxml2 USN-1904-1

Check for the Version of libxml2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19041.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for libxml2 USN-1904-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-1904-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-1904-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.4AI score0.04733EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/07/25 12:0 a.m.37 views

Mandriva Linux Security Advisory : libxml2 (MDVSA-2013:198)

Multiple vulnerabilities has been discovered and corrected in libxml2 : A denial of service flaw was found in the way libxml2, a library providing support to read, modify and write XML and HTML files, performed string substitutions when entity values for external entity references replacement...

6.8CVSS6.9AI score0.04733EPSS
Exploits1References5
Mageia
Mageia
added 2013/07/21 8:41 a.m.43 views

Updated libxml2 packages fix CVE-2013-2877

It was discovered that libxml2 incorrectly handled documents that end abruptly. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service CVE-2013-2877...

5CVSS2.2AI score0.04733EPSS
Exploits0References2
OSV
OSV
added 2013/07/21 8:41 a.m.9 views

MGASA-2013-0218 Updated libxml2 packages fix CVE-2013-2877

It was discovered that libxml2 incorrectly handled documents that end abruptly. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service CVE-2013-2877...

5CVSS6.3AI score0.04733EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/07/18 12:0 a.m.32 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : libxml2 regression (USN-1904-2)

USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a...

6.8CVSS7.1AI score0.04733EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2013/07/17 1:15 p.m.52 views

USN-1904-2: libxml2 regression

USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that libxml2 would load XML external entities by default. If a user or automated system we...

7.2AI score0.04733EPSS
Exploits0References1
Rows per page
Query Builder