6932 matches found
[SECURITY] [DSA 2779-1] libxml2 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2779-1 [email protected] http://www.debian.org/security/ Michael Gilbert October 13, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2779-1 (libxml2 - denial of service)
Aki Helin of OUSPG discovered many out-of-bounds read issues in libxml2, the GNOME project's XML parser library, which can lead to denial of service issues when handling XML documents that end abruptly. OpenVAS Vulnerability Test $Id: deb2779.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generat...
Debian: Security Advisory (DSA-2779-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : libxml2 (ALAS-2013-188)
libxml2 2.9.0 and earlier allows context-dependent attackers to cause a denial of service CPU and memory consumption via an XML file containing an entity declaration with long replacement text and many references to this entity, aka 'internal entity expansion' with linear complexity. C Tenable...
Amazon Linux AMI : libxml2 (ALAS-2012-134)
Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way libxml2 handled documents that enable entity expansion. A remote attacker could provide a large, specially crafted XML file that, when opened in an application linked against libxml2, would cause the...
Amazon Linux AMI : libxml2 (ALAS-2012-36)
A heap-based buffer overflow flaw was found in the way libxml2 decoded entity references with long names. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrar...
Amazon Linux AMI : libxml2 (ALAS-2012-52)
It was found that the hashing routine used by libxml2 arrays was susceptible to predictable hash collisions. Sending a specially crafted message to an XML service could result in longer processing time, which could lead to a denial of service. To mitigate this issue, randomization has been added ...
Amazon Linux AMI : libxml2 (ALAS-2012-143)
A heap-based buffer underflow flaw was found in the way libxml2 decoded certain entities. A remote attacker could provide a specially crafted XML file that, when opened in an application linked against libxml2, would cause the application to crash or, potentially, execute arbitrary code with the...
xml2 Fuzzer 1.0 exploit
xml2 Fuzzer is a fuzzing utility that daemonizes in order to fuzz the client side of a web browser. / xml2 fuzz ver 1.0 -- C:\x90c\xml2fuzz ./xmlfuzz / \ / \ | || | | | \ / / . || | | | / | include include define FUZZDAEMONPORT 9090 / fuzz type / define AAAAFUZZ 1 define NUMERICFUZZ 2 static char...
VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries
VMware has updated several third party libraries in ESX and ESXi to address multiple security vulnerabilities. OpenVAS Vulnerability Test $Id: gbVMSA-2013-0009.nasl 6074 2017-05-05 09:03:14Z teissa $ VMSA-2013-0009 VMware ESX and ESXi updates to third party libraries Authors: Michael Meyer...
VMSA-2013-0009 : VMware vSphere, ESX and ESXi updates to third-party libraries
a. vCenter Server and ESX userworld update for OpenSSL library The userworld OpenSSL library is updated to version openssl-0.9.8y to resolve multiple security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2013-0169 and CVE-2013-0166 to these...
Ubuntu Update for libxml2 USN-1904-2
Check for the Version of libxml2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19042.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for libxml2 USN-1904-2 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...
Ubuntu Update for libxml2 USN-1904-1
Check for the Version of libxml2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19041.nasl 8672 2018-02-05 16:39:18Z teissa $ Ubuntu Update for libxml2 USN-1904-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...
Ubuntu: Security Advisory (USN-1904-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-1904-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Linux Security Advisory : libxml2 (MDVSA-2013:198)
Multiple vulnerabilities has been discovered and corrected in libxml2 : A denial of service flaw was found in the way libxml2, a library providing support to read, modify and write XML and HTML files, performed string substitutions when entity values for external entity references replacement...
Updated libxml2 packages fix CVE-2013-2877
It was discovered that libxml2 incorrectly handled documents that end abruptly. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service CVE-2013-2877...
MGASA-2013-0218 Updated libxml2 packages fix CVE-2013-2877
It was discovered that libxml2 incorrectly handled documents that end abruptly. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service CVE-2013-2877...
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : libxml2 regression (USN-1904-2)
USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. It was discovered that libxml2 would load XML external entities by default. If a user or automated system were tricked into opening a...
USN-1904-2: libxml2 regression
USN-1904-1 fixed vulnerabilities in libxml2. The update caused a regression for certain users. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that libxml2 would load XML external entities by default. If a user or automated system we...