6932 matches found
CVE-2011-3102
CVE-2011-3102 is an off-by-one error in libxml2. The flaw can cause a denial of service or potentially arbitrary code execution when parsing certain XML inputs. It is associated with libxml2 used in applications (e.g., Google Chrome before 19.0.1084.46). Remediation across the affected ecosystems...
CVE-2011-3102
Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via unknown vectors...
CVE-2011-3102
Off-by-one error in libxml2, as used in Google Chrome before 19.0.1084.46 and other products, allows remote attackers to cause a denial of service out-of-bounds write or possibly have unspecified other impact via unknown vectors...
libxml2 -- An off-by-one out-of-bounds write by XPointer
Google chrome team reports: An off-by-one out-of-bounds write flaw was found in the way libxml, a library for providing XML and HTML support, evaluated certain XPointer parts XPointer is used by libxml to include only the part from the returned XML document, that can be accessed using the XPath...
VMSA-2012-0008 : VMware ESX updates to ESX Service Console
a. ESX third-party update for Service Console kernel The ESX Service Console Operating System COS kernel is updated which addresses several security issues in the COS kernel. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2011-3191, CVE-2011-4348 and...
Moderate: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update
An updated rhev-hypervisor6 package that fixes two security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available f...
Debian Security Advisory DSA 2417-1 (libxml2)
The remote host is missing an update to libxml2 announced via advisory DSA 2417-1. OpenVAS Vulnerability Test $Id: deb24171.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2417-1 libxml2 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
FreeBSD Ports: libxml2
The remote host is missing an update to the system as announced in the referenced advisory. VID 57f1a624-6197-11e1-b98c-bcaec565249c OpenVAS Vulnerability Test $ Description: Auto generated from VID 57f1a624-6197-11e1-b98c-bcaec565249c Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Gentoo Security Advisory GLSA 201202-09 (libxml2)
The remote host is missing updates announced in advisory GLSA 201202-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 201203-04 (libxml2)
The remote host is missing updates announced in advisory GLSA 201203-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian: Security Advisory (DSA-2417-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201202-09 (libxml2)
The remote host is missing updates announced in advisory GLSA 201202-09. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
FreeBSD Ports: libxml2
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Gentoo Security Advisory GLSA 201203-04 (libxml2)
The remote host is missing updates announced in advisory GLSA 201203-04. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
Ubuntu Update for libxml2 USN-1376-1
Ubuntu Update for Linux kernel vulnerabilities USN-1376-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13761.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for libxml2 USN-1376-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...
Ubuntu: Security Advisory (USN-1376-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libxml2: Denial of service
Background libxml2 is the XML C parser and toolkit developed for the Gnome project. Description libxml2 does not properly randomize hash functions to protect against hash collision attacks. Impact A remote attacker could entice a user or automated system to open a specially crafted XML document...
GLSA-201203-04 : libxml2: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201203-04 libxml2: Denial of Service libxml2 does not properly randomize hash functions to protect against hash collision attacks. Impact : A remote attacker could entice a user or automated system to open a specially crafted XML...
Medium: libxml2
Issue Overview: It was found that the hashing routine used by libxml2 arrays was susceptible to predictable hash collisions. Sending a specially-crafted message to an XML service could result in longer processing time, which could lead to a denial of service. To mitigate this issue, randomization...
GLSA-201202-09 : libxml2: User-assisted execution of arbitrary code
The remote host is affected by the vulnerability described in GLSA-201202-09 libxml2: User-assisted execution of arbitrary code The 'xmlStringLenDecodeEntities' function in parser.c contains a boundary error which could possibly cause a heap-based buffer overflow. Impact : A remote attacker could...