Linux Distros Unpatched Vulnerability : CVE-2025-27113

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a NULL pointer dereference in xmlPatMatch in pattern.c. CVE-2025-27113 Note that Nessus relies on the presen...

[SECURITY] [DSA 5990-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5990-1 [email protected] https://www.debian.org/security/ Aron Xu August 29, 2025 https://www.debian.org/security/faq -...

DSA-5990-1 libxml2 - security update

Bulletin has no description...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.17.38 bug fix and security update

Red Hat OpenShift Container Platform release 4.17.38 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.17. Red Hat Product Security has rated this update as having a...

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-6021: Integer Overflow in xmlBuildQName Leads to Stack Buffer Overflow in libxml2 bsc1244580 CVE-2025-6170: stack buffer overflow may lead to a crash bsc1244700 CVE-2025-7425: Heap Use-After-Free in libxslt caused by atype corruption in...

SUSE-SU-2025:20607-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2025-6021: Integer Overflow in xmlBuildQName Leads to Stack Buffer Overflow in libxml2 bsc1244580 - CVE-2025-6170: stack buffer overflow may lead to a crash bsc1244700 - CVE-2025-7425: Heap Use-After-Free in libxslt caused by atype...

Security Bulletin: Vulnerabilities in libxml2 may affect IBM Storage Archive

Summary A series of security vulnerabilities in libxml2 could compromise users' environments, the vulnerabilities might cause: buffer overflows, use-after-free, or memory leaks. These vulnerabilities could allow remote attackers to execute arbitrary code, cause denial of service, or crash...

libxml2 security update

2.9.1-6.0.9.6 - Fix CVE-2025-7425: heap-use-after-free in xmlFreeID Orabug: 38290330...

Oracle Linux 7 : libxml2 (ELSA-2025-13464)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-13464 advisory. 2.9.1-6.0.9.6 - Fix CVE-2025-7425: heap-use-after-free in xmlFreeID Orabug: 38290330 Tenable has extracted the preceding description block directly from the...

Linux Distros Unpatched Vulnerability : CVE-2025-8732

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the...

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-6021: Integer Overflow in xmlBuildQName Leads to Stack Buffer Overflow in libxml2 bsc1244580 CVE-2025-6170: stack buffer overflow may lead to a crash bsc1244700 CVE-2025-7425: Heap Use-After-Free in libxslt caused by atype corruption in...

SUSE-SU-2025:20564-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2025-6021: Integer Overflow in xmlBuildQName Leads to Stack Buffer Overflow in libxml2 bsc1244580 - CVE-2025-6170: stack buffer overflow may lead to a crash bsc1244700 - CVE-2025-7425: Heap Use-After-Free in libxslt caused by atype...

Ubuntu: Security Advisory (USN-7694-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-6.10.1.9)

The version of AOS installed on the remote host is prior to 6.10.1.9. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-6.10.1.9 advisory. - setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path...

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.0.1.8)

The version of AOS installed on the remote host is prior to 7.0.1.8. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.0.1.8 advisory. - setuptools is a package that allows users to download, build, install, upgrade, and uninstall Python packages. A path...

TencentOS Server 4: libxml2 (TSSA-2025:0653)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0653 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

ROS-20250819-09

Vulnerability of libxml2 library's xmlSchematronFormatReport function is related to reading data outside of the buffer in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted XML file Vulnerability in the...

Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities

Summary IBM QRadar SIEM includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. These have been addressed in the update. Vulnerability Details CVEID:CVE-2023-34967 DESCRIPTION: Samba is vulnerable to a denial of service, caused by a ty...

Security Bulletin: A security vulnerability has been discovered in IBM Verify Identity Access OIDC Provider (CVE-2024-56171)

Summary A security vulnerability has been addressed in IBM Verify Identity Access OIDC Provider Vulnerability Details CVEID:CVE-2024-56171 DESCRIPTION: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in...

Linux Distros Unpatched Vulnerability : CVE-2025-49795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. This flaw allows an attacker to craft a malicious XML input...