libxmljs 安全漏洞

libxmljs is the LibXML binding for node.js. A security vulnerability exists in libxmljs2 that stems from the presence of a type confusion vulnerability...

PT-2024-25853 · Libxmljs · Libxmljs

Name of the Vulnerable Software and Affected Versions: libxmljs affected versions not specified Description: The issue is related to a type confusion vulnerability that occurs when parsing a specially crafted XML. This happens when the namespaces function is invoked on a grand-child of a node tha...

libxmljs 安全漏洞

libxmljs is the LibXML binding for node.js. A security vulnerability exists in libxmljs that stems from the presence of a type confusion vulnerability...

libxmljs 安全漏洞

libxmljs is the LibXML binding for node.js. A security vulnerability exists in libxmljs2 that stems from the presence of a type confusion vulnerability...

Denial Of Service (DoS)

libxmljs is vulnerable to denial of service. The vulnerability exists in parseXml function because it doesn't ensure if the parseXML input is a string or buffer which allows an attacker to cause an application crash...

Denial Of Service (DoS)

libxmljs is vulnerable to denial of service. An attacker can crash the application by providing a non functional object to toString method in xmldocument.cc as the library does not properly check user input values in parseXml and parseHtml functions...

GHSA-773H-W45W-F2F9 Denial of service vulnerability exists in libxmljs

libxmljs provides libxml bindings for v8 javascript engine. This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a...

3loc (>=0.1.0 <=0.4.0), 3scale (=0.2.0) +426 more potentially affected by CVE-2022-21144 via libxmljs (>=0.10.0 <=0.19.7)

libxmljs NPM version =0.10.0, =0.1.0, =0.0.1, =4.0.1, =1.5.8, =1.5.1, =1.8.3, =0.1.0, =1.0.1, =1.0.0, =1.1.0, =1.20.0, =0.0.5, =0.1.0, =0.7.0 and more Source cves: CVE-2022-21144 Source advisory: OSV:GHSA-773H-W45W-F2F9...

Denial of service vulnerability exists in libxmljs

libxmljs provides libxml bindings for v8 javascript engine. This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a...

CVE-2022-21144

This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a Function object V8 will crash...

CVE-2022-21144

This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a Function object V8 will crash...

Code injection

This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a Function object V8 will crash...

CVE-2022-21144 Denial of Service (DoS)

This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a Function object V8 will crash...

CVE-2022-21144

Summary: CVE-2022-21144 affects all versions of the libxmljs package. The issue occurs when libxmljs.parseXml is called with a non-buffer argument, causing the V8 engine to invoke the argument’s toString method; if toString is not a Function, V8 will crash, leading to a potential denial of servic...

CVE-2022-21144

This affects all versions of package libxmljs. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the argument's toString value is not a Function object V8 will crash...

libxmljs 输入验证错误漏洞

libxmljs is the LibXML binding for node.js. All versions of the libxmljs package have an input validation error vulnerability that stems from the fact that when calling a non-buffered parameter, the V8 code will attempt to call the .toString method for that parameter. If the toString value of the...

PT-2022-14877 · Npm · Libxmljs

Name of the Vulnerable Software and Affected Versions: libxmljs versions all Description: The issue arises when the libxmljs.parseXml function is invoked with a non-buffer argument. In such cases, the V8 code attempts to call the toString method of the argument. If the argument's toString value i...

3loc (>=0.1.0 <=0.4.0), 3scale (=0.2.0) +426 more potentially affected by CVE-2022-21144 via libxmljs (>=0.10.0 <=0.19.7)

libxmljs NPM version =0.10.0, =0.1.0, =0.0.1, =4.0.1, =1.5.8, =1.5.1, =1.8.3, =0.1.0, =1.0.1, =1.0.0, =1.1.0, =1.20.0, =0.0.5, =0.1.0, =0.7.0 and more Source cves: CVE-2022-21144 Source advisory: SNYK:JS-LIBXMLJS-2348756...

Denial of Service (DoS)

Overview libxmljs is a libxml bindings for v8 javascript engine Affected versions of this package are vulnerable to Denial of Service DoS. When invoking the libxmljs.parseXml function with a non-buffer argument the V8 code will attempt invoking the .toString method of the argument. If the...

Fedora Update for nodejs-libxmljs FEDORA-2016-6

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...