8 matches found
SUSE-SU-2024:0300-1 Security update for xerces-c
This update for xerces-c fixes the following issues: - CVE-2018-1311: fixed use-after-free triggered during the scanning of external DTDs potentially leading to DOS. bsc1159552...
SUSE-SU-2023:4543-1 Security update for xerces-c
This update for xerces-c fixes the following issues: - CVE-2023-37536: Fixed an integer overflow that could have led to a out-of-bounds memory accesses bsc1216156...
SUSE-SU-2021:2958-1 Security update for xerces-c
This update for xerces-c fixes the following issues: - CVE-2018-1311: Fixed use-after-free inside XML parser during the scanning of external DTDs bsc1159552...
Debian DSA-4814-1 : xerces-c - security update
It was discovered that xerces-c, a validating XML parser library for C++, did not correctly scan DTDs. The use-after-free vulnerability resulting from this issue would allow a remote attacker to leverage a specially crafted XML file in order to crash the application or potentially execute arbitra...
Important: Red Hat Security Advisory: xerces-c security update
An update for xerces-c is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
SUSE-SU-2018:3277-1 Security update for Xerces-c
This update for Xerces-c fixes the following issues: - CVE-2017-12627: Processing of external DTD paths could have resulted in a null pointer dereference under certain conditions bsc1083630. - CVE-2016-4463: Prevent stack-based buffer overflow that allowed context-dependent attackers to cause a...
openSUSE Security Update : xerces-c (openSUSE-2016-429)
This update for xerces-c fixes the following security issues : - CVE-2016-0729: Fix for mishandling certain kinds of malformed input documents, resulting in buffer overlows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a...
SUSE-SU-2015:0597-1 Security update for Xerces-C
The Xerces-C XML parsing library was updated to fix mishandling certain kinds of malformed input documents, that could have resulted in a segmentation faults during a parse operation, leading to denial of service or potential code execution. bnc920810,CVE-2015-0252...