CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

BDU FSTEC•added 2023/06/21 12:0 a.m.•4 views

The vulnerability of the xmlDictComputeFastKey function (dict.c) in the Libxml2 library allows a hacker to cause a service failure.

The vulnerability of the xmlDictComputeFastKey function in the dict.c file of the Libxml2 library is related to a memory reclamation issue when working with empty string hash dictionaries. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.8CVSS6.8AI score0.01013EPSS

Exploits0References13Affected Software5

SUSE CVE•added 2023/02/15 4:45 a.m.•4 views

SUSE CVE-2017-9049

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398...

5.3CVSS9.1AI score0.04626EPSS

Exploits1References32

RedHat Linux•added 2018/08/16 4:6 p.m.•4 views

libxml2: Heap-based buffer over-read in function xmlDictComputeFastKey

7.5CVSS7.3AI score0.04626EPSS

Exploits1References4

BDU FSTEC•added 2018/01/12 12:0 a.m.•6 views

The vulnerability of the xmlDictComputeFastKey function (dict.c) in the libxml2 library allows a attacker to cause a service failure.

The vulnerability of the xmlDictComputeFastKey function in the dict.c file of the libxml2 library arises from a read operation that occurs outside the buffer, within dynamic memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

7.5CVSS7.5AI score0.04626EPSS

Exploits1References16Affected Software9

CNVD•added 2017/05/22 12:0 a.m.•2 views

libxml2 Heap Buffer Overflow Out-of-Bounds Read Vulnerability

libxml2 is the GNOME project team developed a C-based library for parsing XML documents, which supports multiple encoding formats, Xpath parsing, Well-formed and valid validation. A heap buffer overflow out-of-bounds read vulnerability exists in the 'xmlDictComputeFastKey' function of the dict.c...

7.5CVSS9.7AI score0.04626EPSS

Exploits1References1

RedhatCVE•added 2017/05/19 8:26 a.m.•35 views

CVE-2017-9049

7.5CVSS2.4AI score0.04626EPSS

Exploits1References1

Prion•added 2017/05/18 6:29 a.m.•26 views

Heap overflow

5CVSS7.5AI score0.04626EPSS

Exploits1References6Affected Software1

OSV•added 2017/05/18 6:29 a.m.•41 views

CVE-2017-9049

7.5CVSS8.3AI score

Exploits0References6

OSV•added 2017/05/18 6:29 a.m.•3 views

DEBIAN-CVE-2017-9049

7.5CVSS9.6AI score0.04626EPSS

Exploits1References1

CVE•added 2017/05/18 6:13 a.m.•156 views

CVE-2017-9049

CVE-2017-9049 affects libxml2 prior to a fix released after 2.9.4. It describes a heap-based buffer over-read in xmlDictComputeFastKey within dict.c, which can cause programs using libxml2 (e.g., PHP) to crash. The vulnerability arises from an incomplete fix (Bug 759398). Public references show t...

7.5CVSS7.4AI score0.04626EPSS

Exploits1References6Affected Software1

Vulnrichment•added 2017/05/18 6:13 a.m.•4 views

CVE-2017-9049

6.8AI score0.04626EPSS

Exploits1References6

OSV•added 2017/05/18 12:0 a.m.•2 views

UBUNTU-CVE-2017-9049

7.5CVSS7AI score0.04626EPSS

Exploits1References5

Positive Technologies•added 2017/05/15 12:0 a.m.•8 views

PT-2017-3260

Name of the Vulnerable Software and Affected Versions libxml2 version 20904-GITv2.9.4-16-g0741801 Description The issue is caused by a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This can cause programs that use libxml2, such as PHP, to crash. The problem exists d...

10CVSS6.8AI score0.24139EPSS

Exploits27References142

FreeBSD•added 2017/05/10 12:0 a.m.•53 views

libxml2 -- Multiple Issues

libxml2 developers report: The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service buffer over-read or information disclosure. A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent i...

7.5CVSS7.4AI score0.07407EPSS

Exploits5References6

RedHat Linux•added 2016/12/15 10:11 p.m.•4 views

libxml2: Heap use-after-free in xmlDictComputeFastKey

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document...

5.5CVSS7.3AI score0.03797EPSS

Exploits0References4

ossfuzz•added 2016/10/24 9:55 p.m.•18 views

libxml2: Heap-buffer-overflow in xmlDictComputeFastKey

Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5675748065017856 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Job Type: libfuzzerasanlibxml2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

Exploits0Affected Software1

ossfuzz•added 2016/09/11 9:36 a.m.•15 views

Heap-buffer-overflow in xmlDictComputeFastKey

Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5086706067832832 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Job Type: libfuzzerasanlibxml2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

7.2AI score

Exploits0Affected Software1

RedhatCVE•added 2016/07/18 2:19 p.m.•28 views

CVE-2016-1836

5.5CVSS5.6AI score0.03797EPSS

Exploits0References1

RedHat Linux•added 2016/06/23 10:32 a.m.•5 views

libxml2: Heap use-after-free in xmlDictComputeFastKey

5.5CVSS7.3AI score0.03797EPSS

Exploits0References4

OSV•added 2016/05/20 10:59 a.m.•3 views

DEBIAN-CVE-2016-1836