CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

SUSE CVE•added 2023/02/15 4:45 a.m.•2 views

SUSE CVE-2017-9049

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398...

5.3CVSS9.1AI score0.00458EPSS

Exploits1References32

RedHat Linux•added 2018/08/16 4:6 p.m.•3 views

libxml2: Heap-based buffer over-read in function xmlDictComputeFastKey

7.5CVSS7.3AI score0.00458EPSS

Exploits1References4

CNVD•added 2017/05/22 12:0 a.m.•1 views

libxml2 Heap Buffer Overflow Out-of-Bounds Read Vulnerability

libxml2 is the GNOME project team developed a C-based library for parsing XML documents, which supports multiple encoding formats, Xpath parsing, Well-formed and valid validation. A heap buffer overflow out-of-bounds read vulnerability exists in the 'xmlDictComputeFastKey' function of the dict.c...

7.5CVSS9.7AI score0.00458EPSS

Exploits1References1

RedhatCVE•added 2017/05/19 8:26 a.m.•32 views

CVE-2017-9049

7.5CVSS2.4AI score0.00458EPSS

Exploits1References1

OSV•added 2017/05/18 6:29 a.m.•2 views

DEBIAN-CVE-2017-9049

7.5CVSS9.6AI score0.00458EPSS

Exploits1References1

Prion•added 2017/05/18 6:29 a.m.•23 views

Heap overflow

5CVSS7.5AI score0.00458EPSS

Exploits1References6Affected Software1

OSV•added 2017/05/18 6:29 a.m.•36 views

CVE-2017-9049

7.5CVSS8.3AI score

Exploits0References6

CVE•added 2017/05/18 6:13 a.m.•150 views

CVE-2017-9049

CVE-2017-9049 affects libxml2 prior to a fix released after 2.9.4. It describes a heap-based buffer over-read in xmlDictComputeFastKey within dict.c, which can cause programs using libxml2 (e.g., PHP) to crash. The vulnerability arises from an incomplete fix (Bug 759398). Public references show t...

7.5CVSS7.4AI score0.00458EPSS

Exploits1References6Affected Software1

Vulnrichment•added 2017/05/18 6:13 a.m.•3 views

CVE-2017-9049

6.8AI score0.00458EPSS

Exploits1References6

OSV•added 2017/05/18 12:0 a.m.•1 views

UBUNTU-CVE-2017-9049

7.5CVSS7AI score0.00458EPSS

Exploits1References5

Positive Technologies•added 2017/05/15 12:0 a.m.•3 views

PT-2017-3260

Name of the Vulnerable Software and Affected Versions libxml2 version 20904-GITv2.9.4-16-g0741801 Description The issue is caused by a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This can cause programs that use libxml2, such as PHP, to crash. The problem exists d...

10CVSS6.8AI score0.38332EPSS

Exploits27References142

FreeBSD•added 2017/05/10 12:0 a.m.•52 views

libxml2 -- Multiple Issues

libxml2 developers report: The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service buffer over-read or information disclosure. A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent i...

7.5CVSS7.4AI score0.04546EPSS

Exploits5References6

RedHat Linux•added 2016/12/15 10:11 p.m.•2 views

libxml2: Heap use-after-free in xmlDictComputeFastKey

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document...

5.5CVSS7.3AI score0.01305EPSS

Exploits0References4

ossfuzz•added 2016/10/24 9:55 p.m.•15 views

libxml2: Heap-buffer-overflow in xmlDictComputeFastKey

Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5675748065017856 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Job Type: libfuzzerasanlibxml2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

Exploits0Affected Software1

ossfuzz•added 2016/09/11 9:36 a.m.•13 views

Heap-buffer-overflow in xmlDictComputeFastKey

Project: https://gitlab.gnome.org/GNOME/libxml2.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5086706067832832 Fuzzer: libFuzzerlibxml2xmlreadmemoryfuzzer Job Type: libfuzzerasanlibxml2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...

7.2AI score

Exploits0Affected Software1

RedhatCVE•added 2016/07/18 2:19 p.m.•23 views

CVE-2016-1836

5.5CVSS5.6AI score0.01305EPSS

Exploits0References1

RedHat Linux•added 2016/06/23 10:32 a.m.•3 views

libxml2: Heap use-after-free in xmlDictComputeFastKey

5.5CVSS7.3AI score0.01305EPSS

Exploits0References4

OSV•added 2016/05/20 10:59 a.m.•2 views

DEBIAN-CVE-2016-1836

5.5CVSS6.3AI score0.01305EPSS

Exploits0References1

Prion•added 2016/05/20 10:59 a.m.•23 views

Design/Logic Flaw

4.3CVSS6.3AI score0.01305EPSS

Exploits0References34Affected Software14

CVE•added 2016/05/20 10:0 a.m.•127 views

CVE-2016-1836

CVE-2016-1836 is a use-after-free in libxml2 (xmlDictComputeFastKey). Public mentions tie it to libxml2 up to 2.9.4, with affected Apple platforms (iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, watchOS before 2.2.1) and a DoS impact via crafted XML, per vendor advisories. Connected do...

5.5CVSS6.5AI score0.01305EPSS

Exploits0References34Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by