JLSEC-2025-68 xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-fi...

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

Oracle Linux 7 : libxml2 (ELSA-2020-3996)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-3996 advisory. - Fix CVE-2019-19956 1793000 - Fix CVE-2019-20388 1810057 - Fix CVE-2020-7595 1810073 Tenable has extracted the preceding description block directly fr...

SUSE CVE-2020-7595

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

AlmaLinux 8 : libxml2 (ALSA-2020:4479)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2020:4479 advisory. - xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc-oldNs. CVE-2019-19956 - xmlSchemaPreRun in...

libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

Moderate: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c CVE-2019-19956 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c CVE-2019-20388 libxml2: infinite loop i...

libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.

...

libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

EulerOS 2.0 SP2 : libxml2 (EulerOS-SA-2020-1670)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.CVE-2019-20388 - xmlStringLenDecodeEntities in...

Libxml2 Infinite Loop Vulnerability

libxml2 is a library written in C for parsing XML documents . A security vulnerability exists in the xmlStringLenDecodeEntities of the parser.c file in libxml2 version 2.9.10. An attacker can exploit this vulnerability to cause an infinite loop...

CVE-2020-7595

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

CVE-2020-7595

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

Design/Logic Flaw

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

CVE-2020-7595

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation...

libxml -- multiple vulnerabilities

CVE mitre reports: CVE-2019-20388 xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak. CVE-2020-7595 xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation. CVE-2020-24977 GNOME project libxml2...

PT-2019-5529

Name of the Vulnerable Software and Affected Versions libxml2 version 2.9.10 Description The issue is related to the xmlStringLenDecodeEntities function in the libxml2 library, which can lead to an infinite loop under certain end-of-file conditions. This could allow a remote attacker to cause a...

Denial Of Service (DoS)

libxml2 is vulnerable to denial of service attacks due to improper prevention of entity expansion in the xmlStringLenDecodeEntities function in parser.c. A context-dependent attacker is able to cause a denial of service by exhausting CPU using specially crafted XML data...

F5 Networks BIG-IP : libxml2 vulnerabilities (K24322529)

CVE-2016-4447 The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service heap-based buffer underread and application crash via a crafted file, involving xmlParseName. CVE-2016-4449 XML external entity XXE vulnerability in t...