EUVD-2015-8129

Malware in sbrugna...

EUVD-2016-2857

Malware in sbrugna...

OSV-2023-185 Global-buffer-overflow in xmlNextChar

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57073 Crash type: Global-buffer-overflow READ 1 Crash state: xmlNextChar htmlParseStartTag htmlParseChunk...

SUSE CVE-2015-8241

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...

SUSE CVE-2016-1762

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

libxml2: Heap-based buffer-overread in xmlNextChar

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

The vulnerability of the libxml2 library, which allows a hacker to cause a service failure or obtain confidential information

The vulnerability of the xmlNextChar function in the libxml2 library arises due to buffer overflows. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure application termination or obtain confidential information through specially crafted XML data...

libxml2: Heap-based buffer-overread in xmlNextChar

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

libxml2: Buffer overread with XML parser in xmlNextChar

A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to leak potentially sensitive information...

Heap overflow

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

CVE-2016-1762

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

CVE-2016-1762

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

CVE-2016-1762

CVE-2016-1762 (and related libxml2 flaws) affects the GNOME libxml2 library where crafted XML input can cause denial of service or code execution. The primary cited issue is a heap-based buffer over-read in xmlNextChar prior to libxml2 2.9.4. Public advisories list multiple CVEs (e.g., 2016-1833/...

CVE-2016-1762

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

UBUNTU-CVE-2016-1762

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document...

PT-2016-1545

Name of the Vulnerable Software and Affected Versions libxml2 versions prior to 2.9.4 Description The issue is related to a heap-based buffer over-read in the xmlNextChar function, allowing remote attackers to cause a denial of service. It may also lead to arbitrary code execution or memory damag...

AIX 5.3 TL 12 : libxml2 (IV80617)

The remote AIX host has a version of libxml2 installed that is affected by the following vulnerabilities : - A heap-based buffer overflow condition exists in the xmlParseEntityDecl and xmlParseConditionalSections functions within file parser.c due to a failure to properly stop parsing invalid...

AIX 7.1 TL 3 : libxml2 (IV80586)

The remote AIX host has a version of libxml2 installed that is affected by the following vulnerabilities : - A heap-based buffer overflow condition exists in the xmlParseEntityDecl and xmlParseConditionalSections functions within file parser.c due to a failure to properly stop parsing invalid...

libxml2 Denial of Service Vulnerability (CNVD-2015-08375)

Libxml2 is the GNOME project team developed a C-based language used to parse XML documents library , which supports a variety of encoding formats , Xpath parsing , Well-formed and valid validation and so on. A security vulnerability exists in the 'xmlNextChar' function of libxml2 version 2.9.2,...

CVE-2015-8241

The xmlNextChar function in libxml2 2.9.2 does not properly check the state, which allows context-dependent attackers to cause a denial of service heap-based buffer over-read and application crash or obtain sensitive information via crafted XML data...