OSV-2023-212 Global-buffer-overflow in xmlParseEntityDecl

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57294 Crash type: Global-buffer-overflow READ 1 Crash state: xmlParseEntityDecl xmlParseMarkupDecl xmlParseInternalSubset...

AIX 7.1 TL 3 : libxml2 (IV80586)

The remote AIX host has a version of libxml2 installed that is affected by the following vulnerabilities : - A heap-based buffer overflow condition exists in the xmlParseEntityDecl and xmlParseConditionalSections functions within file parser.c due to a failure to properly stop parsing invalid...

AIX 5.3 TL 12 : libxml2 (IV80617)

The remote AIX host has a version of libxml2 installed that is affected by the following vulnerabilities : - A heap-based buffer overflow condition exists in the xmlParseEntityDecl and xmlParseConditionalSections functions within file parser.c due to a failure to properly stop parsing invalid...

libxml2 Denial of Service Vulnerability (CNVD-2015-07711)

libxml2 is an XML parser and markup toolset. A denial of service vulnerability exists in libxml2 version 2.9.2 that allows attackers to cause a denial of service by crafting the xmlParseEntityDecl or xmlParseConditionalSections functions of parserc in XML data...

CVE-2015-7941

libxml2 2.9.2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service out-of-bounds read and libxml2 crash via crafted XML data to the 1 xmlParseEntityDecl or 2 xmlParseConditionalSections function in parser.c, as demonstrated by...