MiracleLinux 7 : libxml2-2.9.1-6.6.0.1.el7.AXS7 (AXSA:2021-2474:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2474:03 advisory. libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : libxml2-2.7.6-21.1.0.2.AXS4 (AXSA:2021-2481:04)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2481:04 advisory. libxml2: Use after free via namespace node in XPointer ranges CVE-2016-4658 Tenable has extracted the preceding description block directly from the...

CLSA-2023-1699393971 libxml2: Fix of CVE-2016-4658

CVE-2016-4658: disallow namespace nodes in XPointer ranges...

CLSA-2023-1699381307 libxml2: Fix of CVE-2016-4658

CVE-2016-4658: disallow namespace nodes in XPointer ranges...

CentOS 7 : libxml2 (RHSA-2021:3810)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3810 advisory. - xpointer.c in libxml2 before 2.9.5 as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products does not forbid...

Moderate: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

libxml2: Use after free via namespace node in XPointer ranges

A use-after-free flaw was found in the Xpointer implementation of libxml2. An attacker could use this flaw against an application parsing untrusted XML files and compiled with libxml2 to leak small amount of memory data...

Remote Code Execution (RCE)

libxml2.so is vulnerable to remote code execution RCE attacks. The application does not forbid namespace nodes in XPointer ranges, allowing a malicious user to inject and execute arbitrary code...

DLA-691-1 libxml2 - security update

Bulletin has no description...

CVE-2016-4658

xpointer.c in libxml2 before 2.9.5 as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free an...

UBUNTU-CVE-2016-4658

xpointer.c in libxml2 before 2.9.5 as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free an...

PT-2016-3342

Name of the Vulnerable Software and Affected Versions libxml2 versions prior to 2.9.5 Description The issue allows remote attackers to execute arbitrary code or cause a denial of service due to a use-after-free and memory corruption via a crafted XML document. This is because namespace nodes in...