Lucene search
+L

20 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-7928

Malware in sbrugna...

2.6CVSS7.1AI score0.03199EPSS
Exploits1References36
f5
f5
added 2023/02/21 6:33 p.m.40 views

K76678525: libxml2 vulnerabilities CVE-2015-8035 CVE-2016-5131 CVE-2017-15412 CVE-2017-18258 CVE-2018-14404 CVE-2018-14567

Security Advisory Description CVE-2015-8035 The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data. CVE-2016-5131 Use-after-free vulnerability in libxml2...

8.8CVSS8AI score0.043EPSS
Exploits2
susecve
susecve
added 2023/02/15 5:12 a.m.5 views

SUSE CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS9.1AI score0.03199EPSS
Exploits1References8
veracode
veracode
added 2020/04/29 2:42 a.m.26 views

Denial Of Service (DoS)

libxml2 is vulnerable to denial of service DoS. The vulnerability exists through an infinite loop in xzdecomp function in xzlib.c...

5.3CVSS2.4AI score0.0244EPSS
Exploits1References5Affected Software1
bdu_fstec
bdu_fstec
added 2019/02/21 12:0 a.m.4 views

The vulnerability of the xz_decomp function in the libxml2 library, which allows a hacker to trigger a service failure.

The vulnerability of the xzdecomp function in the libxml2 library is related to an uncontrolled resource consumption. Exploiting this vulnerability may allow a malicious actor, operating remotely, to cause service failures using a specially crafted XML file...

5.4CVSS6.4AI score0.0244EPSS
Exploits1References7Affected Software4
veracode
veracode
added 2018/08/01 7:49 a.m.27 views

Denial Of Service (DoS)

libxml2.so is vulnerable to denial of service DoS attacks. A malicious user can pass an XML file to the xzdecomp function in xzlib.c to cause a process hang that can crash the application...

2.6CVSS6.6AI score0.03199EPSS
Exploits1References26Affected Software2
prion
prion
added 2018/04/04 2:29 a.m.33 views

Design/Logic Flaw

The xzdecomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035...

2.6CVSS5.9AI score0.03199EPSS
Exploits2References2Affected Software2
ubuntucve
ubuntucve
added 2018/04/04 2:29 a.m.34 views

CVE-2018-9251

The xzdecomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035...

5.3CVSS6.8AI score0.0244EPSS
Exploits1References2
nvd
nvd
added 2018/04/04 2:29 a.m.20 views

CVE-2018-9251

The xzdecomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035...

5.3CVSS6.5AI score0.0244EPSS
Exploits1References2
osv
osv
added 2018/04/04 2:29 a.m.25 views

CVE-2018-9251

The xzdecomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035...

5.3CVSS6.3AI score
Exploits0References2
osv
osv
added 2018/04/04 2:29 a.m.4 views

ALPINE-CVE-2018-9251

The xzdecomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035...

5.3CVSS6.9AI score0.0244EPSS
Exploits1References1
cve
cve
added 2018/04/04 2:0 a.m.256 views

CVE-2018-9251

CVE-2018-9251 affects libxml2

5.3CVSS6.6AI score0.0244EPSS
Exploits1References2Affected Software1
bdu_fstec
bdu_fstec
added 2015/12/14 12:0 a.m.5 views

The vulnerability of the xz_decomp function in the libxml2 library, which allows a hacker to trigger a service failure.

The vulnerability of the xzdecomp function in the libxml2 library is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures by using specially crafted XML data...

7.3CVSS6.8AI score0.03199EPSS
Exploits1References7Affected Software2
nvd
nvd
added 2015/11/18 4:59 p.m.31 views

CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS6.6AI score0.03199EPSS
Exploits1References25
prion
prion
added 2015/11/18 4:59 p.m.30 views

Design/Logic Flaw

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS6.7AI score0.03199EPSS
Exploits1References25Affected Software7
cvelist
cvelist
added 2015/11/18 4:0 p.m.30 views

CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

6.6AI score0.03199EPSS
Exploits1References25
cve
cve
added 2015/11/18 4:0 p.m.369 views

CVE-2015-8035

Summary (CVE-2015-8035) : In libxml2, the xz_decomp function in xzlib.c does not properly detect compression errors, enabling a denial-of-service condition (process hang) via crafted XML data. Affected: libxml2 up to 2.9.1 (and related 2.9.x lines in later advisories) with potential impact across...

2.6CVSS6.6AI score0.03199EPSS
Exploits1References25Affected Software1
debiancve
debiancve
added 2015/11/18 4:0 p.m.42 views

CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS7.2AI score0.03199EPSS
Exploits1
ubuntucve
ubuntucve
added 2015/11/02 12:0 a.m.36 views

CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS6.8AI score0.03199EPSS
Exploits1References3
osv
osv
added 2015/11/02 12:0 a.m.5 views

UBUNTU-CVE-2015-8035

The xzdecomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service process hang via crafted XML data...

2.6CVSS6.8AI score0.03199EPSS
Exploits1References4
Rows per page
Query Builder