2 matches found
CVE-2016-4571
CVE-2016-4571 affects the mxml library. The vulnerability is in the function mxml_write_node (file mxml-file.c) and can allow remote attackers to cause a denial of service via crafted XML, affecting versions 2.9, 2.7 and possibly earlier. Several advisories document fixes: Debian/DLA-1641-1 notes...
CVE-2016-4570
CVE-2016-4570 affects the mxml library (mxml 2.9, 2.7, and earlier) via the mxmlDelete function in mxml-node.c, allowing denial of service (stack exhaustion) when processing crafted XML files. Connected advisories confirm this vulnerability and show patched packages in multiple distros: Debian (D...