Lucene search

K
ubuntu
UbuntuUSN-3739-1
HistoryAug 14, 2018 - 12:00 a.m.

libxml2 vulnerabilities

2018-08-1400:00:00
ubuntu.com
57

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.021 Low

EPSS

Percentile

88.8%

Releases

  • Ubuntu 18.04 ESM
  • Ubuntu 16.04 ESM
  • Ubuntu 14.04 ESM

Packages

  • libxml2 - GNOME XML library

Details

Matias Brutti discovered that libxml2 incorrectly handled certain XML files.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2016-9318)

It was discovered that libxml2 incorrectly handled certain files.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 18.04 LTS. (CVE-2017-16932)

It was discovered that libxml2 incorrectly handled certain files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2017-18258, CVE-2018-14404, CVE-2018-14567)

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchlibxml2< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-dbg< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-dev< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-doc< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-udeb< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-utils< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchlibxml2-utils-dbgsym< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchpython-libxml2< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchpython-libxml2-dbg< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Ubuntu18.04noarchpython3-libxml2< 2.9.4+dfsg1-6.1ubuntu1.2UNKNOWN
Rows per page:
1-10 of 371
How to protect your server from attacks?

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.021 Low

EPSS

Percentile

88.8%

Related for USN-3739-1