CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
82.9%
libxml2 before 2.8.0 computes hash values without restricting the ability
to trigger hash collisions predictably, which allows context-dependent
attackers to cause a denial of service (CPU consumption) via crafted XML
data.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 8.04 | noarch | libxml2 | < 2.6.31.dfsg-2ubuntu1.8 | UNKNOWN |
ubuntu | 10.04 | noarch | libxml2 | < 2.7.6.dfsg-1ubuntu1.4 | UNKNOWN |
ubuntu | 10.10 | noarch | libxml2 | < 2.7.7.dfsg-4ubuntu0.4 | UNKNOWN |
ubuntu | 11.04 | noarch | libxml2 | < 2.7.8.dfsg-2ubuntu0.3 | UNKNOWN |
ubuntu | 11.10 | noarch | libxml2 | < 2.7.8.dfsg-4ubuntu0.2 | UNKNOWN |