Lucene search
Ubuntu.comUB:CVE-2023-28484HistoryApr 12, 2023 - 12:00 a.m.
CVE-2023-28484
2023-04-1200:00:00
ubuntu.com
ubuntu.com
22
0.001 Low
EPSS
Percentile
39.8%
In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead
to a NULL pointer dereference and subsequently a segfault. This occurs in
xmlSchemaFixupComplexType in xmlschemas.c.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | libxml2 | < 2.9.4+dfsg1-6.1ubuntu1.9 | UNKNOWN |
| ubuntu | 20.04 | noarch | libxml2 | < 2.9.10+dfsg-5ubuntu0.20.04.6 | UNKNOWN |
| ubuntu | 22.04 | noarch | libxml2 | < 2.9.13+dfsg-1ubuntu0.3 | UNKNOWN |
| ubuntu | 22.10 | noarch | libxml2 | < 2.9.14+dfsg-1ubuntu0.2 | UNKNOWN |
| ubuntu | 23.04 | noarch | libxml2 | < 2.9.14+dfsg-1.1ubuntu0.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | libxml2 | < 2.9.1+dfsg1-3ubuntu4.13+esm5) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
| ubuntu | 16.04 | noarch | libxml2 | < 2.9.3+dfsg1-1ubuntu0.7+esm5) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
References
access.redhat.com/security/cve/CVE-2023-28484
gitlab.gnome.org/GNOME/libxml2/-/commit/4c6922f763ad958c48ff66f82823ae21f2e92ee6
gitlab.gnome.org/GNOME/libxml2/-/commit/647e072ea0a2f12687fa05c172f4c4713fdb0c4f
gitlab.gnome.org/GNOME/libxml2/-/releases/v2.10.4
launchpad.net/bugs/cve/CVE-2023-28484
nvd.nist.gov/vuln/detail/CVE-2023-28484
security-tracker.debian.org/tracker/CVE-2023-28484
ubuntu.com/security/notices/USN-6028-1
ubuntu.com/security/notices/USN-6028-2
www.cve.org/CVERecord?id=CVE-2023-28484
Related
debiancve
debiancve
CVE-2023-28484
2023-04-24 21:15:09
osv
osv
CVE-2023-28484
2023-04-24 21:15:09
libxml2 vulnerabilities
2023-04-19 13:42:53
libxml2 - security update
2023-04-30 00:00:00
prion
prion
Null pointer dereference
2023-04-24 21:15:00
cvelist
cvelist
CVE-2023-28484
2023-04-24 00:00:00
alpinelinux
alpinelinux
CVE-2023-28484
2023-04-24 21:15:09
cbl_mariner
cbl_mariner
CVE-2023-28484 affecting package libxml2 for versions less than 2.10.4-1
2023-08-03 02:51:21
nessus
nessus
F5 Networks BIG-IP : libxml2 vulnerability (K000139641)
2024-05-17 00:00:00
CentOS 8 : libxml2 (CESA-2023:4529)
2024-02-08 00:00:00
EulerOS Virtualization 2.11.1 : libxml2 (EulerOS-SA-2023-2731)
2024-01-16 00:00:00
redhatcve
redhatcve
CVE-2023-28484
2023-04-11 19:29:40
veracode
veracode
Denial Of Service (DoS)
2023-04-25 08:12:01
ibm
ibm
cve
cve
CVE-2023-28484
2023-04-24 21:15:09
f5
f5
K000139641: libxml2 vulnerability CVE-2023-28484
2024-05-17 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2527)
2023-08-01 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2023-2504)
2023-08-01 00:00:00
Fedora: Security Advisory for libxml2 (FEDORA-2023-a521b917c8)
2023-04-19 00:00:00
oraclelinux
oraclelinux
libxml2 security update
2023-08-02 00:00:00
libxml2 security update
2023-08-10 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2321
2024-01-09 09:53:22
Advisory ROSA-SA-2023-2319
2023-12-26 12:04:20
github
github
Nokogiri updates packaged libxml2 to v2.10.4 to resolve multiple CVEs
2023-04-11 21:48:01
ubuntu
ubuntu
libxml2 vulnerabilities
2023-04-19 00:00:00
libxml2 vulnerabilities
2023-06-07 00:00:00
aix
aix
AIX is vulnerable to a denial of service due to libxml2
2023-07-25 11:08:32
debian
debian
[SECURITY] [DLA 3405-1] libxml2 security update
2023-04-30 11:30:47
[SECURITY] [DSA 5391-1] libxml2 security update
2023-04-20 20:46:15
amazon
amazon
Medium: libxml2
2023-04-27 18:36:00
Medium: libxml2
2023-04-27 16:19:00
redhat
redhat
(RHSA-2023:4349) Moderate: libxml2 security update
2023-08-01 07:58:11
(RHSA-2023:4529) Moderate: libxml2 security update
2023-08-08 07:21:37
(RHSA-2024:0413) Moderate: libxml2 security update
2024-01-24 14:40:23
almalinux
almalinux
Moderate: libxml2 security update
2023-08-08 00:00:00
Moderate: libxml2 security update
2023-08-01 00:00:00
redos
redos
ROS-20230616-04
2023-06-16 00:00:00
rocky
rocky
libxml2 security update
2023-10-06 23:10:01
fedora
fedora
[SECURITY] Fedora 38 Update: libxml2-2.10.4-1.fc38
2023-04-18 01:40:06
[SECURITY] Fedora 37 Update: libxml2-2.10.4-1.fc37
2023-04-18 01:32:12
cloudfoundry
cloudfoundry
USN-6028-1: libxml2 vulnerabilities | Cloud Foundry
2023-04-29 00:00:00
freebsd
freebsd
libxml2 -- multiple vulnerabilities
2023-04-11 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0569
2023-04-23 00:00:00
Moderate Photon OS Security Update - PHSA-2023-5.0-0001
2023-05-02 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0380
2023-04-25 00:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerability
2023-05-06 21:19:07
gentoo
gentoo
libxml2: Multiple Vulnerabilities
2024-02-09 00:00:00
slackware
slackware
[slackware-security] libxml2
2023-12-10 01:15:09
ics
ics
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00