logo
DATABASE RESOURCES PRICING ABOUT US

Arbitrary Code Execution

Description

libxml2.so is vulnerable to arbitrary code execution. An integer overflow occurs when comparing schema dates. This could potentially result in arbitrary code execution on the host OS.


Affected Software


CPE Name Name Version
libxml2.so 2.9.12.debug
libxml2.so 2.7.6
libxml2:3.12 2.9.10-r4
libxml2:3.10 2.9.9-r3
libxml2:3.11 2.9.10-r1
libxml2:3.11 2.9.10-r3
libxml2:3.11 2.9.10-r2
libxml2 2.9.9-r2
libxml2:stretch 2.9.4+dfsg1-2.2+deb9u2
libxml2:edge 2.9.10-r3
libxml2:edge 2.9.10-r4
libxml2 2.9.7__7.el8
libxml2 2.9.7__8.el8
libxml2 2.9.7__5.el8
libxml2:buster 2.9.4+dfsg1-7+deb10u1
libxml2:buster 2.9.4+dfsg1-7+b3
libxml2:groovy 2.9.10+dfsg-5build1
libxml2:bionic 2.9.4+dfsg1-6.1ubuntu1
libxml2:bionic 2.9.4+dfsg1-6.1ubuntu1.3
libxml2.so 2.9.12.debug
libxml2.so 2.7.6
libxml2:3.12 2.9.10-r4
libxml2:3.10 2.9.9-r3
libxml2:3.11 2.9.10-r1
libxml2:3.11 2.9.10-r3
libxml2:3.11 2.9.10-r2
libxml2 2.9.9-r2
libxml2:stretch 2.9.4+dfsg1-2.2+deb9u2
libxml2:edge 2.9.10-r3
libxml2:edge 2.9.10-r4
libxml2 2.9.7__7.el8
libxml2 2.9.7__8.el8
libxml2 2.9.7__5.el8
libxml2:buster 2.9.4+dfsg1-7+deb10u1
libxml2:buster 2.9.4+dfsg1-7+b3
libxml2:groovy 2.9.10+dfsg-5build1
libxml2:bionic 2.9.4+dfsg1-6.1ubuntu1
libxml2:bionic 2.9.4+dfsg1-6.1ubuntu1.3

Related