Action not permitted
Modal body text goes here.
Modal Title
Modal Body
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python-libxml2-2.9.4-1.4 on GA media
Notes
Title of the patch
python-libxml2-2.9.4-1.4 on GA media
Description of the patch
These are all security issues fixed in the python-libxml2-2.9.4-1.4 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10228
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python-libxml2-2.9.4-1.4 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python-libxml2-2.9.4-1.4 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-10228", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10228-1.json", }, { category: "self", summary: "SUSE CVE CVE-2008-4225 page", url: "https://www.suse.com/security/cve/CVE-2008-4225/", }, { category: "self", summary: "SUSE CVE CVE-2008-4226 page", url: "https://www.suse.com/security/cve/CVE-2008-4226/", }, { category: "self", summary: "SUSE CVE CVE-2008-4409 page", url: "https://www.suse.com/security/cve/CVE-2008-4409/", }, { category: "self", summary: "SUSE CVE CVE-2012-5134 page", url: "https://www.suse.com/security/cve/CVE-2012-5134/", }, { category: "self", summary: "SUSE CVE CVE-2016-1762 page", url: "https://www.suse.com/security/cve/CVE-2016-1762/", }, { category: "self", summary: "SUSE CVE CVE-2016-1833 page", url: "https://www.suse.com/security/cve/CVE-2016-1833/", }, { category: "self", summary: "SUSE CVE CVE-2016-1834 page", url: "https://www.suse.com/security/cve/CVE-2016-1834/", }, { category: "self", summary: "SUSE CVE CVE-2016-1835 page", url: "https://www.suse.com/security/cve/CVE-2016-1835/", }, { category: "self", summary: "SUSE CVE CVE-2016-1836 page", url: "https://www.suse.com/security/cve/CVE-2016-1836/", }, { category: "self", summary: "SUSE CVE CVE-2016-1837 page", url: "https://www.suse.com/security/cve/CVE-2016-1837/", }, { category: "self", summary: "SUSE CVE CVE-2016-1838 page", url: "https://www.suse.com/security/cve/CVE-2016-1838/", }, { category: "self", summary: "SUSE CVE CVE-2016-1839 page", url: "https://www.suse.com/security/cve/CVE-2016-1839/", }, { category: "self", summary: "SUSE CVE CVE-2016-1840 page", url: "https://www.suse.com/security/cve/CVE-2016-1840/", }, { category: "self", summary: "SUSE CVE CVE-2016-3627 page", url: "https://www.suse.com/security/cve/CVE-2016-3627/", }, { category: "self", summary: "SUSE CVE CVE-2016-3705 page", url: "https://www.suse.com/security/cve/CVE-2016-3705/", }, { category: "self", summary: "SUSE CVE CVE-2016-4483 page", url: "https://www.suse.com/security/cve/CVE-2016-4483/", }, ], title: "python-libxml2-2.9.4-1.4 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:10228-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-libxml2-2.9.4-1.4.aarch64", product: { name: "python-libxml2-2.9.4-1.4.aarch64", product_id: "python-libxml2-2.9.4-1.4.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-libxml2-2.9.4-1.4.ppc64le", product: { name: "python-libxml2-2.9.4-1.4.ppc64le", product_id: "python-libxml2-2.9.4-1.4.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-libxml2-2.9.4-1.4.s390x", product: { name: "python-libxml2-2.9.4-1.4.s390x", product_id: "python-libxml2-2.9.4-1.4.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-libxml2-2.9.4-1.4.x86_64", product: { name: "python-libxml2-2.9.4-1.4.x86_64", product_id: "python-libxml2-2.9.4-1.4.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-libxml2-2.9.4-1.4.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", }, product_reference: "python-libxml2-2.9.4-1.4.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-libxml2-2.9.4-1.4.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", }, product_reference: "python-libxml2-2.9.4-1.4.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-libxml2-2.9.4-1.4.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", }, product_reference: "python-libxml2-2.9.4-1.4.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-libxml2-2.9.4-1.4.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", }, product_reference: "python-libxml2-2.9.4-1.4.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2008-4225", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2008-4225", }, ], notes: [ { category: "general", text: "Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (infinite loop) via a large XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2008-4225", url: "https://www.suse.com/security/cve/CVE-2008-4225", }, { category: "external", summary: "SUSE Bug 445677 for CVE-2008-4225", url: "https://bugzilla.suse.com/445677", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2008-4225", }, { cve: "CVE-2008-4226", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2008-4226", }, ], notes: [ { category: "general", text: "Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2008-4226", url: "https://www.suse.com/security/cve/CVE-2008-4226", }, { category: "external", summary: "SUSE Bug 441368 for CVE-2008-4226", url: "https://bugzilla.suse.com/441368", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2008-4226", }, { cve: "CVE-2008-4409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2008-4409", }, ], notes: [ { category: "general", text: "libxml2 2.7.0 and 2.7.1 does not properly handle \"predefined entities definitions\" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a certain XML document, a different vulnerability than CVE-2003-1564 and CVE-2008-3281.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2008-4409", url: "https://www.suse.com/security/cve/CVE-2008-4409", }, { category: "external", summary: "SUSE Bug 432486 for CVE-2008-4409", url: "https://bugzilla.suse.com/432486", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2008-4409", }, { cve: "CVE-2012-5134", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2012-5134", }, ], notes: [ { category: "general", text: "Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2012-5134", url: "https://www.suse.com/security/cve/CVE-2012-5134", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2012-5134", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 791234 for CVE-2012-5134", url: "https://bugzilla.suse.com/791234", }, { category: "external", summary: "SUSE Bug 793334 for CVE-2012-5134", url: "https://bugzilla.suse.com/793334", }, { category: "external", summary: "SUSE Bug 795039 for CVE-2012-5134", url: "https://bugzilla.suse.com/795039", }, { category: "external", summary: "SUSE Bug 804033 for CVE-2012-5134", url: "https://bugzilla.suse.com/804033", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2012-5134", }, { cve: "CVE-2016-1762", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1762", }, ], notes: [ { category: "general", text: "The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1762", url: "https://www.suse.com/security/cve/CVE-2016-1762", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1762", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981040 for CVE-2016-1762", url: "https://bugzilla.suse.com/981040", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-1762", }, { cve: "CVE-2016-1833", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1833", }, ], notes: [ { category: "general", text: "The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1833", url: "https://www.suse.com/security/cve/CVE-2016-1833", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1833", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981108 for CVE-2016-1833", url: "https://bugzilla.suse.com/981108", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1833", }, { cve: "CVE-2016-1834", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1834", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1834", url: "https://www.suse.com/security/cve/CVE-2016-1834", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1834", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981041 for CVE-2016-1834", url: "https://bugzilla.suse.com/981041", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-1834", }, { cve: "CVE-2016-1835", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1835", }, ], notes: [ { category: "general", text: "Use-after-free vulnerability in the xmlSAX2AttributeNs function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2 and OS X before 10.11.5, allows remote attackers to cause a denial of service via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1835", url: "https://www.suse.com/security/cve/CVE-2016-1835", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1835", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981109 for CVE-2016-1835", url: "https://bugzilla.suse.com/981109", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1835", }, { cve: "CVE-2016-1836", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1836", }, ], notes: [ { category: "general", text: "Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1836", url: "https://www.suse.com/security/cve/CVE-2016-1836", }, { category: "external", summary: "SUSE Bug 1174862 for CVE-2016-1836", url: "https://bugzilla.suse.com/1174862", }, { category: "external", summary: "SUSE Bug 981110 for CVE-2016-1836", url: "https://bugzilla.suse.com/981110", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1836", }, { cve: "CVE-2016-1837", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1837", }, ], notes: [ { category: "general", text: "Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1837", url: "https://www.suse.com/security/cve/CVE-2016-1837", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1837", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981111 for CVE-2016-1837", url: "https://bugzilla.suse.com/981111", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1837", }, { cve: "CVE-2016-1838", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1838", }, ], notes: [ { category: "general", text: "The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1838", url: "https://www.suse.com/security/cve/CVE-2016-1838", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1838", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981112 for CVE-2016-1838", url: "https://bugzilla.suse.com/981112", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1838", }, { cve: "CVE-2016-1839", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1839", }, ], notes: [ { category: "general", text: "The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1839", url: "https://www.suse.com/security/cve/CVE-2016-1839", }, { category: "external", summary: "SUSE Bug 1039069 for CVE-2016-1839", url: "https://bugzilla.suse.com/1039069", }, { category: "external", summary: "SUSE Bug 1039661 for CVE-2016-1839", url: "https://bugzilla.suse.com/1039661", }, { category: "external", summary: "SUSE Bug 1069433 for CVE-2016-1839", url: "https://bugzilla.suse.com/1069433", }, { category: "external", summary: "SUSE Bug 1069690 for CVE-2016-1839", url: "https://bugzilla.suse.com/1069690", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1839", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 963963 for CVE-2016-1839", url: "https://bugzilla.suse.com/963963", }, { category: "external", summary: "SUSE Bug 981114 for CVE-2016-1839", url: "https://bugzilla.suse.com/981114", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-1839", }, { cve: "CVE-2016-1840", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-1840", }, ], notes: [ { category: "general", text: "Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-1840", url: "https://www.suse.com/security/cve/CVE-2016-1840", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-1840", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 981115 for CVE-2016-1840", url: "https://bugzilla.suse.com/981115", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2016-1840", }, { cve: "CVE-2016-3627", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-3627", }, ], notes: [ { category: "general", text: "The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-3627", url: "https://www.suse.com/security/cve/CVE-2016-3627", }, { category: "external", summary: "SUSE Bug 1026099 for CVE-2016-3627", url: "https://bugzilla.suse.com/1026099", }, { category: "external", summary: "SUSE Bug 1026101 for CVE-2016-3627", url: "https://bugzilla.suse.com/1026101", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-3627", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 972335 for CVE-2016-3627", url: "https://bugzilla.suse.com/972335", }, { category: "external", summary: "SUSE Bug 975947 for CVE-2016-3627", url: "https://bugzilla.suse.com/975947", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2016-3627", }, { cve: "CVE-2016-3705", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-3705", }, ], notes: [ { category: "general", text: "The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via a crafted XML document containing a large number of nested entity references.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-3705", url: "https://www.suse.com/security/cve/CVE-2016-3705", }, { category: "external", summary: "SUSE Bug 1017497 for CVE-2016-3705", url: "https://bugzilla.suse.com/1017497", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-3705", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 975947 for CVE-2016-3705", url: "https://bugzilla.suse.com/975947", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "low", }, ], title: "CVE-2016-3705", }, { cve: "CVE-2016-4483", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-4483", }, ], notes: [ { category: "general", text: "The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization. NOTE: this vulnerability may be a duplicate of CVE-2016-3627.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-4483", url: "https://www.suse.com/security/cve/CVE-2016-4483", }, { category: "external", summary: "SUSE Bug 1026101 for CVE-2016-4483", url: "https://bugzilla.suse.com/1026101", }, { category: "external", summary: "SUSE Bug 1123919 for CVE-2016-4483", url: "https://bugzilla.suse.com/1123919", }, { category: "external", summary: "SUSE Bug 978395 for CVE-2016-4483", url: "https://bugzilla.suse.com/978395", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.aarch64", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.ppc64le", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.s390x", "openSUSE Tumbleweed:python-libxml2-2.9.4-1.4.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "low", }, ], title: "CVE-2016-4483", }, ], }
cve-2016-1833
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
Summary
The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:39.300Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=636", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758606", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=0bcd05c5cd83dec3406c8f68b769b1d610c72f76", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_MISC", ], url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=636", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758606", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=0bcd05c5cd83dec3406c8f68b769b1d610c72f76", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1833", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "https://bugs.chromium.org/p/project-zero/issues/detail?id=636", refsource: "MISC", url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=636", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=758606", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=758606", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=0bcd05c5cd83dec3406c8f68b769b1d610c72f76", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=0bcd05c5cd83dec3406c8f68b769b1d610c72f76", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1833", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:39.300Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-3627
Vulnerability from cvelistv5
Published
2016-05-17 14:00
Modified
2024-08-06 00:03
Severity ?
EPSS score ?
Summary
The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T00:03:34.258Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2016/May/10", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "openSUSE-SU-2016:1446", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html", }, { name: "openSUSE-SU-2016:1298", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "[oss-security] 20160321 CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/03/21/2", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035335", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035335", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "84992", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/84992", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "[oss-security] 20160321 Re: CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/03/21/3", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-21T00:00:00", descriptions: [ { lang: "en", value: "The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2016/May/10", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "openSUSE-SU-2016:1446", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html", }, { name: "openSUSE-SU-2016:1298", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "[oss-security] 20160321 CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/03/21/2", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035335", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035335", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "84992", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/84992", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "[oss-security] 20160321 Re: CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/03/21/3", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2016-3627", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)", refsource: "FULLDISC", url: "http://seclists.org/fulldisclosure/2016/May/10", }, { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", refsource: "CONFIRM", url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "openSUSE-SU-2016:1446", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html", }, { name: "openSUSE-SU-2016:1298", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "[oss-security] 20160321 CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/03/21/2", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035335", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035335", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "84992", refsource: "BID", url: "http://www.securityfocus.com/bid/84992", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "[oss-security] 20160321 Re: CVE request: Stack exhaustion in libxml2 parsing xml files in recover mode", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/03/21/3", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2016-3627", datePublished: "2016-05-17T14:00:00", dateReserved: "2016-03-21T00:00:00", dateUpdated: "2024-08-06T00:03:34.258Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1762
Vulnerability from cvelistv5
Published
2016-03-24 01:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:38.984Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206168", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "APPLE-SA-2016-03-21-6", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035353", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035353", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759671", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206171", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206166", }, { name: "85059", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/85059", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-03-21T00:00:00", descriptions: [ { lang: "en", value: "The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "APPLE-SA-2016-03-21-5", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206167", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206168", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "APPLE-SA-2016-03-21-6", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035353", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035353", }, { name: "APPLE-SA-2016-03-21-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759671", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "APPLE-SA-2016-03-21-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206171", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "APPLE-SA-2016-03-21-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206169", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206166", }, { name: "85059", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/85059", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1762", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "APPLE-SA-2016-03-21-5", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html", }, { name: "https://support.apple.com/HT206167", refsource: "CONFIRM", url: "https://support.apple.com/HT206167", }, { name: "https://support.apple.com/HT206168", refsource: "CONFIRM", url: "https://support.apple.com/HT206168", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "APPLE-SA-2016-03-21-6", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00005.html", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "1035353", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035353", }, { name: "APPLE-SA-2016-03-21-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00000.html", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=759671", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=759671", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "APPLE-SA-2016-03-21-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00001.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=a7a94612aa3b16779e2c74e1fa353b5d9786c602", }, { name: "https://support.apple.com/HT206171", refsource: "CONFIRM", url: "https://support.apple.com/HT206171", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "APPLE-SA-2016-03-21-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Mar/msg00002.html", }, { name: "https://support.apple.com/HT206169", refsource: "CONFIRM", url: "https://support.apple.com/HT206169", }, { name: "https://support.apple.com/HT206166", refsource: "CONFIRM", url: "https://support.apple.com/HT206166", }, { name: "85059", refsource: "BID", url: "http://www.securityfocus.com/bid/85059", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1762", datePublished: "2016-03-24T01:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:38.984Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1839
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:39.919Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758605", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a820dbeac29d330bae4be05d9ecd939ad6b4aa33", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "1038623", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1038623", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758605", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=a820dbeac29d330bae4be05d9ecd939ad6b4aa33", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "1038623", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1038623", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1839", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=758605", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=758605", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=a820dbeac29d330bae4be05d9ecd939ad6b4aa33", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=a820dbeac29d330bae4be05d9ecd939ad6b4aa33", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "1038623", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1038623", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1839", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:39.919Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1837
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:40.024Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=11ed4a7a90d5ce156a18980a4ad4e53e77384852", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=760263", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=11ed4a7a90d5ce156a18980a4ad4e53e77384852", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=760263", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1837", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=11ed4a7a90d5ce156a18980a4ad4e53e77384852", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=11ed4a7a90d5ce156a18980a4ad4e53e77384852", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=760263", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=760263", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1837", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:40.024Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2012-5134
Vulnerability from cvelistv5
Published
2012-11-28 01:00
Modified
2024-08-06 20:58
Severity ?
EPSS score ?
Summary
Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T20:58:02.682Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=880466", }, { name: "APPLE-SA-2013-10-22-8", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html", }, { name: "SUSE-SU-2013:1627", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html", }, { name: "openSUSE-SU-2012:1637", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html", }, { name: "RHSA-2013:0217", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2013-0217.html", }, { name: "USN-1656-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-1656-1", }, { name: "DSA-2580", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2012/dsa-2580", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT6001", }, { name: "google-libxml-buffer-underflow(80294)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/80294", }, { name: "1027815", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id?1027815", }, { name: "54886", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/54886", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT5934", }, { name: "openSUSE-SU-2013:0178", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html", }, { name: "RHSA-2012:1512", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2012-1512.html", }, { name: "55568", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/55568", }, { name: "56684", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/56684", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d", }, { name: "MDVSA-2013:056", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2013:056", }, { name: "51448", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/51448", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://code.google.com/p/chromium/issues/detail?id=158249", }, { name: "APPLE-SA-2013-09-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2012-11-26T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-08-28T12:57:01", orgId: "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", shortName: "Chrome", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=880466", }, { name: "APPLE-SA-2013-10-22-8", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html", }, { name: "SUSE-SU-2013:1627", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html", }, { name: "openSUSE-SU-2012:1637", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html", }, { name: "RHSA-2013:0217", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2013-0217.html", }, { name: "USN-1656-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-1656-1", }, { name: "DSA-2580", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2012/dsa-2580", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT6001", }, { name: "google-libxml-buffer-underflow(80294)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/80294", }, { name: "1027815", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id?1027815", }, { name: "54886", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/54886", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT5934", }, { name: "openSUSE-SU-2013:0178", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html", }, { name: "RHSA-2012:1512", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2012-1512.html", }, { name: "55568", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/55568", }, { name: "56684", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/56684", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d", }, { name: "MDVSA-2013:056", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2013:056", }, { name: "51448", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/51448", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://code.google.com/p/chromium/issues/detail?id=158249", }, { name: "APPLE-SA-2013-09-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@google.com", ID: "CVE-2012-5134", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://bugzilla.redhat.com/show_bug.cgi?id=880466", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=880466", }, { name: "APPLE-SA-2013-10-22-8", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html", }, { name: "SUSE-SU-2013:1627", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html", }, { name: "openSUSE-SU-2012:1637", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html", }, { name: "http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html", refsource: "CONFIRM", url: "http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html", }, { name: "RHSA-2013:0217", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2013-0217.html", }, { name: "USN-1656-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-1656-1", }, { name: "DSA-2580", refsource: "DEBIAN", url: "http://www.debian.org/security/2012/dsa-2580", }, { name: "http://support.apple.com/kb/HT6001", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT6001", }, { name: "google-libxml-buffer-underflow(80294)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/80294", }, { name: "1027815", refsource: "SECTRACK", url: "http://www.securitytracker.com/id?1027815", }, { name: "54886", refsource: "SECUNIA", url: "http://secunia.com/advisories/54886", }, { name: "http://support.apple.com/kb/HT5934", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT5934", }, { name: "openSUSE-SU-2013:0178", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html", }, { name: "RHSA-2012:1512", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2012-1512.html", }, { name: "55568", refsource: "SECUNIA", url: "http://secunia.com/advisories/55568", }, { name: "56684", refsource: "BID", url: "http://www.securityfocus.com/bid/56684", }, { name: "http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d", refsource: "CONFIRM", url: "http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d", }, { name: "MDVSA-2013:056", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2013:056", }, { name: "51448", refsource: "SECUNIA", url: "http://secunia.com/advisories/51448", }, { name: "https://code.google.com/p/chromium/issues/detail?id=158249", refsource: "CONFIRM", url: "https://code.google.com/p/chromium/issues/detail?id=158249", }, { name: "APPLE-SA-2013-09-18-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "ebfee0ef-53dd-4cf3-9e2a-08a5bd7a7e28", assignerShortName: "Chrome", cveId: "CVE-2012-5134", datePublished: "2012-11-28T01:00:00", dateReserved: "2012-09-24T00:00:00", dateUpdated: "2024-08-06T20:58:02.682Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1838
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:40.042Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758588", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=db07dd613e461df93dde7902c6505629bf0734e9", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=639", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=758588", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=db07dd613e461df93dde7902c6505629bf0734e9", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_MISC", ], url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=639", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1838", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=758588", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=758588", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=db07dd613e461df93dde7902c6505629bf0734e9", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=db07dd613e461df93dde7902c6505629bf0734e9", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://bugs.chromium.org/p/project-zero/issues/detail?id=639", refsource: "MISC", url: "https://bugs.chromium.org/p/project-zero/issues/detail?id=639", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1838", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:40.042Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2008-4225
Vulnerability from cvelistv5
Published
2008-11-25 23:00
Modified
2024-08-07 10:08
Severity ?
EPSS score ?
Summary
Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (infinite loop) via a large XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T10:08:35.001Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "32766", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32766", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3639", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32773", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32773", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { name: "FEDORA-2008-9773", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "32764", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32764", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:10025", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10025", }, { name: "33746", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33746", }, { name: "1021239", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://securitytracker.com/id?1021239", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/34247", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "49992", tags: [ "vdb-entry", "x_refsource_OSVDB", "x_transferred", ], url: "http://www.osvdb.org/49992", }, { name: "36173", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "251406", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", tags: [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred", ], url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32802", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/35379", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32974", }, { name: "oval:org.mitre.oval:def:6415", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6415", }, { name: "33792", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33792", }, { name: "36235", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/36235", }, { name: "32762", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32762", }, { name: "265329", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33417", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=470480", }, { name: "MDVSA-2008:231", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { name: "32331", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/32331", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "32811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32811", }, { name: "ADV-2008-3176", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "oval:org.mitre.oval:def:6234", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6234", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2008-11-17T00:00:00", descriptions: [ { lang: "en", value: "Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (infinite loop) via a large XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-28T12:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "32766", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32766", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3639", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32773", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32773", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { name: "FEDORA-2008-9773", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "32764", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32764", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:10025", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10025", }, { name: "33746", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33746", }, { name: "1021239", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://securitytracker.com/id?1021239", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/34247", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "49992", tags: [ "vdb-entry", "x_refsource_OSVDB", ], url: "http://www.osvdb.org/49992", }, { name: "36173", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "251406", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", tags: [ "vendor-advisory", "x_refsource_SLACKWARE", ], url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32802", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/35379", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32974", }, { name: "oval:org.mitre.oval:def:6415", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6415", }, { name: "33792", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33792", }, { name: "36235", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/36235", }, { name: "32762", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32762", }, { name: "265329", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33417", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=470480", }, { name: "MDVSA-2008:231", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { name: "32331", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/32331", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "32811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32811", }, { name: "ADV-2008-3176", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "oval:org.mitre.oval:def:6234", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6234", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2008-4225", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (infinite loop) via a large XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "32766", refsource: "SECUNIA", url: "http://secunia.com/advisories/32766", }, { name: "http://support.apple.com/kb/HT3639", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3639", }, { name: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", refsource: "CONFIRM", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32773", refsource: "SECUNIA", url: "http://secunia.com/advisories/32773", }, { name: "ADV-2009-1621", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1621", }, { name: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", refsource: "CONFIRM", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { name: "FEDORA-2008-9773", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", refsource: "SECUNIA", url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "32764", refsource: "SECUNIA", url: "http://secunia.com/advisories/32764", }, { name: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", refsource: "CONFIRM", url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:10025", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10025", }, { name: "33746", refsource: "SECUNIA", url: "http://secunia.com/advisories/33746", }, { name: "1021239", refsource: "SECTRACK", url: "http://securitytracker.com/id?1021239", }, { name: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", refsource: "CONFIRM", url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", refsource: "SECUNIA", url: "http://secunia.com/advisories/34247", }, { name: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", refsource: "CONFIRM", url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "49992", refsource: "OSVDB", url: "http://www.osvdb.org/49992", }, { name: "36173", refsource: "SECUNIA", url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "251406", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", refsource: "GENTOO", url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", refsource: "CONFIRM", url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", refsource: "SLACKWARE", url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { name: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", refsource: "CONFIRM", url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", refsource: "DEBIAN", url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", refsource: "SECUNIA", url: "http://secunia.com/advisories/32802", }, { name: "35379", refsource: "SECUNIA", url: "http://secunia.com/advisories/35379", }, { name: "32974", refsource: "SECUNIA", url: "http://secunia.com/advisories/32974", }, { name: "oval:org.mitre.oval:def:6415", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6415", }, { name: "33792", refsource: "SECUNIA", url: "http://secunia.com/advisories/33792", }, { name: "36235", refsource: "SECUNIA", url: "http://secunia.com/advisories/36235", }, { name: "32762", refsource: "SECUNIA", url: "http://secunia.com/advisories/32762", }, { name: "265329", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", refsource: "SECUNIA", url: "http://secunia.com/advisories/33417", }, { name: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", refsource: "CONFIRM", url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=470480", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=470480", }, { name: "MDVSA-2008:231", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { name: "32331", refsource: "BID", url: "http://www.securityfocus.com/bid/32331", }, { name: "http://support.apple.com/kb/HT3613", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "32811", refsource: "SECUNIA", url: "http://secunia.com/advisories/32811", }, { name: "ADV-2008-3176", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "oval:org.mitre.oval:def:6234", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6234", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2008-4225", datePublished: "2008-11-25T23:00:00", dateReserved: "2008-09-24T00:00:00", dateUpdated: "2024-08-07T10:08:35.001Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1835
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Use-after-free vulnerability in the xmlSAX2AttributeNs function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2 and OS X before 10.11.5, allows remote attackers to cause a denial of service via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:39.633Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=38eae571111db3b43ffdeb05487c9f60551906fb", }, { name: "90696", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90696", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759020", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "Use-after-free vulnerability in the xmlSAX2AttributeNs function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2 and OS X before 10.11.5, allows remote attackers to cause a denial of service via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=38eae571111db3b43ffdeb05487c9f60551906fb", }, { name: "90696", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90696", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759020", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1835", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Use-after-free vulnerability in the xmlSAX2AttributeNs function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2 and OS X before 10.11.5, allows remote attackers to cause a denial of service via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=38eae571111db3b43ffdeb05487c9f60551906fb", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=38eae571111db3b43ffdeb05487c9f60551906fb", }, { name: "90696", refsource: "BID", url: "http://www.securityfocus.com/bid/90696", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=759020", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=759020", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1835", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:39.633Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1834
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:39.960Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=8fbbf5513d609c1770b391b99e33314cd0742704", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=763071", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=8fbbf5513d609c1770b391b99e33314cd0742704", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=763071", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1834", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://git.gnome.org/browse/libxml2/commit/?id=8fbbf5513d609c1770b391b99e33314cd0742704", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=8fbbf5513d609c1770b391b99e33314cd0742704", }, { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=763071", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=763071", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1834", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:39.960Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1836
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:39.898Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "APPLE-SA-2016-07-18-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=45752d2c334b50016666d8f0ec3691e2d680f0a0", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206901", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "APPLE-SA-2016-07-18-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206905", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206903", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206902", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759398", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206904", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206899", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "APPLE-SA-2016-07-18-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=45752d2c334b50016666d8f0ec3691e2d680f0a0", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206901", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "APPLE-SA-2016-07-18-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206905", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206903", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206902", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=759398", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206904", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206899", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1836", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "APPLE-SA-2016-07-18-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00003.html", }, { name: "APPLE-SA-2016-07-18-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00002.html", }, { name: "APPLE-SA-2016-07-18-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=45752d2c334b50016666d8f0ec3691e2d680f0a0", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=45752d2c334b50016666d8f0ec3691e2d680f0a0", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "https://support.apple.com/HT206901", refsource: "CONFIRM", url: "https://support.apple.com/HT206901", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "APPLE-SA-2016-07-18-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00000.html", }, { name: "APPLE-SA-2016-07-18-6", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/Jul/msg00005.html", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "https://support.apple.com/HT206905", refsource: "CONFIRM", url: "https://support.apple.com/HT206905", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://support.apple.com/HT206903", refsource: "CONFIRM", url: "https://support.apple.com/HT206903", }, { name: "https://support.apple.com/HT206902", refsource: "CONFIRM", url: "https://support.apple.com/HT206902", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=759398", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=759398", }, { name: "https://support.apple.com/HT206904", refsource: "CONFIRM", url: "https://support.apple.com/HT206904", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, { name: "https://support.apple.com/HT206899", refsource: "CONFIRM", url: "https://support.apple.com/HT206899", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1836", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:39.898Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2008-4409
Vulnerability from cvelistv5
Published
2008-10-03 17:18
Modified
2024-08-07 10:17
Severity ?
EPSS score ?
Summary
libxml2 2.7.0 and 2.7.1 does not properly handle "predefined entities definitions" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a certain XML document, a different vulnerability than CVE-2003-1564 and CVE-2008-3281.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T10:17:09.832Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3639", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-8575", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00125.html", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "[oss-security] 20081002 libxml2 \"ampproblem\" DoS", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://openwall.com/lists/oss-security/2008/10/02/4", }, { name: "32130", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32130", }, { name: "MDVSA-2008:212", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:212", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/35379", }, { name: "31555", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/31555", }, { name: "FEDORA-2008-8582", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00130.html", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32974", }, { name: "32175", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32175", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3613", }, { name: "libxml2-xml-file-dos(45633)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/45633", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://bugzilla.gnome.org/show_bug.cgi?id=554660", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2008-10-02T00:00:00", descriptions: [ { lang: "en", value: "libxml2 2.7.0 and 2.7.1 does not properly handle \"predefined entities definitions\" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a certain XML document, a different vulnerability than CVE-2003-1564 and CVE-2008-3281.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-08-07T12:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3639", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-8575", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00125.html", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "[oss-security] 20081002 libxml2 \"ampproblem\" DoS", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://openwall.com/lists/oss-security/2008/10/02/4", }, { name: "32130", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32130", }, { name: "MDVSA-2008:212", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:212", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/35379", }, { name: "31555", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/31555", }, { name: "FEDORA-2008-8582", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00130.html", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32974", }, { name: "32175", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32175", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3613", }, { name: "libxml2-xml-file-dos(45633)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/45633", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://bugzilla.gnome.org/show_bug.cgi?id=554660", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2008-4409", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "libxml2 2.7.0 and 2.7.1 does not properly handle \"predefined entities definitions\" in entities, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash), as demonstrated by use of xmllint on a certain XML document, a different vulnerability than CVE-2003-1564 and CVE-2008-3281.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://support.apple.com/kb/HT3639", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3639", }, { name: "ADV-2009-1621", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1621", }, { name: "APPLE-SA-2009-06-08-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-8575", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00125.html", }, { name: "ADV-2009-1522", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "GLSA-200812-06", refsource: "GENTOO", url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "[oss-security] 20081002 libxml2 \"ampproblem\" DoS", refsource: "MLIST", url: "http://openwall.com/lists/oss-security/2008/10/02/4", }, { name: "32130", refsource: "SECUNIA", url: "http://secunia.com/advisories/32130", }, { name: "MDVSA-2008:212", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:212", }, { name: "35379", refsource: "SECUNIA", url: "http://secunia.com/advisories/35379", }, { name: "31555", refsource: "BID", url: "http://www.securityfocus.com/bid/31555", }, { name: "FEDORA-2008-8582", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00130.html", }, { name: "32974", refsource: "SECUNIA", url: "http://secunia.com/advisories/32974", }, { name: "32175", refsource: "SECUNIA", url: "http://secunia.com/advisories/32175", }, { name: "http://support.apple.com/kb/HT3613", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3613", }, { name: "libxml2-xml-file-dos(45633)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/45633", }, { name: "http://bugzilla.gnome.org/show_bug.cgi?id=554660", refsource: "CONFIRM", url: "http://bugzilla.gnome.org/show_bug.cgi?id=554660", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2008-4409", datePublished: "2008-10-03T17:18:00", dateReserved: "2008-10-03T00:00:00", dateUpdated: "2024-08-07T10:17:09.832Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-3705
Vulnerability from cvelistv5
Published
2016-05-17 14:00
Modified
2024-08-06 00:03
Severity ?
EPSS score ?
Summary
The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via a crafted XML document containing a large number of nested entity references.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T00:03:34.486Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)", tags: [ "mailing-list", "x_refsource_FULLDISC", "x_transferred", ], url: "http://seclists.org/fulldisclosure/2016/May/10", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "openSUSE-SU-2016:1446", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html", }, { name: "openSUSE-SU-2016:1298", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=765207", }, { name: "89854", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/89854", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-03T00:00:00", descriptions: [ { lang: "en", value: "The (1) xmlParserEntityCheck and (2) xmlParseAttValueComplex functions in parser.c in libxml2 2.9.3 do not properly keep track of the recursion depth, which allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via a crafted XML document containing a large number of nested entity references.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "20160503 CVE-2016-3627 CVE-2016-3705: libxml2: stack overflow in xml validator (parser)", tags: [ "mailing-list", "x_refsource_FULLDISC", ], url: "http://seclists.org/fulldisclosure/2016/May/10", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05157239", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "openSUSE-SU-2016:1446", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00127.html", }, { name: "openSUSE-SU-2016:1298", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-updates/2016-05/msg00055.html", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=765207", }, { name: "89854", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/89854", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2016-3705", datePublished: "2016-05-17T14:00:00", dateReserved: "2016-03-30T00:00:00", dateUpdated: "2024-08-06T00:03:34.486Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2008-4226
Vulnerability from cvelistv5
Published
2008-11-25 23:00
Modified
2024-08-07 10:08
Severity ?
EPSS score ?
Summary
Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T10:08:34.940Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "32766", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32766", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3639", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32326", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/32326", }, { name: "32773", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32773", }, { name: "oval:org.mitre.oval:def:6360", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6360", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=470466", }, { name: "oval:org.mitre.oval:def:6219", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6219", }, { name: "FEDORA-2008-9773", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "49993", tags: [ "vdb-entry", "x_refsource_OSVDB", "x_transferred", ], url: "http://www.osvdb.org/49993", }, { name: "32764", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32764", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:9888", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9888", }, { name: "33746", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33746", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/34247", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "36173", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "HPSBMA02492", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "251406", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "32872", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32872", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", tags: [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred", ], url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32802", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/35379", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32974", }, { name: "33792", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33792", }, { name: "36235", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/36235", }, { name: "32762", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32762", }, { name: "265329", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/33417", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", tags: [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { name: "MDVSA-2008:231", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "SUSE-SR:2008:026", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html", }, { name: "32811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/32811", }, { name: "SSRT100079", tags: [ "vendor-advisory", "x_refsource_HP", "x_transferred", ], url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "ADV-2008-3176", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "1021238", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://securitytracker.com/id?1021238", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2008-11-17T00:00:00", descriptions: [ { lang: "en", value: "Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-09-28T12:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "32766", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32766", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3639", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32326", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/32326", }, { name: "32773", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32773", }, { name: "oval:org.mitre.oval:def:6360", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6360", }, { name: "ADV-2009-1621", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1621", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=470466", }, { name: "oval:org.mitre.oval:def:6219", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6219", }, { name: "FEDORA-2008-9773", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "49993", tags: [ "vdb-entry", "x_refsource_OSVDB", ], url: "http://www.osvdb.org/49993", }, { name: "32764", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32764", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:9888", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9888", }, { name: "33746", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33746", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/34247", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "36173", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "HPSBMA02492", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "251406", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "32872", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32872", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", tags: [ "vendor-advisory", "x_refsource_SLACKWARE", ], url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32802", }, { name: "35379", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/35379", }, { name: "32974", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32974", }, { name: "33792", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33792", }, { name: "36235", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/36235", }, { name: "32762", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32762", }, { name: "265329", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/33417", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", tags: [ "vendor-advisory", "x_refsource_SUNALERT", ], url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { name: "MDVSA-2008:231", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "SUSE-SR:2008:026", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html", }, { name: "32811", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/32811", }, { name: "SSRT100079", tags: [ "vendor-advisory", "x_refsource_HP", ], url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "ADV-2008-3176", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "1021238", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://securitytracker.com/id?1021238", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2008-4226", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "32766", refsource: "SECUNIA", url: "http://secunia.com/advisories/32766", }, { name: "http://support.apple.com/kb/HT3639", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3639", }, { name: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", refsource: "CONFIRM", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1", }, { name: "32326", refsource: "BID", url: "http://www.securityfocus.com/bid/32326", }, { name: "32773", refsource: "SECUNIA", url: "http://secunia.com/advisories/32773", }, { name: "oval:org.mitre.oval:def:6360", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6360", }, { name: "ADV-2009-1621", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1621", }, { name: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", refsource: "CONFIRM", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=470466", refsource: "CONFIRM", url: "https://bugzilla.redhat.com/show_bug.cgi?id=470466", }, { name: "oval:org.mitre.oval:def:6219", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6219", }, { name: "FEDORA-2008-9773", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00513.html", }, { name: "32807", refsource: "SECUNIA", url: "http://secunia.com/advisories/32807", }, { name: "APPLE-SA-2009-06-08-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html", }, { name: "FEDORA-2008-9729", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00472.html", }, { name: "49993", refsource: "OSVDB", url: "http://www.osvdb.org/49993", }, { name: "32764", refsource: "SECUNIA", url: "http://secunia.com/advisories/32764", }, { name: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", refsource: "CONFIRM", url: "http://www.vmware.com/security/advisories/VMSA-2009-0001.html", }, { name: "USN-673-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/usn-673-1", }, { name: "ADV-2009-0301", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0301", }, { name: "oval:org.mitre.oval:def:9888", refsource: "OVAL", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9888", }, { name: "33746", refsource: "SECUNIA", url: "http://secunia.com/advisories/33746", }, { name: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", refsource: "CONFIRM", url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9", }, { name: "ADV-2009-0034", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0034", }, { name: "34247", refsource: "SECUNIA", url: "http://secunia.com/advisories/34247", }, { name: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", refsource: "CONFIRM", url: "http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm", }, { name: "36173", refsource: "SECUNIA", url: "http://secunia.com/advisories/36173", }, { name: "ADV-2009-1522", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/1522", }, { name: "HPSBMA02492", refsource: "HP", url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "251406", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-26-251406-1", }, { name: "GLSA-200812-06", refsource: "GENTOO", url: "http://security.gentoo.org/glsa/glsa-200812-06.xml", }, { name: "APPLE-SA-2009-06-17-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html", }, { name: "32872", refsource: "SECUNIA", url: "http://secunia.com/advisories/32872", }, { name: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", refsource: "CONFIRM", url: "http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm", }, { name: "SSA:2008-324-01", refsource: "SLACKWARE", url: "http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473974", }, { name: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", refsource: "CONFIRM", url: "http://wiki.rpath.com/Advisories:rPSA-2008-0325", }, { name: "DSA-1666", refsource: "DEBIAN", url: "http://www.debian.org/security/2008/dsa-1666", }, { name: "32802", refsource: "SECUNIA", url: "http://secunia.com/advisories/32802", }, { name: "35379", refsource: "SECUNIA", url: "http://secunia.com/advisories/35379", }, { name: "32974", refsource: "SECUNIA", url: "http://secunia.com/advisories/32974", }, { name: "33792", refsource: "SECUNIA", url: "http://secunia.com/advisories/33792", }, { name: "36235", refsource: "SECUNIA", url: "http://secunia.com/advisories/36235", }, { name: "32762", refsource: "SECUNIA", url: "http://secunia.com/advisories/32762", }, { name: "265329", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1", }, { name: "RHSA-2008:0988", refsource: "REDHAT", url: "http://www.redhat.com/support/errata/RHSA-2008-0988.html", }, { name: "33417", refsource: "SECUNIA", url: "http://secunia.com/advisories/33417", }, { name: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", refsource: "CONFIRM", url: "https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10", }, { name: "261688", refsource: "SUNALERT", url: "http://sunsolve.sun.com/search/document.do?assetkey=1-66-261688-1", }, { name: "MDVSA-2008:231", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:231", }, { name: "http://support.apple.com/kb/HT3613", refsource: "CONFIRM", url: "http://support.apple.com/kb/HT3613", }, { name: "ADV-2009-0323", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2009/0323", }, { name: "SUSE-SR:2008:026", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00002.html", }, { name: "32811", refsource: "SECUNIA", url: "http://secunia.com/advisories/32811", }, { name: "SSRT100079", refsource: "HP", url: "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444", }, { name: "ADV-2008-3176", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2008/3176", }, { name: "1021238", refsource: "SECTRACK", url: "http://securitytracker.com/id?1021238", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2008-4226", datePublished: "2008-11-25T23:00:00", dateReserved: "2008-09-24T00:00:00", dateUpdated: "2024-08-07T10:08:34.940Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-1840
Vulnerability from cvelistv5
Published
2016-05-20 10:00
Modified
2024-08-05 23:10
Severity ?
EPSS score ?
Summary
Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T23:10:40.187Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=757711", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206564", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=cbb271655cadeb8dbb258a64701d9a3a0c4835b4", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-16T00:00:00", descriptions: [ { lang: "en", value: "Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2018-01-04T19:57:01", orgId: "286789f9-fbc2-4510-9f9a-43facdede74c", shortName: "apple", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206567", }, { name: "90691", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "https://www.debian.org/security/2016/dsa-3593", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://bugzilla.gnome.org/show_bug.cgi?id=757711", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", tags: [ "vendor-advisory", "x_refsource_UBUNTU", ], url: "http://www.ubuntu.com/usn/USN-2994-1", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206566", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206564", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=cbb271655cadeb8dbb258a64701d9a3a0c4835b4", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "product-security@apple.com", ID: "CVE-2016-1840", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10170", }, { name: "RHSA-2016:1292", refsource: "REDHAT", url: "https://access.redhat.com/errata/RHSA-2016:1292", }, { name: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html", }, { name: "https://support.apple.com/HT206567", refsource: "CONFIRM", url: "https://support.apple.com/HT206567", }, { name: "90691", refsource: "BID", url: "http://www.securityfocus.com/bid/90691", }, { name: "DSA-3593", refsource: "DEBIAN", url: "https://www.debian.org/security/2016/dsa-3593", }, { name: "https://bugzilla.gnome.org/show_bug.cgi?id=757711", refsource: "CONFIRM", url: "https://bugzilla.gnome.org/show_bug.cgi?id=757711", }, { name: "http://xmlsoft.org/news.html", refsource: "CONFIRM", url: "http://xmlsoft.org/news.html", }, { name: "APPLE-SA-2016-05-16-4", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00004.html", }, { name: "USN-2994-1", refsource: "UBUNTU", url: "http://www.ubuntu.com/usn/USN-2994-1", }, { name: "https://support.apple.com/HT206566", refsource: "CONFIRM", url: "https://support.apple.com/HT206566", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "APPLE-SA-2016-05-16-3", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00003.html", }, { name: "https://support.apple.com/HT206564", refsource: "CONFIRM", url: "https://support.apple.com/HT206564", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=cbb271655cadeb8dbb258a64701d9a3a0c4835b4", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=cbb271655cadeb8dbb258a64701d9a3a0c4835b4", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1035890", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1035890", }, { name: "APPLE-SA-2016-05-16-2", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00002.html", }, { name: "https://support.apple.com/HT206568", refsource: "CONFIRM", url: "https://support.apple.com/HT206568", }, { name: "APPLE-SA-2016-05-16-1", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce/2016/May/msg00001.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "286789f9-fbc2-4510-9f9a-43facdede74c", assignerShortName: "apple", cveId: "CVE-2016-1840", datePublished: "2016-05-20T10:00:00", dateReserved: "2016-01-13T00:00:00", dateUpdated: "2024-08-05T23:10:40.187Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-4483
Vulnerability from cvelistv5
Published
2017-04-11 16:00
Modified
2024-08-06 00:32
Severity ?
EPSS score ?
Summary
The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization. NOTE: this vulnerability may be a duplicate of CVE-2016-3627.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T00:32:25.437Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "[oss-security] 20160503 CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/05/03/8", }, { name: "[oss-security] 20160504 Re: CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/05/04/7", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=c97750d11bb8b6f3303e7131fe526a61ac65bcfd", }, { name: "[oss-security] 20160607 Re: Please reject duplicate CVE for libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/06/07/5", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "90013", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/90013", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2016/dsa-3593", }, { name: "[oss-security] 20160607 Please reject duplicate CVE for libxml2", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2016/06/07/4", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1036348", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id/1036348", }, { name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", }, { name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2016-05-03T00:00:00", descriptions: [ { lang: "en", value: "The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization. NOTE: this vulnerability may be a duplicate of CVE-2016-3627.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2021-06-29T14:07:35", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "[oss-security] 20160503 CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/05/03/8", }, { name: "[oss-security] 20160504 Re: CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/05/04/7", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://git.gnome.org/browse/libxml2/commit/?id=c97750d11bb8b6f3303e7131fe526a61ac65bcfd", }, { name: "[oss-security] 20160607 Re: Please reject duplicate CVE for libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/06/07/5", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "90013", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/90013", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://www.tenable.com/security/tns-2016-18", }, { name: "DSA-3593", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2016/dsa-3593", }, { name: "[oss-security] 20160607 Please reject duplicate CVE for libxml2", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2016/06/07/4", }, { name: "RHSA-2016:2957", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1036348", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id/1036348", }, { name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E", }, { name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2016-4483", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The xmlBufAttrSerializeTxtContent function in xmlsave.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a non-UTF-8 attribute value, related to serialization. NOTE: this vulnerability may be a duplicate of CVE-2016-3627.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "[oss-security] 20160503 CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/05/03/8", }, { name: "[oss-security] 20160504 Re: CVE request: out-of-bounds read parsing an XML in libxml2 using recover mode", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/05/04/7", }, { name: "https://git.gnome.org/browse/libxml2/commit/?id=c97750d11bb8b6f3303e7131fe526a61ac65bcfd", refsource: "CONFIRM", url: "https://git.gnome.org/browse/libxml2/commit/?id=c97750d11bb8b6f3303e7131fe526a61ac65bcfd", }, { name: "[oss-security] 20160607 Re: Please reject duplicate CVE for libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/06/07/5", }, { name: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", refsource: "CONFIRM", url: "http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html", }, { name: "90013", refsource: "BID", url: "http://www.securityfocus.com/bid/90013", }, { name: "https://www.tenable.com/security/tns-2016-18", refsource: "CONFIRM", url: "https://www.tenable.com/security/tns-2016-18", }, { name: "DSA-3593", refsource: "DEBIAN", url: "http://www.debian.org/security/2016/dsa-3593", }, { name: "[oss-security] 20160607 Please reject duplicate CVE for libxml2", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2016/06/07/4", }, { name: "RHSA-2016:2957", refsource: "REDHAT", url: "http://rhn.redhat.com/errata/RHSA-2016-2957.html", }, { name: "GLSA-201701-37", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/201701-37", }, { name: "1036348", refsource: "SECTRACK", url: "http://www.securitytracker.com/id/1036348", }, { name: "[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", refsource: "MLIST", url: "https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E", }, { name: "[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2016-4483", datePublished: "2017-04-11T16:00:00", dateReserved: "2016-05-04T00:00:00", dateUpdated: "2024-08-06T00:32:25.437Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.