CVE-2015-1819

Опубликовано: 14 авг. 2015

Источник: debian

EPSS Низкий

Описание

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libxml2	fixed	2.9.2+really2.9.1+dfsg1-0.1		package

Примечания

https://gitlab.gnome.org/GNOME/libxml2/-/commit/213f1fe0d76d30eaed6e5853057defc43e6df2c9
Concerns by Florian Weimer: https://bugzilla.gnome.org/show_bug.cgi?id=748278

EPSS

Процентиль: 85%

0.02464

Низкий

Связанные уязвимости

CVE-2015-1819

ubuntu

около 10 лет назад

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

CVE-2015-1819

redhat

больше 10 лет назад

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

CVE-2015-1819

nvd

около 10 лет назад

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

GHSA-q7wx-62r7-j2x7

github

около 7 лет назад

Nokogiri vulnerable to libxml XML Entity Expansion

ELSA-2015-1419

oracle-oval

около 10 лет назад

ELSA-2015-1419: libxml2 security and bug fix update (LOW)

EPSS

Процентиль: 85%

0.02464

Низкий