CVE-2016-4571

Опубликовано: 03 фев. 2017

Источник: debian

EPSS Низкий

Описание

The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mxml	fixed	2.9-2		package
mxml	no-dsa		wheezy	package

Примечания

https://www.openwall.com/lists/oss-security/2016/05/07/8
https://github.com/michaelrsweet/mxml/commit/5f74dc212497332d05882660db130a37d2f458eb

EPSS

Процентиль: 74%

0.00808

Низкий

Связанные уязвимости

CVE-2016-4571

CVSS3: 5.5

ubuntu

около 9 лет назад

The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file.

CVE-2016-4571

CVSS3: 5.5

nvd

около 9 лет назад

The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file.

GHSA-r5m9-xhw7-f4vr

CVSS3: 5.5

github

больше 3 лет назад

The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and possibly earlier allows remote attackers to cause a denial of service (stack consumption) via crafted xml file.

openSUSE-SU-2017:0815-1

suse-cvrf

почти 9 лет назад

Security update for mxml

SUSE-SU-2017:3060-1

suse-cvrf

около 8 лет назад

Security update for mxml

EPSS

Процентиль: 74%

0.00808

Низкий