CVE-2017-10672

Опубликовано: 29 июн. 2017

Источник: debian

EPSS Средний

Описание

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libxml-libxml-perl	fixed	2.0128+dfsg-5		package

Примечания

https://rt.cpan.org/Public/Bug/Display.html?id=122246
Pull request: https://github.com/shlomif/perl-XML-LibXML/pull/8

EPSS

Процентиль: 94%

0.12353

Средний

Связанные уязвимости

CVE-2017-10672

CVSS3: 9.8

ubuntu

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

CVE-2017-10672

CVSS3: 5.6

redhat

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

CVE-2017-10672

CVSS3: 9.8

nvd

больше 8 лет назад

Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call.

openSUSE-SU-2018:0153-1

suse-cvrf

около 8 лет назад

Security update for perl-XML-LibXML

SUSE-SU-2018:0170-1

suse-cvrf

около 8 лет назад

Security update for perl-XML-LibXML

EPSS

Процентиль: 94%

0.12353

Средний