Описание
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libxml2 | Will not fix | ||
| Red Hat Enterprise Linux 6 | libxml2 | Will not fix | ||
| Red Hat Enterprise Linux 7 | libxml2 | Will not fix | ||
| Red Hat Enterprise Linux 8 | libxml2 | Not affected | ||
| Red Hat Enterprise Linux 8 | mingw-libxml2 | Affected | ||
| Red Hat JBoss Core Services | libxml2 | Affected | ||
| Red Hat JBoss Enterprise Web Server 3 | libxml2 | Will not fix | ||
| Text-Only JBCS | Fixed | RHSA-2018:2486 | 16.08.2018 |
Показывать по
Дополнительная информация
Статус:
EPSS
6.5 Medium
CVSS3
Связанные уязвимости
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buff ...
Уязвимость функции xmlDictAddString (dict.c) библиотеки libxml2, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.5 Medium
CVSS3