Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-20388

Опубликовано: 21 янв. 2020
Источник: redhat
CVSS3: 7.5

Описание

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service. System availability is the highest threat from this vulnerability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat 3scale API Management Platform 2systemAffected
Red Hat Enterprise Linux 5libxml2Not affected
Red Hat Enterprise Linux 6libxml2Not affected
JBoss Core Services on RHEL 6jbcs-httpd24-curlFixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-httpdFixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-mod_cluster-nativeFixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-mod_http2FixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-mod_jkFixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-mod_mdFixedRHSA-2020:264422.06.2020
JBoss Core Services on RHEL 6jbcs-httpd24-mod_securityFixedRHSA-2020:264422.06.2020

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-401
https://bugzilla.redhat.com/show_bug.cgi?id=1799734libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c

7.5 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-20388

CVSS3: 7.5
ubuntu
около 6 лет назад

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

nvd логотип

CVE-2019-20388

CVSS3: 7.5
nvd
около 6 лет назад

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

msrc логотип

CVE-2019-20388

CVSS3: 7.5
msrc
больше 5 лет назад

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

debian логотип

CVE-2019-20388

CVSS3: 7.5
debian
около 6 лет назад

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaV ...

github логотип

GHSA-7g45-9xmp-g2w6

CVSS3: 7.5
github
больше 3 лет назад

xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

7.5 High

CVSS3