Описание
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | libxml2 | Out of support scope | ||
| Red Hat Enterprise Linux 6 | libxml2 | Out of support scope | ||
| JBoss Core Services on RHEL 6 | jbcs-httpd24-curl | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-httpd | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-mod_cluster-native | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-mod_http2 | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-mod_jk | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-mod_md | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-mod_security | Fixed | RHSA-2020:2644 | 22.06.2020 |
| JBoss Core Services on RHEL 6 | jbcs-httpd24-nghttp2 | Fixed | RHSA-2020:2644 | 22.06.2020 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-835
https://bugzilla.redhat.com/show_bug.cgi?id=1799786libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations
EPSS
Процентиль: 64%
0.00466
Низкий
7.5 High
CVSS3
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
nvd
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
msrc
больше 5 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
CVSS3: 7.5
debian
около 6 лет назад
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infini ...
CVSS3: 7.5
github
почти 6 лет назад
libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation
EPSS
Процентиль: 64%
0.00466
Низкий
7.5 High
CVSS3