Описание
libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.6.24.dfsg-1ubuntu1.2 |
| devel | not-affected | |
| feisty | released | 2.6.27.dfsg-1ubuntu3.2 |
| gutsy | released | 2.6.30.dfsg-2ubuntu1.2 |
| hardy | released | 2.6.31.dfsg-2ubuntu1.1 |
| upstream | released | 2.7.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.
libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.
libxml2 2.6.32 and earlier does not properly detect recursion during e ...
libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.
EPSS
4.3 Medium
CVSS2
6.5 Medium
CVSS3