Описание
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.6.24.dfsg-1ubuntu1.3 |
| devel | released | 2.6.32.dfsg-2ubuntu3 |
| feisty | released | 2.6.27.dfsg-1ubuntu3.3 |
| gutsy | released | 2.6.30.dfsg-2ubuntu1.3 |
| hardy | released | 2.6.31.dfsg-2ubuntu1.2 |
| upstream | released | 2.7.1 |
Показывать по
10 Critical
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
Heap-based buffer overflow in the xmlParseAttValueComplex function in ...
Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name.
10 Critical
CVSS2