Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-2414

Опубликовано: 11 авг. 2009
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.

РелизСтатусПримечание
dapper

ignored

end of life
devel

DNE

hardy

released

1:1.8.17-14.1ubuntu0.1
intrepid

DNE

jaunty

DNE

karmic

DNE

lucid

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

2.6.24.dfsg-1ubuntu1.5
devel

not-affected

hardy

released

2.6.31.dfsg-2ubuntu1.4
intrepid

released

2.6.32.dfsg-4ubuntu1.2
jaunty

released

2.6.32.dfsg-5ubuntu4.2
karmic

not-affected

lucid

not-affected

upstream

released

2.7.3.dfsg-2.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 77%
0.01069
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2009-2414

redhat
около 16 лет назад

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.

nvd логотип

CVE-2009-2414

nvd
около 16 лет назад

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.

debian логотип

CVE-2009-2414

debian
около 16 лет назад

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6 ...

github логотип

GHSA-pxj8-hpwc-88mp

github
больше 3 лет назад

Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.

oracle-oval логотип

ELSA-2009-1206

oracle-oval
около 16 лет назад

ELSA-2009-1206: libxml and libxml2 security update (MODERATE)

EPSS

Процентиль: 77%
0.01069
Низкий

4.3 Medium

CVSS2