Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-2416

Опубликовано: 11 авг. 2009
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

Описание

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.

РелизСтатусПримечание
dapper

ignored

end of life
devel

DNE

hardy

released

1:1.8.17-14.1ubuntu0.1
intrepid

DNE

jaunty

DNE

karmic

DNE

lucid

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

released

2.6.24.dfsg-1ubuntu1.5
devel

not-affected

hardy

released

2.6.31.dfsg-2ubuntu1.4
intrepid

released

2.6.32.dfsg-4ubuntu1.2
jaunty

released

2.6.32.dfsg-5ubuntu4.2
karmic

not-affected

lucid

not-affected

upstream

released

2.7.3.dfsg-2.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 41%
0.00192
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2009-2416

redhat
около 16 лет назад

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.

nvd логотип

CVE-2009-2416

CVSS3: 6.5
nvd
около 16 лет назад

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.

debian логотип

CVE-2009-2416

CVSS3: 6.5
debian
около 16 лет назад

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6 ...

github логотип

GHSA-2vw2-h5mp-gfhw

CVSS3: 6.5
github
больше 3 лет назад

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.

oracle-oval логотип

ELSA-2009-1206

oracle-oval
около 16 лет назад

ELSA-2009-1206: libxml and libxml2 security update (MODERATE)

EPSS

Процентиль: 41%
0.00192
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3