Описание
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 22.0.1229.79~r158531-0ubuntu1 |
| hardy | DNE | |
| lucid | released | 3.0.1271.97-0ubuntu0.10.04.1 |
| natty | ignored | end of life |
| oneiric | released | 3.0.1271.97-0ubuntu0.11.10.1 |
| precise | released | 3.0.1271.97-0ubuntu0.12.04.1 |
| quantal | released | 3.0.1271.97-0ubuntu0.12.10.1 |
| upstream | released | 21.0.1180.89~r154005-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.1.26-14 |
| hardy | released | 1.1.22-1ubuntu1.3 |
| lucid | released | 1.1.26-1ubuntu1.1 |
| natty | released | 1.1.26-6ubuntu0.1 |
| oneiric | released | 1.1.26-7ubuntu0.1 |
| precise | released | 1.1.26-8ubuntu1.2 |
| quantal | not-affected | 1.1.26-14 |
| upstream | needs-triage |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.11 ...
libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not properly support a cast of an unspecified variable during handling of XSL transforms, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document, related to the _xmlNs data structure in include/libxml/tree.h.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
6.8 Medium
CVSS2