Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-8035

Опубликовано: 18 нояб. 2015
Источник: ubuntu
Приоритет: medium
CVSS2: 2.6

Описание

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

РелизСтатусПримечание
devel

released

2.9.2+zdfsg1-4ubuntu1
esm-infra-legacy/trusty

released

2.9.1+dfsg1-3ubuntu4.5
precise

not-affected

xz support not present
trusty

released

2.9.1+dfsg1-3ubuntu4.5
trusty/esm

released

2.9.1+dfsg1-3ubuntu4.5
upstream

needs-triage

vivid

not-affected

xz support disabled
vivid/stable-phone-overlay

not-affected

xz support disabled
vivid/ubuntu-core

DNE

wily

not-affected

xz support disabled

Показывать по

Ссылки на источники

2.6 Low

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-8035

redhat
больше 10 лет назад

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

nvd логотип

CVE-2015-8035

nvd
около 10 лет назад

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

debian логотип

CVE-2015-8035

debian
около 10 лет назад

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly d ...

github логотип

GHSA-cprg-r8c2-9m62

github
больше 3 лет назад

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

fstec логотип

BDU:2015-12119

CVSS3: 7.3
fstec
около 10 лет назад

Уязвимость функции xz_decomp библиотеки libxml2, позволяющая нарушителю вызвать отказ в обслуживании

2.6 Low

CVSS2