Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1834

Опубликовано: 20 мая 2016
Источник: ubuntu
Приоритет: medium
CVSS2: 9.3
CVSS3: 7.8

Описание

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

РелизСтатусПримечание
devel

not-affected

2.9.3+dfsg1-1.2
esm-infra-legacy/trusty

released

2.9.1+dfsg1-3ubuntu4.8
esm-infra/xenial

released

2.9.3+dfsg1-1ubuntu0.1
precise

released

2.7.8.dfsg-5.1ubuntu4.15
precise/esm

not-affected

2.7.8.dfsg-5.1ubuntu4.15
trusty

released

2.9.1+dfsg1-3ubuntu4.8
trusty/esm

released

2.9.1+dfsg1-3ubuntu4.8
upstream

released

2.9.4
vivid/stable-phone-overlay

ignored

end of life
vivid/ubuntu-core

DNE

Показывать по

Ссылки на источники

9.3 Critical

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1834

CVSS3: 7.8
redhat
больше 9 лет назад

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

nvd логотип

CVE-2016-1834

CVSS3: 7.8
nvd
больше 9 лет назад

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

debian логотип

CVE-2016-1834

CVSS3: 7.8
debian
больше 9 лет назад

Heap-based buffer overflow in the xmlStrncat function in libxml2 befor ...

github логотип

GHSA-5248-m677-h7p5

CVSS3: 7.8
github
больше 3 лет назад

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

fstec логотип

BDU:2016-01382

CVSS3: 7.3
fstec
больше 9 лет назад

Уязвимость операционных систем iOS и Mac OS X, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

9.3 Critical

CVSS2

7.8 High

CVSS3