Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1840

Опубликовано: 20 мая 2016
Источник: ubuntu
Приоритет: medium
CVSS2: 6.8
CVSS3: 7.8

Описание

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

РелизСтатусПримечание
devel

not-affected

2.9.3+dfsg1-1.2
esm-infra-legacy/trusty

released

2.9.1+dfsg1-3ubuntu4.8
esm-infra/xenial

released

2.9.3+dfsg1-1ubuntu0.1
precise

released

2.7.8.dfsg-5.1ubuntu4.15
precise/esm

not-affected

2.7.8.dfsg-5.1ubuntu4.15
trusty

released

2.9.1+dfsg1-3ubuntu4.8
trusty/esm

released

2.9.1+dfsg1-3ubuntu4.8
upstream

released

2.9.4
vivid/stable-phone-overlay

ignored

end of life
vivid/ubuntu-core

DNE

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1840

CVSS3: 7
redhat
больше 9 лет назад

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

nvd логотип

CVE-2016-1840

CVSS3: 7.8
nvd
больше 9 лет назад

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

debian логотип

CVE-2016-1840

CVSS3: 7.8
debian
больше 9 лет назад

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in l ...

github логотип

GHSA-7v3g-4pq5-c565

CVSS3: 7.8
github
больше 3 лет назад

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

fstec логотип

BDU:2016-01376

CVSS3: 7.3
fstec
больше 9 лет назад

Уязвимость операционных систем iOS и Mac OS X, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

6.8 Medium

CVSS2

7.8 High

CVSS3