Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-9049

Опубликовано: 18 мая 2017
Источник: ubuntu
Приоритет: medium
CVSS2: 5
CVSS3: 7.5

Описание

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398.

РелизСтатусПримечание
devel

not-affected

2.9.4+dfsg1-3.1
esm-infra-legacy/trusty

released

2.9.1+dfsg1-3ubuntu4.10
esm-infra/xenial

released

2.9.3+dfsg1-1ubuntu0.3
precise/esm

not-affected

2.7.8.dfsg-5.1ubuntu4.18
trusty

released

2.9.1+dfsg1-3ubuntu4.10
trusty/esm

released

2.9.1+dfsg1-3ubuntu4.10
upstream

released

2.9.4+dfsg1-3.1, 2.9.5
vivid/stable-phone-overlay

ignored

end of life
vivid/ubuntu-core

DNE

xenial

released

2.9.3+dfsg1-1ubuntu0.3

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-9049

CVSS3: 6.5
redhat
больше 8 лет назад

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398.

nvd логотип

CVE-2017-9049

CVSS3: 7.5
nvd
больше 8 лет назад

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398.

debian логотип

CVE-2017-9049

CVSS3: 7.5
debian
больше 8 лет назад

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buff ...

github логотип

GHSA-rv68-c8wr-h3m5

CVSS3: 7.5
github
больше 3 лет назад

libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398.

fstec логотип

BDU:2018-00016

CVSS3: 7.5
fstec
больше 8 лет назад

Уязвимость функции xmlDictComputeFastKey (dict.c) библиотеки libxml2, позволяющая нарушителю вызвать отказ в обслуживании

5 Medium

CVSS2

7.5 High

CVSS3