Download
| Alert*
oval:org.secpod.oval:def:89047407
This update for python-libxml2-python fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . oval:org.secpod.oval:def:4500904 The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fix: * libxml2: Use-after-free of ID and IDREF attributes For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:3300756 SUSE Security Update: Security update for libxml2 oval:org.secpod.oval:def:2107425 Oracle Solaris 11 - ( CVE-2022-23308 ) oval:org.secpod.oval:def:80127 The host is installed with Apple Mac OS X 10.15.7 or Apple Mac OS 12 before 12.4 or Apple Mac OS before 11.6.6 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to properly handle a validation issue. On successful exploitation, a remote attacker may b ... oval:org.secpod.oval:def:89046026 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . oval:org.secpod.oval:def:89046102 This update for python-libxml2-python fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . oval:org.secpod.oval:def:19500083 valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. A flaw was found in the libxml2 library in functions used to manipulate the xmlBuf and the xmlBuffer types. A substantial input causes values to calculate buffer sizes to overflow, resulting in an out-of-bounds write. ... oval:org.secpod.oval:def:506752 The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fix: * libxml2: Use-after-free of ID and IDREF attributes For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:89046256 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed use-after-free of ID and IDREF attributes oval:org.secpod.oval:def:121727 This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream o ... oval:org.secpod.oval:def:706351 libxml2: GNOME XML library libxml2 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:79881 libxml2: GNOME XML library libxml2 could be made to crash or run programs if it opened a specially crafted file. oval:org.secpod.oval:def:89047608 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c and tree.c . oval:org.secpod.oval:def:89046329 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes . - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c and tree.c . oval:org.secpod.oval:def:3300386 SUSE Security Update: Security update for python-libxml2-python oval:org.secpod.oval:def:3301233 SUSE Security Update: Security update for libxml2 oval:org.secpod.oval:def:89047653 This update for libxml2 fixes the following issues: Update to 2.9.14: - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c and tree.c . Update to version 2.9.13: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes oval:org.secpod.oval:def:1700981 valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes oval:org.secpod.oval:def:2500542 The libxml2 library is a development toolbox providing the implementation of various XML standards. oval:org.secpod.oval:def:121695 This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream o ... oval:org.secpod.oval:def:80148 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... oval:org.secpod.oval:def:80065 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... oval:org.secpod.oval:def:97609 [CLSA-2022:1647255880] Fixed CVE-2022-23308 in libxml2 oval:org.secpod.oval:def:80066 The host is missing a security update according to Apple advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle multiple issues. Successful exploitation allow attackers to execute arbitrary code, cause denial of service or di ... oval:org.secpod.oval:def:1505507 [2.9.7-12] - Fix CVE-2022-23308 [2.9.7-11] - Fix CVE-2021-3541 [2.9.7-10] - Fix CVE-2021-3516 - Fix CVE-2021-3517 - Fix CVE-2021-3518 - Fix CVE-2021-3537 oval:org.secpod.oval:def:1601696 parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name. GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml ... |