Download
| Alert*
oval:org.secpod.oval:def:89049381
This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed not deterministic hashing of empty dict strings . * CVE-2023-28484: Fixed NULL dereference in xmlSchemaFixupComplexType . * CVE-2023-39615: Fixed crafted xml can cause global buffer overflow . * CVE-2016-3709: Fixed cross-si ... oval:org.secpod.oval:def:91667 The remote host is missing a patch containing a security fix, which affects the following packages: bos.rte.control. For more information please visit vendor advisory link. oval:org.secpod.oval:def:708222 libxml2: GNOME XML library Details: USN-6028-1 fixed vulnerabilities in libxml2. This update provides the corresponding updates for Ubuntu 23.04. Original advisory Several security issues were fixed in libxml2. oval:org.secpod.oval:def:2600294 The libxml2 library is a development toolbox providing the implementation of various XML standards. oval:org.secpod.oval:def:507881 The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fix: * libxml2: NULL dereference in xmlSchemaFixupComplexType * libxml2: Hashing of empty dict strings isn"t deterministic For more details about the security issue, including the impact, a ... oval:org.secpod.oval:def:1507240 [2.9.7-18] - Fix CVE-2023-39615 [2.9.7-17] - Fix CVE-2023-28484 - Fix CVE-2023-29469 oval:org.secpod.oval:def:708099 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:91472 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:507897 The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fix: * libxml2: NULL dereference in xmlSchemaFixupComplexType * libxml2: Hashing of empty dict strings isn"t deterministic For more details about the security issue, including the impact, a ... oval:org.secpod.oval:def:93325 Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. CVE-2023-28484 A NULL pointer dereference flaw when parsing invalid XML schemas may result in denial of service. CVE-2023-29469 It was reported that when hashing empty string ... oval:org.secpod.oval:def:19500038 A NULL pointer dereference exists when parsing XML schemas in libxml2 xmlSchemaCheckCOSSTDerivedOK libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various ... oval:org.secpod.oval:def:2108058 Oracle Solaris 11 - ( CVE-2023-28484 ) oval:org.secpod.oval:def:1506852 [2.9.13-3.1] - Fix CVE-2023-28484 - Fix CVE-2023-29469 oval:org.secpod.oval:def:610513 Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. CVE-2023-28484 A NULL pointer dereference flaw when parsing invalid XML schemas may result in denial of service. CVE-2023-29469 It was reported that when hashing empty string ... oval:org.secpod.oval:def:89048768 This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed inconsistent result when hashing empty strings . * CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType . oval:org.secpod.oval:def:89048764 This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed inconsistent result when hashing empty strings . * CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType . * CVE-2022-29824: Fixed integer overflow leading to out-of-bounds write in buf.c . The followin ... oval:org.secpod.oval:def:1506948 [2.9.7-16.1] - Fix CVE-2023-28484 - Fix CVE-2023-29469 oval:org.secpod.oval:def:1701293 A NULL pointer dereference exists when parsing XML schemas in libxml2 xmlSchemaCheckCOSSTDerivedOK libxml2 Hashing of empty dict strings isn't deterministic. When hashing empty strings which aren't null-terminated, xmlDictComputeFastKey could produce inconsistent results. This could lead to various ... oval:org.secpod.oval:def:2501150 The libxml2 library is a development toolbox providing the implementation of various XML standards. oval:org.secpod.oval:def:89048770 This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed inconsistent result when hashing empty strings . * CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType . The following non-security bug was fixed: * Remove unneeded dependency . oval:org.secpod.oval:def:125301 This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream o ... oval:org.secpod.oval:def:1601696 parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name. GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml ... |