Download
| Alert*
oval:org.secpod.oval:def:68868
The host is installed with Apple Mac OS 10.8 before 10.13 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to properly handle a memory management issue. Successful exploitation allows attackers to cause an unexpected application termination or arbitra ... oval:org.secpod.oval:def:99594 The host is installed with Apple iCloud before 7.0 or iTunes before 12.7 and is prone to an use after free vulnerability. A flaw is present in the application, which fails to properly handle issues in validation. On successful exploitation, processing maliciously crafted XML may lead to an unexpecte ... oval:org.secpod.oval:def:53120 Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause a denial-of-service against the applica ... oval:org.secpod.oval:def:114010 This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream o ... oval:org.secpod.oval:def:89044739 This update for libxml2 fixes the following issues: Security issues fixed: - CVE-2017-9050: heap-based buffer overflow [bsc#1039069, bsc#1039661] - CVE-2017-9049: heap-based buffer overflow [bsc#1039066] - CVE-2017-9048: stack overflow vulnerability [bsc#1039063] - CVE-2017-9047: stack overflow v ... oval:org.secpod.oval:def:89044524 This update for libxml2 fixes the following issues: - CVE-2017-9047, CVE-2017-9048: The function xmlSnprintfElementContent in valid.c was vulnerable to a stack buffer overflow - CVE-2017-9049: The function xmlDictComputeFastKey in dict.c was vulnerable to a heap-based buffer over-read. - CVE-2017- ... oval:org.secpod.oval:def:51892 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:603070 Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause a denial-of-service against the applica ... oval:org.secpod.oval:def:89044631 This update for libxml2 fixes the following security issues: * CVE-2017-9050: A heap-based buffer over-read in xmlDictAddString * CVE-2017-9049: A heap-based buffer overflow in xmlDictComputeFastKey * CVE-2017-9048: A stack overflow vulnerability in xmlSnprintfElementContent * CVE-2017-9047: A st ... oval:org.secpod.oval:def:703799 libxml2: GNOME XML library Several security issues were fixed in libxml2. oval:org.secpod.oval:def:113949 This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream o ... oval:org.secpod.oval:def:42214 The host is missing a security update according to Apple advisory, APPLE-SA-2017-09-25-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... |