Vulnerability & Exploit Database

Displaying entries 1 - 10 of 16 in total

Results for: CVE-2015-1419 Back to search

Amazon Linux AMI: Security patch for libxml2 (ALAS-2015-628) (multiple CVEs) Vulnerability

  • Severity: 7
  • Published: December 15, 2015

The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.

RHSA-2015:2550: libxml2 security update Vulnerability

  • Severity: 7
  • Published: November 18, 2015

The libxml2 library is a development toolbox providing the implementationof various XML standards.Several denial of service flaws were found in libxml2, a library providingsupport for reading, modifying, and writing XML and HTML files. A remoteattacker could provide a specially crafted XML or HTML file that, whenprocessed by an applicati...

ELSA-2015-2550 Moderate: Oracle Linux libxml2 security update Vulnerability

  • Severity: 7
  • Published: November 18, 2015

The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.

SUSE: CVE-2015-1819: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: August 14, 2015

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

RHSA-2015:1419: libxml2 security and bug fix update Vulnerability

  • Severity: 5
  • Published: August 14, 2015

The libxml2 library is a development toolbox providing the implementationof various XML standards.A denial of service flaw was found in the way the libxml2 library parsedcertain XML files. An attacker could provide a specially crafted XML filethat, when parsed by an application using libxml2, could cause thatapplication to use an excessi...

Debian: CVE-2015-1819: libxml2 -- security update Vulnerability

  • Severity: 5
  • Published: August 14, 2015

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

OS X update for libxml2 (CVE-2015-1819) Vulnerability

  • Severity: 5
  • Published: August 14, 2015

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.