Vulnerability & Exploit Database

Displaying all 9 entries

Results for: CVE-2015-8035 Back to search

SUSE: CVE-2015-8035: SUSE Linux Security Advisory Vulnerability

  • Severity: 3
  • Published: November 18, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

Gentoo Linux: CVE-2015-8035: libxml2: Multiple vulnerabilities Vulnerability

  • Severity: 3
  • Published: November 18, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

FreeBSD: libxml2 -- multiple vulnabilities (Multiple CVEs) Vulnerability

  • Severity: 7
  • Published: November 18, 2015

The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660.

Debian: CVE-2015-8035: libxml2 -- security update Vulnerability

  • Severity: 3
  • Published: November 18, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

OS X update for libxml2 (CVE-2015-8035) Vulnerability

  • Severity: 3
  • Published: November 18, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

Apple iOS Vulnerability: CVE-2015-8035 Vulnerability

  • Severity: 3
  • Published: November 18, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.

Ubuntu: USN-2812-1 (CVE-2015-8035): libxml2 vulnerabilities Vulnerability

  • Severity: 3
  • Published: November 16, 2015

The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.