Vulnerability & Exploit Database

Back to search

Ubuntu: (Multiple Advisories) (CVE-2017-15412): libxml2 vulnerability

Severity CVSS Published Added Modified
4 (AV:L/AC:M/Au:N/C:P/I:P/A:P) December 08, 2017 December 14, 2017 April 25, 2018

Description

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3513-2:

USN-3513-1 fixed a vulnerability in libxml2. This update provides

the corresponding update for Ubuntu 12.04 ESM.

Original advisory details:

It was discovered that libxml2 incorrecty handled certain files. An attacker

could use this issue with specially constructed XML data to cause libxml2 to

consume resources, leading to a denial of service.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

ubuntu-upgrade-libxml2