Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2016-0729

Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cpp in the XML Parser library in Apache Xerces-C before 3.1.3 allow remote attackers to cause a denial of service (segmentation fault or memory corruption) or possibly execute arbitrary code via a crafted document.

See the

CVE page on Mitre.org for more details.

References

MISC: http://packetstormsecu...
CONFIRM: http://xerces.apache.o...
CONFIRM: https://issues.apache....
DEBIAN: DSA-3493
FEDORA: FEDORA-2016-880b91c090
FEDORA: FEDORA-2016-9ff972ca42
FEDORA: FEDORA-2016-ae9ac16cf3
BID: 83423
CONFIRM: http://www.oracle.com/...
SUSE: openSUSE-SU-2016:1808
SUSE: openSUSE-SU-2016:0966
SUSE: openSUSE-SU-2016:1121
CONFIRM: http://svn.apache.org/...
GENTOO: GLSA-201612-46
SECTRACK: 1035113
BUGTRAQ: 20160225 CVE-2016-0729...
CONFIRM: http://www.oracle.com/...
MISC: https://www.oracle.com...

Launchpad.net

CVE 2016-0729

Related bugs

References