Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2016-4447

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securitytra...
MISC: http://www.securityfoc...
MISC: http://lists.apple.com...
MISC: http://lists.apple.com...
MISC: http://lists.apple.com...
MISC: http://lists.apple.com...
MISC: http://lists.apple.com...
MISC: https://www.debian.org...
MISC: https://access.redhat....
MISC: http://rhn.redhat.com/...
MISC: http://www.slackware.c...
MISC: http://www.ubuntu.com/...
MISC: http://www.openwall.co...
MISC: http://www.oracle.com/...
MISC: http://www.oracle.com/...
MISC: http://www.oracle.com/...
MISC: http://xmlsoft.org/new...
MISC: https://git.gnome.org/...
MISC: https://h20566.www2.hp...
MISC: https://kc.mcafee.com/...
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://support.apple....
MISC: https://www.tenable.co...

Launchpad.net

CVE 2016-4447

Related bugs

References