Heap-based Buffer Overflow in libxml2 Affects Various Distributions
CVE-2015-7498

Currently unrated

Key Information:

Vendor

HP
Status
Icewall File Manager
Icewall Federation Agent
Vendor
CVE Published:
15 December 2015

What is CVE-2015-7498?

The vulnerability in libxml2 prior to version 2.9.3 allows attackers to exploit a heap-based buffer overflow in the xmlParseXmlDecl function. This can lead to denial of service conditions due to unspecified vectors associated with extracting errors after encoding conversion failures, potentially impacting systems that depend on XML parsing functionality.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://rhn.redhat.com/errata/RHSA-2015-2550.html
vendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-updates/2016-01/msg000...
vendor-advisoryx_refsource_SUSE
https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f...
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.