CVE-2015-7498

Currently unrated

Key Information:

Vendor: HP
Status: Icewall File Manager; Icewall Federation Agent
Vendor: CVE Published:; 15 December 2015

Summary

Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure.

References

http://rhn.redhat.com/errata/RHSA-2015-2550.html

vendor-advisoryx_refsource_REDHAT

http://lists.opensuse.org/opensuse-updates/2016-01/msg000...

vendor-advisoryx_refsource_SUSE

https://git.gnome.org/browse/libxml2/commit/?id=afd27c21f...

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 15, 2015
Vulnerability Reserved
Sep 29, 2015