Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-2137-1:C10DC
HistoryDec 26, 2010 - 3:46 p.m.

[SECURITY] [DSA 2137-1] Security update for libxml2

2010-12-2615:46:41
lists.debian.org
22

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.7%

JSON

Debian Security Advisory DSA-2137-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
December 26, 2010 http://www.debian.org/security/faq

Package : libxml2
Vulnerability : several
Problem type : local(remote)
Debian-specific: no
CVE Id(s) : CVE-2010-4494

Yang Dingning discovered a double free in libxml's Xpath processing,
which might allow the execution of arbitrary code.

For the stable distribution (lenny), this problem has been fixed
in version 2.6.32.dfsg-5+lenny3.

For the upcoming stable distribution (squeeze) and the unstable
distribution (sid), this problem has been fixed in version
2.7.8.dfsg-2.

We recommend that you upgrade your libxml2 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian5mipsellibxml2-dbg< 2.6.32.dfsg-5+lenny3libxml2-dbg_2.6.32.dfsg-5+lenny3_mipsel.deb
Debian5s390libxml2-dbg< 2.6.32.dfsg-5+lenny3libxml2-dbg_2.6.32.dfsg-5+lenny3_s390.deb
Debian5armlibxml2-dbg< 2.6.32.dfsg-5+lenny3libxml2-dbg_2.6.32.dfsg-5+lenny3_arm.deb
Debian5sparclibxml2-dbg< 2.6.32.dfsg-5+lenny3libxml2-dbg_2.6.32.dfsg-5+lenny3_sparc.deb
Debian5mipsellibxml2< 2.6.32.dfsg-5+lenny3libxml2_2.6.32.dfsg-5+lenny3_mipsel.deb
Debian5amd64python-libxml2< 2.6.32.dfsg-5+lenny3python-libxml2_2.6.32.dfsg-5+lenny3_amd64.deb
Debian5alphalibxml2< 2.6.32.dfsg-5+lenny3libxml2_2.6.32.dfsg-5+lenny3_alpha.deb
Debian5armelpython-libxml2< 2.6.32.dfsg-5+lenny3python-libxml2_2.6.32.dfsg-5+lenny3_armel.deb
Debian5ia64python-libxml2< 2.6.32.dfsg-5+lenny3python-libxml2_2.6.32.dfsg-5+lenny3_ia64.deb
Debian5mipsellibxml2-dev< 2.6.32.dfsg-5+lenny3libxml2-dev_2.6.32.dfsg-5+lenny3_mipsel.deb
Rows per page:
1-10 of 621

Related

nessus 27
altlinux 4
openvas 29
fedora 3
nvd 1
cvelist 1
securityvulns 9
f5 1
prion 1
ubuntucve 1
debiancve 1
osv 1
cve 1
veracode 1
gentoo 1
oraclelinux 2
redhat 2
vmware 1
centos 1
freebsd 1
tenable 1
nessus
nessus
Debian DSA-2137-1 : libxml2 - several vulnerabilities
2011-01-03 00:00:00
openSUSE Security Update : libxml2 (openSUSE-SU-2011:0255-1)
2011-05-05 00:00:00
Mandriva Linux Security Advisory : libxml2 (MDVSA-2010:260)
2011-01-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package libxml2 version 1:2.7.8-alt3
2010-12-27 00:00:00
Security fix for the ALT Linux 10 package libxml2 version 1:2.7.8-alt3
2010-12-27 00:00:00
Security fix for the ALT Linux 9 package libxml2 version 1:2.7.8-alt3
2010-12-27 00:00:00
openvas
openvas
Fedora Update for libxml2 FEDORA-2011-2697
2011-03-15 00:00:00
Mandriva Update for libxml2 MDVSA-2010:260 (libxml2)
2011-01-04 00:00:00
Fedora Update for libxml2 FEDORA-2011-2699
2011-04-19 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: libxml2-2.7.7-2.fc13
2011-04-14 20:57:28
[SECURITY] Fedora 15 Update: libxml2-2.7.8-6.fc15
2011-03-30 05:34:42
[SECURITY] Fedora 14 Update: libxml2-2.7.7-3.fc14
2011-03-13 21:19:17
nvd
nvd
CVE-2010-4494
2010-12-07 21:00:09
cvelist
cvelist
CVE-2010-4494
2010-12-07 20:00:00
securityvulns
securityvulns
libxml double free vulnerability
2010-12-28 00:00:00
[SECURITY] [DSA 2137-1] Security update for libxml2
2010-12-28 00:00:00
[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack &#40;RDP&#41; or HP Insight Control Server Deployment, Multiple Remote Vulnerabilities affecting Confidentiality, Integrity and Availability
2014-03-27 00:00:00
f5
f5
K51182024 : libxml2 2.7.8 vulnerability CVE-2010-4494
2020-06-17 00:00:00
prion
prion
Double free
2010-12-07 21:00:00
ubuntucve
ubuntucve
CVE-2010-4494
2010-12-07 00:00:00
debiancve
debiancve
CVE-2010-4494
2010-12-07 21:00:09
osv
osv
libxml2 - several vulnerabilities
2010-12-26 00:00:00
cve
cve
CVE-2010-4494
2010-12-07 21:00:09
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:52:18
gentoo
gentoo
libxml2: Multiple vulnerabilities
2011-10-26 00:00:00
oraclelinux
oraclelinux
libxml2 security and bug fix update
2011-12-14 00:00:00
mingw32-libxml2 security update
2013-01-31 00:00:00
redhat
redhat
(RHSA-2011:1749) Low: libxml2 security and bug fix update
2011-12-06 00:00:00
(RHSA-2013:0217) Important: mingw32-libxml2 security update
2013-01-31 00:00:00
vmware
vmware
VMware ESXi update to third party library
2012-07-12 00:00:00
centos
centos
mingw32 security update
2013-02-01 00:53:30
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

73.7%

JSON
Related for DEBIAN:DSA-2137-1:C10DC
nessus27altlinux4openvas29fedora3nvd1cvelist1securityvulns9f51prion1ubuntucve1debiancve1osv1cve1veracode1gentoo1oraclelinux2redhat2vmware1centos1freebsd1tenable1