Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM0D47C7769287938EB442E2F39E254DDE66244236B79EDE211167EFA894D23D52
HistoryJan 31, 2019 - 2:25 a.m.

Security Bulletin: Vulnerabilities in libxml2 affect IBM RackSwitch Networking products

2019-01-3102:25:02
www.ibm.com
28

EPSS

0.022

Percentile

89.6%

JSON

Summary

IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2.

Vulnerability Details

Summary

IBM RackSwitch Networking products have addressed the following vulnerabilities in libxml2.

Vulnerability Details:

CVE-ID: CVE-2016-3627

Description: libxml2 is vulnerable to a denial of service, caused by an error in the xmlStringGetNodeList() function when parsing xml files while in recover mode. An attacker could exploit this vulnerability to exhaust the stack and cause a segmentation fault.

CVSS Base Score: 5.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/111586&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVE-ID: CVE-2015-8806

Description: libxml2 is vulnerable to a denial of service, caused by a heap-buffer overread in dict.c. By persuading a victim to open a specially crafted file, a remote attacker could exploit this vulnerability to cause the application to crash.

CVSS Base Score: 4.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/110613&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)

CVE-ID: CVE-2016-2073

Description: libxml2 is vulnerable to a heap-based buffer overflow, caused by an out-of-bounds read in the htmlParseNameComplex() function. By persuading a victim to open a specially crafted XML file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

CVSS Base Score: 6.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/110307&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)

CVE-ID: CVE-2016-3705

Description: libxml2 is vulnerable to a stack-based buffer overflow, caused by an out-of-bounds read of xmlParserEntityCheck() and xmlParseAttValueComplex() functions in parser.c. By persuading a victim to open a specially crafted XML file, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

CVSS Base Score: 6.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/112885&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)

CVE-ID: CVE-2016-4447

Description: libxml2 is vulnerable to a denial of service, caused by a heap-based buffer overflow. By persuading a victim to open a specially crafted XML file, a remote attacker could overflow a buffer and cause the application to crash.

CVSS Base Score: 4.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/113522&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)

CVE-ID: CVE-2016-4449

Description: libxml2 could allow a remote attacker to obtain sensitive information, caused by a XML external entity (XXE) error when processing XML data by the XML parser. A remote attacker could exploit this vulnerability to obtain sensitive information.

CVSS Base Score: 7.5
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/113524&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVE-ID: CVE-2016-4483

Description: libxml2 is vulnerable to a denial of service, caused by an out-of-bounds read when parsing a specially crafted XML file if recover mode is used. By persuading a victim to open a specially crafted XML file, a remote attacker could exploit this vulnerability to cause the application to crash.

CVSS Base Score: 4.3
CVSS Temporal Score: See <http://exchange.xforce.ibmcloud.com/vulnerabilities/114279&gt; for current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C)

Affected Products and Versions

Product Affected Version
IBM RackSwitch G8264CS 7.8.14.0
IBM RackSwitch G8052 7.9.17.0
IBM RackSwitch G8052 7.11.7.0
IBM RackSwitch G8124/G8124-E 7.9.17.0
IBM RackSwitch G8124/G8124-E 7.11.7.0
IBM RackSwitch G8264 7.9.17.0
IBM RackSwitch G8264 7.11.7.0
IBM RackSwitch G8264T 7.9.17.0
IBM RackSwitch G8316 7.9.17.0
IBM RackSwitch G8332 7.7.23.0

Remediation/Fixes:

Firmware fix versions are available on Fix Central:
<http://www.ibm.com/support/fixcentral/&gt;.

Product Fix Version
IBM RackSwitch G8264CS (G8264CS-7.8.15.0.zip) 7.8.15.0
IBM RackSwitch G8052 (G8052-7.9.18.0.zip) 7.9.18.0
IBM RackSwitch G8052 (G8052-7.11.8.0.zip) 7.11.8.0
IBM RackSwitch G8124/G8124-E (G8124_G8124E-7.9.18.0.zip) 7.9.18.0
IBM RackSwitch G8124/G8124-E (G8124_G8124E-7.11.8.0.zip) 7.11.8.0
IBM RackSwitch G8264 (G8264-7.9.18.0.zip) 7.9.18.0
IBM RackSwitch G8264 (G8264-7.11.8.0.zip) 7.11.8.0
IBM RackSwitch G8264T (G8264T-7.9.18.0.zip) 7.9.18.0
IBM RackSwitch G8316 (G8316-7.9.18.0.zip) 7.9.18.0
IBM RackSwitch G8332 (G8332-7.7.24.0.zip) 7.7.24.0

You should verify applying this fix does not cause any compatibility issues.

Workaround(s) & Mitigation(s):

None

References:

Related Information:
IBM Secure Engineering Web Portal
IBM Product Security Incident Response Blog
Lenovo Product Security Advisories

Acknowledgement

None.

Change History
13 September 2016: Original Copy Published

  • The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.

Disclaimer

According to the Forum of Incident Response and Security Teams (FIRST), the Common Vulnerability Scoring System (CVSS) is an “industry open standard designed to convey vulnerability severity and help to determine urgency and priority of response.” IBM PROVIDES THE CVSS SCORES “AS IS” WITHOUT WARRANTY OF ANY KIND, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. CUSTOMERS ARE RESPONSIBLE FOR ASSESSING THE IMPACT OF ANY ACTUAL OR POTENTIAL SECURITY VULNERABILITY.

Related

ibm 31
nessus 34
debian 3
openvas 24
prion 10
redhatcve 6
debiancve 10
mageia 2
nvd 10
f5 4
veracode 7
cve 10
ubuntucve 10
cvelist 10
cloudfoundry 1
ubuntu 1
suse 4
slackware 1
github 1
osv 2
rubygems 1
symantec 1
packetstorm 1
freebsd 1
centos 1
altlinux 3
redhat 1
amazon 1
gentoo 1
oraclelinux 1
archlinux 1
apple 4
rosalinux 1
ibm
ibm
Security Bulletin: Vulnerabilities in libxml2 affect IBM Flex System Networking Switch products
2019-01-31 02:25:02
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple libxml2 vulnerabilities
2018-06-18 01:33:29
Security Bulletin: Vulnerabilities in libxml2 affect IBM Integrated Management Module (IMM) for System x & BladeCenter
2023-04-14 14:32:25
nessus
nessus
Debian DLA-503-1 : libxml2 security update
2016-06-06 00:00:00
EulerOS Virtualization for ARM 64 3.0.2.0 : libxml2 (EulerOS-SA-2020-1208)
2020-03-13 00:00:00
F5 Networks BIG-IP : libxml2 vulnerabilities (K24322529)
2016-12-20 00:00:00
debian
debian
[SECURITY] [DLA 503-1] libxml2 security update
2016-06-03 19:22:01
[SECURITY] [DSA 3593-1] libxml2 security update
2016-06-02 20:28:31
[SECURITY] [DSA 3593-1] libxml2 security update
2016-06-02 20:28:31
openvas
openvas
Debian: Security Advisory (DLA-503-1)
2023-03-08 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1208)
2020-03-13 00:00:00
Debian Security Advisory DSA 3593-1 (libxml2 - security update)
2016-06-02 00:00:00
prion
prion
Out-of-bounds
2017-04-11 16:59:00
Heap overflow
2016-04-13 17:59:00
Out-of-bounds
2016-02-12 15:59:00
redhatcve
redhatcve
CVE-2016-4483
2016-05-04 07:49:18
CVE-2016-3705
2016-05-04 07:49:11
CVE-2016-4447
2016-07-18 14:19:23
debiancve
debiancve
CVE-2016-4483
2017-04-11 16:59:00
CVE-2015-8806
2016-04-13 17:59:07
CVE-2016-2073
2016-02-12 15:59:00
mageia
mageia
Updated libxml2 packages fix security vulnerability
2016-05-20 14:38:30
Updated libxml2 packages fix security vulnerability
2016-07-27 00:59:16
nvd
nvd
CVE-2016-4483
2017-04-11 16:59:00
CVE-2015-8806
2016-04-13 17:59:07
CVE-2016-2073
2016-02-12 15:59:00
f5
f5
K54225343 : libxml2 vulnerabilities CVE-2016-3627 and CVE-2016-3705
2016-07-18 00:00:00
K24322529 : libxml2 vulnerabilities CVE-2016-4447 and CVE-2016-4449
2016-12-07 00:00:00
SOL54225343 - libxml2 vulnerabilities CVE-2016-3627 and CVE-2016-3705
2016-07-18 00:00:00
veracode
veracode
Vulnerable Through Use Of C Library
2017-04-12 01:37:48
Denial Of Service (DoS)
2018-05-11 08:23:04
Denial Of Service (DoS)
2018-05-23 08:03:32
cve
cve
CVE-2016-4483
2017-04-11 16:59:00
CVE-2015-8806
2016-04-13 17:59:07
CVE-2016-2073
2016-02-12 15:59:00
ubuntucve
ubuntucve
CVE-2016-4483
2016-05-04 00:00:00
CVE-2016-4447
2016-05-30 00:00:00
CVE-2016-3705
2016-05-17 00:00:00
cvelist
cvelist
CVE-2016-4483
2017-04-11 16:00:00
CVE-2015-8806
2016-04-13 17:00:00
CVE-2016-2073
2016-02-12 15:26:00
cloudfoundry
cloudfoundry
USN-2994-1 libxml2 vulnerabilities | Cloud Foundry
2016-06-13 00:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2016-06-06 00:00:00
suse
suse
Security update for libxml2 (important)
2016-06-17 15:08:25
Security update for libxml2 (important)
2016-06-16 13:10:48
Security update for libxml2 (important)
2016-06-09 18:07:56
slackware
slackware
[slackware-security] libxml2
2016-05-27 23:33:14
github
github
Denial of service or RCE from libxml2 and libxslt
2018-09-17 21:53:42
osv
osv
Denial of service or RCE from libxml2 and libxslt
2018-09-17 21:53:42
python-libxml2-2.9.4-1.4 on GA media
2024-06-15 00:00:00
rubygems
rubygems
Denial of service or RCE from libxml2 and libxslt
2016-06-06 21:00:00
symantec
symantec
SA129 : Multiple libxml2 Vulnerabilities
2016-09-01 08:00:00
packetstorm
packetstorm
libxml 2.9.2 Stack Overflow
2016-05-03 00:00:00
freebsd
freebsd
libxml2 -- multiple vulnerabilities
2016-05-23 00:00:00
centos
centos
libxml2 security update
2016-06-23 15:28:21
altlinux
altlinux
Security fix for the ALT Linux 10 package libxml2 version 1:2.9.4.0.12.e905-alt1
2017-03-03 00:00:00
Security fix for the ALT Linux 8 package libxml2 version 1:2.9.4.0.12.e905-alt1
2017-03-07 00:00:00
Security fix for the ALT Linux 9 package libxml2 version 1:2.9.4.0.12.e905-alt1
2017-03-03 00:00:00
redhat
redhat
(RHSA-2016:1292) Important: libxml2 security update
2016-06-23 08:21:08
amazon
amazon
Important: libxml2
2016-07-14 16:30:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2017-01-16 00:00:00
oraclelinux
oraclelinux
libxml2 security update
2016-06-23 00:00:00
archlinux
archlinux
libxml2: multiple issues
2016-05-26 00:00:00
apple
apple
About the security content of iTunes 12.4.2 for Windows
2016-07-18 00:00:00
About the security content of iCloud for Windows 5.2.1
2016-07-18 00:00:00
About the security content of iTunes 12.4.2 for Windows - Apple Support
2017-06-10 11:47:52
rosalinux
rosalinux
Advisory ROSA-SA-2021-1905
2021-07-02 17:25:35

EPSS

0.022

Percentile

89.6%

JSON
Related for 0D47C7769287938EB442E2F39E254DDE66244236B79EDE211167EFA894D23D52
ibm31nessus34debian3openvas24prion10redhatcve6debiancve10mageia2nvd10f54veracode7cve10ubuntucve10cvelist10cloudfoundry1ubuntu1suse4slackware1github1osv2rubygems1symantec1packetstorm1freebsd1centos1altlinux3redhat1amazon1gentoo1oraclelinux1archlinux1apple4rosalinux1