Lucene search

K

GoogleOSV:CVE-2020-7595

HistoryJan 21, 2020 - 11:15 p.m.

CVE-2020-7595

2020-01-2123:15:13

Google

osv.dev

8

8.8 High

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.

CPENameOperatorVersion
libxml2eq2.7.7-r2
cryptographyeqCVE-2015-8242
cryptographyeqLIBXML_2_4_16
cryptographyeqCVE-2016-1833
libxml2eq2.7.6-r3
cryptographyeqCVE-2015-7499-2
cryptographyeqCVE-2016-4483
libxml2eq2.9.0-r2
cryptographyeqLIBXML2.7.3
cryptographyeqLIBXML_2_4_3

Rows per page:

1-10 of 2521

References

lists.opensuse.org/opensuse-security-announce/2020-05/msg00047.html

cert-portal.siemens.com/productcert/pdf/ssa-292794.pdf

gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076

lists.debian.org/debian-lts-announce/2020/09/msg00009.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/545SPOI3ZPPNPX4TFRIVE4JVRTJRKULL/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5R55ZR52RMBX24TQTWHCIWKJVRV6YAWI/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JDPF3AAVKUAKDYFMFKSIQSVVS3EEFPQH/

security.gentoo.org/glsa/202010-04

security.netapp.com/advisory/ntap-20200702-0005/

us-cert.cisa.gov/ics/advisories/icsa-21-103-08

usn.ubuntu.com/4274-1/

www.oracle.com/security-alerts/cpuapr2022.html

www.oracle.com/security-alerts/cpujul2020.html

www.oracle.com/security-alerts/cpujul2022.html

www.oracle.com/security-alerts/cpuoct2021.html

8.8 High

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

Related for OSV:CVE-2020-7595