Lucene search
PRIOn knowledge basePRION:CVE-2018-14404HistoryJul 19, 2018 - 1:29 p.m.
Null pointer dereference
2018-07-1913:29:00
PRIOn knowledge base
www.prio-n.com
10
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 12.04 | |
| ubuntu_linux | eq | 18.04 | |
| libxml2 | le | 2.9.8 |
References
access.redhat.com/errata/RHSA-2019:1543
bugs.debian.org/cgi-bin/bugreport.cgi?bug=901817
bugzilla.redhat.com/show_bug.cgi?id=1595985
gitlab.gnome.org/GNOME/libxml2/issues/10
lists.debian.org/debian-lts-announce/2018/09/msg00035.html
lists.debian.org/debian-lts-announce/2020/09/msg00009.html
security.netapp.com/advisory/ntap-20190719-0002/
usn.ubuntu.com/3739-1/
usn.ubuntu.com/3739-2/
Related
veracode
veracode
Denial Of Service (DoS)
2018-07-19 02:58:01
Copy-Paste Vulnerability (CPV) Through Libxml2
2018-10-16 03:04:15
nessus
nessus
Photon OS 1.0: Libxml2 PHSA-2018-1.0-0193
2019-02-07 00:00:00
Photon OS 2.0: Libxml2 PHSA-2018-2.0-0106
2019-02-07 00:00:00
Amazon Linux AMI : libxml2 (ALAS-2018-1072)
2018-09-07 00:00:00
redhatcve
redhatcve
CVE-2018-14404
2019-10-19 18:58:27
github
github
Nokogiri NULL Pointer Dereference
2019-01-17 14:05:03
osv
osv
Nokogiri NULL Pointer Dereference
2019-01-17 14:05:03
libxml2 - security update
2018-09-27 00:00:00
libxml2 - security update
2020-09-09 00:00:00
alpinelinux
alpinelinux
CVE-2018-14404
2018-07-19 13:29:00
broadcom
broadcom
NULL pointer dereference in libxml2 through 2.9.8
2023-08-01 00:00:00
ibm
ibm
cve
cve
CVE-2018-14404
2018-07-19 13:29:00
ubuntucve
ubuntucve
CVE-2018-14404
2018-07-19 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-1315)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:13985-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-3739-2)
2022-08-26 00:00:00
debiancve
debiancve
CVE-2018-14404
2018-07-19 13:29:00
amazon
amazon
Medium: libxml2
2018-09-05 19:31:00
Important: libxml2
2020-08-10 22:59:00
Important: libxml2
2020-07-21 16:34:00
nvd
nvd
CVE-2018-14404
2018-07-19 13:29:00
cvelist
cvelist
CVE-2018-14404
2018-07-19 13:00:00
photon
photon
ubuntu
ubuntu
libxml2 vulnerabilities
2018-08-14 00:00:00
libxml2 vulnerabilities
2018-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: libxml2-2.9.8-4.fc27
2018-08-09 16:53:03
[SECURITY] Fedora 28 Update: libxml2-2.9.8-4.fc28
2018-08-07 01:20:06
redhat
redhat
(RHSA-2020:1827) Moderate: libxml2 security update
2020-04-28 09:20:58
(RHSA-2020:1190) Moderate: libxml2 security update
2020-03-31 09:30:25
oraclelinux
oraclelinux
libxml2 security update
2020-05-05 00:00:00
libxml2 security update
2020-04-06 00:00:00
rubygems
rubygems
Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
2018-10-03 21:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerabilities
2019-01-23 18:50:09
suse
suse
Security update for libxml2 (moderate)
2018-10-12 12:12:16
Security update for rmt-server (moderate)
2019-02-14 00:00:00
Security update for libxml2 (moderate)
2018-10-12 12:10:07
debian
debian
[SECURITY] [DLA 1524-1] libxml2 security update
2018-09-27 20:04:03
[SECURITY] [DLA 2369-1] libxml2 security update
2020-09-09 22:41:50
cloudfoundry
cloudfoundry
USN-3739-1: libxml2 vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
centos
centos
libxml2 security update
2020-04-08 18:42:56
f5
f5
altlinux
altlinux
kitploit
kitploit
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00