Lucene search
Ubuntu.comUB:CVE-2019-19956HistoryDec 24, 2019 - 12:00 a.m.
CVE-2019-19956
2019-12-2400:00:00
ubuntu.com
ubuntu.com
9
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
74.7%
xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has
a memory leak related to newDoc->oldNs.
Bugs
Notes
| Author | Note |
|---|---|
| ccdm94 | the fix for this issue, made available with commit 5a02583c, was reverted in version 2.9.11 with commit a0a8059b, since it seems like the fix introduced various memory issues in libxml2. More information regarding this choice made by upstream can be seen at: https://gitlab.gnome.org/GNOME/libxml2/-/issues/161 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 18.04 | noarch | libxml2 | < 2.9.4+dfsg1-6.1ubuntu1.3 | UNKNOWN |
| ubuntu | 19.10 | noarch | libxml2 | < 2.9.4+dfsg1-7ubuntu3.1 | UNKNOWN |
| ubuntu | 20.04 | noarch | libxml2 | < 2.9.10+dfsg-1ubuntu2 | UNKNOWN |
| ubuntu | 14.04 | noarch | libxml2 | < 2.9.1+dfsg1-3ubuntu4.13+esm1 | UNKNOWN |
| ubuntu | 16.04 | noarch | libxml2 | < 2.9.3+dfsg1-1ubuntu0.7 | UNKNOWN |
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2020:1532-1)
2020-06-18 00:00:00
EulerOS 2.0 SP5 : libxml2 (EulerOS-SA-2020-1117)
2020-02-24 00:00:00
SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2020:1532-2)
2020-07-16 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0203
2020-02-01 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0271
2020-02-05 00:00:00
Important Photon OS Security Update - PHSA-2020-0271
2020-02-05 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:1532-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2020-0271)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1117)
2020-02-24 00:00:00
suse
suse
Security update for libxml2 (moderate)
2020-06-08 00:00:00
Security update for libxml2 (moderate)
2020-05-23 00:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerability
2020-07-05 01:47:21
Updated libxml2 packages fix security vulnerability
2020-01-05 18:37:51
prion
prion
Memory corruption
2019-12-24 16:15:00
cve
cve
CVE-2019-19956
2019-12-24 16:15:11
alpinelinux
alpinelinux
CVE-2019-19956
2019-12-24 16:15:11
cvelist
cvelist
CVE-2019-19956
2019-12-24 15:12:57
redhatcve
redhatcve
CVE-2019-19956
2020-01-08 09:59:17
nvd
nvd
CVE-2019-19956
2019-12-24 16:15:11
osv
osv
libxml2 - security update
2019-12-28 00:00:00
libxml2 - security update
2020-09-09 00:00:00
CVE-2019-19956
2019-12-24 16:15:11
veracode
veracode
Denial Of Service (DoS)
2020-01-21 03:40:01
debiancve
debiancve
CVE-2019-19956
2019-12-24 16:15:11
debian
debian
[SECURITY] [DLA 2048-1] libxml2 security update
2019-12-28 17:59:43
[SECURITY] [DLA 2369-1] libxml2 security update
2020-09-09 22:41:50
ics
ics
Siemens SINEMA Remote Connect Server
2021-04-13 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2020-02-10 00:00:00
cloudfoundry
cloudfoundry
USN-4274-1: libxml2 vulnerabilities | Cloud Foundry
2020-02-20 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: mingw-libxml2-2.9.10-1.fc32
2020-05-01 04:08:08
[SECURITY] Fedora 30 Update: libxml2-2.9.10-3.fc30
2020-04-30 02:51:35
[SECURITY] Fedora 31 Update: mingw-libxml2-2.9.10-3.fc31
2020-09-19 22:45:29
redhat
redhat
(RHSA-2020:4479) Moderate: libxml2 security update
2020-11-03 12:08:23
(RHSA-2020:3996) Moderate: libxml2 security and bug fix update
2020-09-29 07:49:53
ibm
ibm
oraclelinux
oraclelinux
libxml2 security and bug fix update
2020-10-06 00:00:00
libxml2 security update
2020-11-10 00:00:00
amazon
amazon
Medium: libxml2
2020-10-22 18:25:00
Medium: libxml2
2020-10-26 18:09:00
almalinux
almalinux
Moderate: libxml2 security update
2020-11-03 12:08:23
centos
centos
libxml2 security update
2020-10-20 18:27:26
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - July 2020
2020-07-14 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
74.7%
Related for UB:CVE-2019-19956