Lucene search
Veracode Vulnerability DatabaseVERACODE:4254HistoryMay 18, 2017 - 6:54 a.m.
Denial Of Service (DoS) Through Embedded C Library
2017-05-1806:54:39
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
21
EPSS
0.007
Percentile
79.9%
The nokogiri gem is using libxml2 which is vulnerable to CVE-2016-3627. CVE-2016-3627 is a denial of service (DoS) vulnerability. It is possible because the xmlStringGetNodeList and xmlParserEntityCheck functions fail to detect a recursive loop when it is used in recovery mode, causing stack consumption and application crashes.
Related
debiancve
debiancve
nvd
nvd
cve
cve
prion
prion
Design/Logic Flaw
2018-08-16 20:29:00
Code injection
2016-05-17 14:08:00
Out-of-bounds
2017-04-11 16:59:00
cvelist
cvelist
ubuntucve
ubuntucve
packetstorm
packetstorm
libxml 2.9.2 Stack Overflow
2016-05-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:34:53
Vulnerable Through Use Of C Library
2017-04-12 01:37:48
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:1204-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1205-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1208)
2020-03-13 00:00:00
ibm
ibm
Security Bulletin: IBM Security Guardium Database Activity Monitor is affected by Open Source XMLsoft Libxml2 Vulnerabilities (CVE-2016-3627)
2018-06-16 21:46:44
nessus
nessus
openSUSE Security Update : libxml2 (openSUSE-2016-583)
2016-05-16 00:00:00
SUSE SLED12 / SLES12 Security Update : libxml2 (SUSE-SU-2016:1204-1)
2016-05-04 00:00:00
SUSE SLES11 Security Update : libxml2 (SUSE-SU-2016:1205-1)
2016-05-04 00:00:00
redhatcve
redhatcve
CVE-2016-4483
2016-05-04 07:49:18
mageia
mageia
Updated libxml2 packages fix security vulnerability
2016-05-20 14:38:30
f5
f5
K54225343 : libxml2 vulnerabilities CVE-2016-3627 and CVE-2016-3705
2016-07-18 00:00:00
SOL54225343 - libxml2 vulnerabilities CVE-2016-3627 and CVE-2016-3705
2016-07-18 00:00:00
osv
osv
CVE-2016-9596
2018-08-16 20:29:00
python-libxml2-2.9.4-1.4 on GA media
2024-06-15 00:00:00
CVE-2021-3518
2021-05-18 12:15:08
archlinux
archlinux
libxml2: multiple issues
2016-05-26 00:00:00
suse
suse
Security update for libxml2 (important)
2016-06-16 13:08:21
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
rosalinux
rosalinux
Advisory ROSA-SA-2021-1905
2021-07-02 17:25:35
centos
centos
libxml2 security update
2016-06-23 15:28:21
altlinux
altlinux
redhat
redhat
amazon
amazon
Important: libxml2
2016-07-14 16:30:00
freebsd
freebsd
libxml2 -- multiple vulnerabilities
2016-05-23 00:00:00
debian
debian
[SECURITY] [DLA 503-1] libxml2 security update
2016-06-03 19:22:01
[SECURITY] [DSA 3593-1] libxml2 security update
2016-06-02 20:28:31
[SECURITY] [DSA 3593-1] libxml2 security update
2016-06-02 20:28:31
oraclelinux
oraclelinux
libxml2 security update
2016-06-23 00:00:00
symantec
symantec
SA129 : Multiple libxml2 Vulnerabilities
2016-09-01 08:00:00
cloudfoundry
cloudfoundry
USN-2994-1 libxml2 vulnerabilities | Cloud Foundry
2016-06-13 00:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2016-06-06 00:00:00
gentoo
gentoo
libxml2: Multiple vulnerabilities
2017-01-16 00:00:00
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47