Lucene search
Veracode Vulnerability DatabaseVERACODE:7101HistoryJul 19, 2018 - 2:58 a.m.
Denial Of Service (DoS)
2018-07-1902:58:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
0.03 Low
EPSS
Percentile
90.9%
libxml2 is affected by a denial-of-service (DoS) vulnerability. In xpath.c:xmlXPathCompOpEval(), the cases XPATH_OP_AND and XPATH_OP_OR does not check for NULL values when assigning valuePop(ctxt) which can result in a NULL pointer deference leading to a denial of service condition.
References
access.redhat.com/errata/RHSA-2019:1543
bugs.debian.org/cgi-bin/bugreport.cgi?bug=901817
bugzilla.redhat.com/show_bug.cgi?id=1595985
gitlab.gnome.org/GNOME/libxml2/issues/10
lists.debian.org/debian-lts-announce/2018/09/msg00035.html
lists.debian.org/debian-lts-announce/2020/09/msg00009.html
security.netapp.com/advisory/ntap-20190719-0002/
usn.ubuntu.com/3739-1/
usn.ubuntu.com/3739-2/
Related
nessus
nessus
Photon OS 1.0: Libxml2 PHSA-2018-1.0-0193
2019-02-07 00:00:00
Photon OS 2.0: Libxml2 PHSA-2018-2.0-0106
2019-02-07 00:00:00
EulerOS 2.0 SP2 : libxml2 (EulerOS-SA-2019-1315)
2019-05-01 00:00:00
redhatcve
redhatcve
CVE-2018-14404
2019-10-19 18:58:27
github
github
Nokogiri NULL Pointer Dereference
2019-01-17 14:05:03
prion
prion
Null pointer dereference
2018-07-19 13:29:00
alpinelinux
alpinelinux
CVE-2018-14404
2018-07-19 13:29:00
osv
osv
Nokogiri NULL Pointer Dereference
2019-01-17 14:05:03
libxml2 - security update
2018-09-27 00:00:00
libxml2 - security update
2020-09-09 00:00:00
broadcom
broadcom
NULL pointer dereference in libxml2 through 2.9.8
2023-08-01 00:00:00
ibm
ibm
debiancve
debiancve
CVE-2018-14404
2018-07-19 13:29:00
cve
cve
CVE-2018-14404
2018-07-19 13:29:00
ubuntucve
ubuntucve
CVE-2018-14404
2018-07-19 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2019-1315)
2020-01-23 00:00:00
Fedora Update for libxml2 FEDORA-2018-e198cf4a64
2018-08-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:13985-1)
2021-06-09 00:00:00
amazon
amazon
Medium: libxml2
2018-09-05 19:31:00
Important: libxml2
2020-08-10 22:59:00
Important: libxml2
2020-07-21 16:34:00
nvd
nvd
CVE-2018-14404
2018-07-19 13:29:00
cvelist
cvelist
CVE-2018-14404
2018-07-19 13:00:00
redhat
redhat
(RHSA-2020:1827) Moderate: libxml2 security update
2020-04-28 09:20:58
(RHSA-2020:1190) Moderate: libxml2 security update
2020-03-31 09:30:25
ubuntu
ubuntu
libxml2 vulnerabilities
2018-08-14 00:00:00
libxml2 vulnerabilities
2018-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: libxml2-2.9.8-4.fc27
2018-08-09 16:53:03
[SECURITY] Fedora 28 Update: libxml2-2.9.8-4.fc28
2018-08-07 01:20:06
photon
photon
oraclelinux
oraclelinux
libxml2 security update
2020-05-05 00:00:00
libxml2 security update
2020-04-06 00:00:00
mageia
mageia
Updated libxml2 packages fix security vulnerabilities
2019-01-23 18:50:09
rubygems
rubygems
Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
2018-10-03 21:00:00
suse
suse
Security update for libxml2 (moderate)
2018-10-12 12:12:16
Security update for rmt-server (moderate)
2019-02-14 00:00:00
Security update for libxml2 (moderate)
2018-10-12 12:10:07
debian
debian
[SECURITY] [DLA 1524-1] libxml2 security update
2018-09-27 20:04:03
[SECURITY] [DLA 2369-1] libxml2 security update
2020-09-09 22:41:50
cloudfoundry
cloudfoundry
USN-3739-1: libxml2 vulnerabilities | Cloud Foundry
2018-09-11 00:00:00
veracode
veracode
Copy-Paste Vulnerability (CPV) Through Libxml2
2018-10-16 03:04:15
centos
centos
libxml2 security update
2020-04-08 18:42:56
f5
f5
altlinux
altlinux
kitploit
kitploit
tenable
tenable
[R1] Nessus Network Monitor 6.2.2 Fixes Multiple Vulnerabilities
2023-06-29 10:45:47
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00