Red Hat Security Advisory: mingw32-libxml2 security update
🔗 CVE IDs covered (11)
📋 Description
CVE-2010-4008 — libxml2: Crash (stack frame overflow or NULL pointer dereference) by traversal of XPath axis CVE-2010-4494 — libxml2: double-free in XPath processing code CVE-2011-0216 — libxml2: Off-by-one error leading to heap-based buffer overflow in encoding CVE-2011-1944 — libxml2: Heap-based buffer overflow by adding new namespace node to an existing nodeset or merging nodesets CVE-2011-2821 — libxml2: double free caused by malformed XPath expression in XSLT CVE-2011-2834 — libxml2: double-free caused by malformed XPath expression in XSLT CVE-2011-3102 — libxml: An off-by-one out-of-bounds write by XPointer part evaluation CVE-2011-3905 — libxml2 out of bounds read CVE-2011-3919 — libxml2: Heap-based buffer overflow when decoding an entity reference with a long name CVE-2012-0841 — libxml2: hash table collisions CPU usage DoS CVE-2012-5134 — libxml2: Heap-buffer-underflow in xmlParseAttValueComplex
🔗 References (14)
- selfhttps://access.redhat.com/errata/RHSA-2013:0217
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=645341
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=665963
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=709747
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=724906
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=735712
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=735751
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=767387
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=771896
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=787067
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=822109
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=880466
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0217.json