Libxml2 'parser.c' Buffer Overflow Vulnerability

Bugtraq ID: 77621
Class: Boundary Condition Error
CVE: CVE-2015-8241
Remote: Yes
Local: No
Published: Nov 18 2015 12:00AM
Updated: Feb 24 2016 12:35PM
Credit: Hugh Davenport
Vulnerable: XMLSoft Libxml2 2.7.8
XMLSoft Libxml2 2.7.7
XMLSoft Libxml2 2.7.6
XMLSoft Libxml2 2.7.5
XMLSoft Libxml2 2.7.4
XMLSoft Libxml2 2.7.3
XMLSoft Libxml2 2.7.2
XMLSoft Libxml2 2.7.1
+ Red Hat Fedora 9
+ Red Hat Fedora 8
XMLSoft Libxml2 2.7
XMLSoft Libxml2 2.6.32
XMLSoft Libxml2 2.6.31
XMLSoft Libxml2 2.6.30
XMLSoft Libxml2 2.6.26
XMLSoft Libxml2 2.6.22
XMLSoft Libxml2 2.6.20
XMLSoft Libxml2 2.6.18
XMLSoft Libxml2 2.6.17
XMLSoft Libxml2 2.6.16
XMLSoft Libxml2 2.6.15
XMLSoft Libxml2 2.6.14
XMLSoft Libxml2 2.6.13
XMLSoft Libxml2 2.6.12
XMLSoft Libxml2 2.6.11
XMLSoft Libxml2 2.6.9
XMLSoft Libxml2 2.6.8
+ Red Hat Fedora Core2
XMLSoft Libxml2 2.6.7
XMLSoft Libxml2 2.6.6
XMLSoft Libxml2 2.6.5
XMLSoft Libxml2 2.6.4
XMLSoft Libxml2 2.6.3
XMLSoft Libxml2 2.6.2
XMLSoft Libxml2 2.6.1
XMLSoft Libxml2 2.6 .0
XMLSoft Libxml2 2.5.11
+ Mandriva Linux Mandrake 9.2 amd64
+ Mandriva Linux Mandrake 9.2
XMLSoft Libxml2 2.5.10
XMLSoft Libxml2 2.5.8
XMLSoft Libxml2 2.5.4
+ Mandriva Linux Mandrake 9.1 ppc
+ Mandriva Linux Mandrake 9.1
XMLSoft Libxml2 2.5.1
XMLSoft Libxml2 2.4.30
XMLSoft Libxml2 2.4.29
XMLSoft Libxml2 2.4.28
XMLSoft Libxml2 2.4.27
XMLSoft Libxml2 2.4.26
XMLSoft Libxml2 2.4.24
XMLSoft Libxml2 2.4.23
XMLSoft Libxml2 2.4.22
XMLSoft Libxml2 2.4.21
XMLSoft Libxml2 2.4.20
XMLSoft Libxml2 2.4.19
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
XMLSoft Libxml2 2.4.18
XMLSoft Libxml2 2.4.17
XMLSoft Libxml2 2.4.16
XMLSoft Libxml2 2.4.15
XMLSoft Libxml2 2.4.14
XMLSoft Libxml2 2.4.13
XMLSoft Libxml2 2.4.12
XMLSoft Libxml2 2.4.11
XMLSoft Libxml2 2.4.10
XMLSoft Libxml2 2.4.9
XMLSoft Libxml2 2.4.8
XMLSoft Libxml2 2.4.7
XMLSoft Libxml2 2.4.6
XMLSoft Libxml2 2.4.5
XMLSoft Libxml2 2.4.4
XMLSoft Libxml2 2.4.3
XMLSoft Libxml2 2.4.2
XMLSoft Libxml2 2.3.14
XMLSoft Libxml2 2.3.13
XMLSoft Libxml2 2.3.12
XMLSoft Libxml2 2.3.10
XMLSoft Libxml2 2.3.8
XMLSoft Libxml2 2.3.7
XMLSoft Libxml2 2.3.6
XMLSoft Libxml2 2.3.5
XMLSoft Libxml2 2.3.4
XMLSoft Libxml2 2.2.11
XMLSoft Libxml2 2.2.10
XMLSoft Libxml2 2.2.7
XMLSoft Libxml2 2.2.6
XMLSoft Libxml2 2.2.5
XMLSoft Libxml2 2.2.4
XMLSoft Libxml2 2.2.3
XMLSoft Libxml2 1.8.14
XMLSoft Libxml2 1.8.10
XMLSoft Libxml2 1.8.9
XMLSoft Libxml2 1.8.5
XMLSoft Libxml2 1.8.4
XMLSoft Libxml2 1.8.3
XMLSoft Libxml2 1.8.1
XMLSoft Libxml2 1.8.1
XMLSoft Libxml2 1.7.4
XMLSoft Libxml2 1.7
XMLSoft Libxml2 2.6.27
XMLSoft Libxml2 2.6.0
XMLSoft Libxml2 2.5.7
XMLSoft Libxml2 2.5.0
XMLSoft Libxml2 2.4.25
XMLSoft Libxml2 2.4.1
XMLSoft Libxml2 2.3.3
XMLSoft Libxml2 2.3.2
XMLSoft Libxml2 2.3.11
XMLSoft Libxml2 2.3.1
XMLSoft Libxml2 2.3.0
XMLSoft Libxml2 2.2.9
XMLSoft Libxml2 2.2.8
XMLSoft Libxml2 2.2.2
XMLSoft Libxml2 2.2.1
XMLSoft Libxml2 2.2.0
XMLSoft Libxml2 2.1.1
XMLSoft Libxml2 2.1.0
XMLSoft Libxml2 2.0.0
XMLSoft Libxml2 1.8.7
XMLSoft Libxml2 1.8.6
XMLSoft Libxml2 1.8.16
XMLSoft Libxml2 1.8.13
XMLSoft Libxml2 1.7.3
XMLSoft Libxml2 1.7.2
XMLSoft Libxml2 1.7.1
Red Hat Enterprise Linux Workstation Optional 6
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server Optional 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux HPC Node Optional 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Desktop Optional 6
Red Hat Enterprise Linux Desktop 6
Oracle Linux 0
IBM Aix 7.1.1
IBM Aix 7.1
IBM Aix 6.1.7
IBM Aix 6.1.6
IBM AIX 6.1.5
IBM AIX 6.1.4
IBM AIX 6.1.3
IBM AIX 6.1.2
IBM AIX 6.1.1
IBM AIX 5.3.10
IBM AIX 5.3.9
IBM AIX 5.3.8
IBM AIX 5.3.7
IBM AIX 5.3.12
IBM AIX 5.3.11
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus