LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

libxml2: code execution

Package(s):libxml2 CVE #(s):CVE-2011-1944
Created:June 16, 2011 Updated:March 1, 2013
Description:

From the Ubuntu advisory:

Chris Evans discovered that libxml2 incorrectly handled memory allocation. If an application using libxml2 opened a specially crafted XML file, an attacker could cause a denial of service or possibly execute code as the user invoking the program.

Alerts:
Scientific Linux SL-libx-20111206 2011-12-06
Red Hat RHSA-2011:1749-03 2011-12-06
Gentoo 201110-26 2011-10-26
Mandriva MDVSA-2011:131-1 2011-10-09
Mandriva MDVSA-2011:131 2011-09-05
openSUSE openSUSE-SU-2011:0839-1 2011-07-26
Fedora FEDORA-2011-7856 2011-06-03
Fedora FEDORA-2011-7820 2011-06-03
Ubuntu USN-1153-1 2011-06-16
Red Hat RHSA-2012:0017-01 2012-01-11
CentOS CESA-2012:0017 2012-01-11
Scientific Linux SL-libx-20120112 2012-01-12
Oracle ELSA-2012-0017 2012-01-12
Oracle ELSA-2012-0324 2012-03-09
Oracle ELSA-2012-1288 2012-09-18
Oracle ELSA-2012-1288 2012-09-18
Fedora FEDORA-2012-13820 2012-09-26
Fedora FEDORA-2012-13824 2012-09-27
Red Hat RHSA-2013:0217-01 2013-01-31
CentOS CESA-2013:0217 2013-02-01
Oracle ELSA-2013-0217 2013-02-01
Scientific Linux SL-ming-20130201 2013-02-01
Oracle ELSA-2013-0581 2013-03-01
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds