Oval Definition:
oval:org.mitre.oval:def:21731
Revision Date
:
2014-05-26
Version
:
13
Title
:
ELSA-2008:0836: libxml2 security update (Moderate)
Description
:
libxml2 2.6.32 and earlier does not properly detect recursion during entity expansion in an attribute value, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2008-3281
ELSA-2008:0836-04
Platform(s)
:
Oracle Linux 5
Product(s)
:
libxml2
Definition Synopsis
Oracle Linux 5.x
AND
rpm test
libxml2 is earlier than 0:2.6.26-2.1.2.4
OR
libxml2-devel is earlier than 0:2.6.26-2.1.2.4
OR
libxml2-python is earlier than 0:2.6.26-2.1.2.4
BACK