OVAL Reference oval:org.mitre.oval:def:27021

CVE-2014-3660)"> OVAL Reference oval:org.mitre.oval:def:27021 - CERT Civis.Net

Oval Definition:

oval:org.mitre.oval:def:27021

Revision Date:	2014-12-08	Version:	4
Title:	DSA-3057-1 libxml2 - security update
Description:	Sogeti found a denial of service flaw in libxml2, a library providing support to read, modify and write XML and HTML files. A remote attacker could provide a specially crafted XML file that, when processed by an application using libxml2, would lead to excessive CPU consumption (denial of service) based on excessive entity substitutions, even if entity substitution was disabled, which is the parser default behavior. (CVE-2014-3660)
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2014-3660 DSA-3057-1
Platform(s):	Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0	Product(s):	libxml2
Definition Synopsis
Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND libxml2 DPKG is earlier than 0:2.8.0+dfsg1-7+wheezy2