Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]
- Debian Security Advisory 5391-1[6]
- Authored by Debian[7] | Site debian.org[8]
-
Debian Linux Security Advisory 5391-1 - Several vulnerabilities were discovered in libxml2, a library providing support to read, modify and write XML and HTML files.
- systems | linux[9], debian[10]
- advisories | CVE-2023-28484[11], CVE-2023-29469[12]
- SHA-256 |
9cd75b445effca193e2f20c2fe8ad3e93229612401b307adc7cea3a859007c4f - Download[13] | Favorite[14] | View[15]
Change Mirror[16] Download[17]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5391-1 Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.
https://www.debian.org/security/ Salvatore Bonaccorso
April 20, 2023 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : libxml2
CVE ID : CVE-2023-28484 CVE-2023-29469
Debian Bug : 1034436 1034437
Several vulnerabilities were discovered in libxml2, a library providing
support to read, modify and write XML and HTML files.
CVE-2023-28484
A NULL pointer dereference flaw when parsing invalid XML schemas may
result in denial of service.
CVE-2023-29469
It was reported that when hashing empty strings which aren't
null-terminated, xmlDictComputeFastKey could produce inconsistent
results, which may lead to various logic or memory errors.
For the stable distribution (bullseye), these problems have been fixed in
version 2.9.10+dfsg-6.7+deb11u4.
We recommend that you upgrade your libxml2 packages.
For the detailed security status of libxml2 please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/libxml2
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.
-----BEGIN PGP SIGNATURE-----
iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmRBo8BfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND
z0SJJg//UIK3AxfSJq/tbbIu1hav33WMU6LMM0Jg/eEFB6gY4NFM45GMFn4UuSVb
uenD4Nx5CyRnahhypbxzZdsVO9DjrAGjBpoyjlOHNQPddHRYbujZU0gVHwfam50f
KJjdnkzFwsxkTOwF0UloNwqAvBUp2LG5Eqjz1CPvcbAAyRYIyyYdj3uLRuz/Zv8J
6z/nvDndCsN4RWqioGvaH084Y0QsmkGV7devmEDZ9ybiiGBQ4Dq3H2aTMYwx63Mc
N7kbcGEZiuBT4S5fZXzmlH5lEKjlSbOzhqXyL4UxnrXs7RaAc+qqamokTKyy2hzf
aW7zoEPymSl7Zoix3r8BR4GZs6HlPUhwOdnuRhqqOzF1Q2qmefj5GtlmuhtSmZKa
n8AdLuFEp42Rxii6u8UJZ7RS3lqH70RgMgBKtjLD4TX6RpisSwGzrjKh7AonFLPF
eaEXbABD8/wTePQCbzYNn8xWgkT8A4a3PRnQEwFJO51ajhx772O9XepqSh46INnx
raxFAyOPveHXfi+6msmP7gf5TxNa9FA69eQOoyZJpMxlm8u4DvPNPN75TdA4alMD
g5l41yCec745vFt1lhBHki//CTey7NCi5ElqBKlvoQV7SgIUeHW5U6TWDgWTTfZN
69MWFk14M7ddEP+0cckyTcHun2vid7dm84iEwwbg0dMHcmpDV1Y=
=btNX
-----END PGP SIGNATURE-----
Follow us on
Facebook
Subscribe to an RSS
FeedFile Tags
- ActiveX[23] (932)
- Advisory[24] (80,782)
- Arbitrary[25] (15,968)
- BBS[26] (2,859)
- Bypass[27] (1,660)
- CGI[28] (1,024)
- Code Execution[29] (7,094)
- Conference[30] (677)
- Cracker[31] (840)
- CSRF[32] (3,311)
- DoS[33] (23,002)
- Encryption[34] (2,359)
- Exploit[35] (50,923)
- File Inclusion[36] (4,189)
- File Upload[37] (951)
- Firewall[38] (821)
- Info Disclosure[39] (2,700)
- Intrusion Detection[40] (879)
- Java[41] (2,967)
- JavaScript[42] (834)
- Kernel[43] (6,500)
- Local[44] (14,338)
- Magazine[45] (586)
- Overflow[46] (12,557)
- Perl[47] (1,419)
- PHP[48] (5,113)
- Proof of Concept[49] (2,299)
- Protocol[50] (3,515)
- Python[51] (1,489)
- Remote[52] (30,383)
- Root[53] (3,543)
- Rootkit[54] (505)
- Ruby[55] (604)
- Scanner[56] (1,633)
- Security Tool[57] (7,835)
- Shell[58] (3,146)
- Shellcode[59] (1,210)
- Sniffer[60] (892)
- Spoof[61] (2,187)
- SQL Injection[62] (16,190)
- TCP[63] (2,389)
- Trojan[64] (687)
- UDP[65] (882)
- Virus[66] (663)
- Vulnerability[67] (31,446)
- Web[68] (9,499)
- Whitepaper[69] (3,740)
- x86[70] (948)
- XSS[71] (17,617)
- Other[72]
File Archives
- April 2023[73]
- March 2023[74]
- February 2023[75]
- January 2023[76]
- December 2022[77]
- November 2022[78]
- October 2022[79]
- September 2022[80]
- August 2022[81]
- July 2022[82]
- June 2022[83]
- May 2022[84]
- Older[85]
Systems
- AIX[86] (426)
- Apple[87] (1,966)
- BSD[88] (372)
- CentOS[89] (57)
- Cisco[90] (1,920)
- Debian[91] (6,726)
- Fedora[92] (1,691)
- FreeBSD[93] (1,244)
- Gentoo[94] (4,288)
- HPUX[95] (878)
- iOS[96] (342)
- iPhone[97] (108)
- IRIX[98] (220)
- Juniper[99] (67)
- Linux[100] (45,310)
- Mac OS X[101] (684)
- Mandriva[102] (3,105)
- NetBSD[103] (256)
- OpenBSD[104] (482)
- RedHat[105] (13,022)
- Slackware[106] (941)
- Solaris[107] (1,609)
- SUSE[108] (1,444)
- Ubuntu[109] (8,511)
- UNIX[110] (9,220)
- UnixWare[111] (185)
- Windows[112] (6,539)
- Other[113]
© 2022 Packet Storm. All rights reserved.
- Services
- Security Services[124]
- Hosting By
- Rokasec[125]
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Read more https://packetstormsecurity.com/files/171973/dsa-5391-1.txt
