FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2008-4225

This CVE name corresponds to:

Entered Topic
2008-11-19 libxml2 -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2008-4225 at cve.mitre.org

Details

Type Candidate
Name CVE-2008-4225
Phase Assigned(20080924)

Description

Integer overflow in the xmlBufferResize function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (infinite loop) via a large XML document.

References

Source Reference
CONFIRM http://wiki.rpath.com/Advisories:rPSA-2008-0325
CONFIRM https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10
CONFIRM https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=470480
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm
CONFIRM http://www.vmware.com/security/advisories/VMSA-2009-0001.html
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm
CONFIRM http://support.apple.com/kb/HT3613
CONFIRM http://support.apple.com/kb/HT3639
CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1
CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1
APPLE APPLE-SA-2009-06-08-1
APPLE APPLE-SA-2009-06-17-1
DEBIAN DSA-1666
FEDORA FEDORA-2008-9729
FEDORA FEDORA-2008-9773
GENTOO GLSA-200812-06
MANDRIVA MDVSA-2008:231
REDHAT RHSA-2008:0988
SLACKWARE SSA:2008-324-01
SUNALERT 251406
SUNALERT 261688
SUNALERT 265329
UBUNTU USN-673-1
BID 32331
OVAL oval:org.mitre.oval:def:6234
OVAL oval:org.mitre.oval:def:10025
OVAL oval:org.mitre.oval:def:6415
SECUNIA 33746
SECUNIA 34247
SECUNIA 35379
SECUNIA 36173
SECUNIA 36235
VUPEN ADV-2008-3176
VUPEN ADV-2009-0301
VUPEN ADV-2009-0034
VUPEN ADV-2009-0323
OSVDB 49992
SECTRACK 1021239
SECUNIA 32762
SECUNIA 32764
SECUNIA 32766
SECUNIA 32773
SECUNIA 32802
SECUNIA 32807
SECUNIA 32811
SECUNIA 33417
SECUNIA 32974
SECUNIA 33792
VUPEN ADV-2009-1522
VUPEN ADV-2009-1621

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.