FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2008-4226

This CVE name corresponds to:

Entered Topic
2008-11-19 libxml2 -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2008-4226
Phase Assigned(20080924)

Description

Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows context-dependent attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a large XML document.

References

Source Reference
CONFIRM http://wiki.rpath.com/Advisories:rPSA-2008-0325
CONFIRM https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc10
CONFIRM https://admin.fedoraproject.org/updates/libxml2-2.7.2-2.fc9
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=470466
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-002.htm
CONFIRM http://www.vmware.com/security/advisories/VMSA-2009-0001.html
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2009-067.htm
CONFIRM http://support.apple.com/kb/HT3613
CONFIRM http://support.apple.com/kb/HT3639
CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-126356-03-1
CONFIRM http://sunsolve.sun.com/search/document.do?assetkey=1-21-141243-01-1
APPLE APPLE-SA-2009-06-08-1
APPLE APPLE-SA-2009-06-17-1
DEBIAN DSA-1666
FEDORA FEDORA-2008-9729
FEDORA FEDORA-2008-9773
GENTOO GLSA-200812-06
HP HPSBMA02492
HP SSRT100079
MANDRIVA MDVSA-2008:231
REDHAT RHSA-2008:0988
SLACKWARE SSA:2008-324-01
SUNALERT 251406
SUNALERT 261688
SUNALERT 265329
SUSE SUSE-SR:2008:026
UBUNTU USN-673-1
BID 32326
OVAL oval:org.mitre.oval:def:6219
OVAL oval:org.mitre.oval:def:6360
OVAL oval:org.mitre.oval:def:9888
SECUNIA 33746
SECUNIA 34247
SECUNIA 35379
SECUNIA 36173
SECUNIA 36235
VUPEN ADV-2008-3176
VUPEN ADV-2009-0301
VUPEN ADV-2009-0034
VUPEN ADV-2009-0323
OSVDB 49993
SECTRACK 1021238
SECUNIA 32762
SECUNIA 32764
SECUNIA 32766
SECUNIA 32773
SECUNIA 32802
SECUNIA 32807
SECUNIA 32811
SECUNIA 32872
SECUNIA 33417
SECUNIA 32974
SECUNIA 33792
VUPEN ADV-2009-1522
VUPEN ADV-2009-1621