[Bug 1277146] New: libxml2: DoS when parsing specially crafted XML document if XZ support is enabled

Monday, 2 November 2015

https://bugzilla.redhat.com/show_bug.cgi?id=1277146

            Bug ID: 1277146
           Summary: libxml2: DoS when parsing specially crafted XML
                    document if XZ support is enabled
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: medium
          Priority: medium
          Assignee: security-response-team(a)redhat.com
          Reporter: amaris(a)redhat.com
                CC: athmanem(a)gmail.com, c.david86(a)gmail.com,
                    erik-fedora(a)vanpienbroek.nl,
                    fedora-mingw(a)lists.fedoraproject.org,
                    ktietz(a)redhat.com, lfarkas(a)lfarkas.org,
                    ohudlick(a)redhat.com, rjones(a)redhat.com,
                    veillard(a)redhat.com

A vulnerability in libxml2 when parsing specially crafted XML document if XZ
support is enabled causing DoS of application was found.

CVE request (including reproducer):

http://seclists.org/oss-sec/2015/q4/206

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug
https://bugzilla.redhat.com/token.cgi?t=5GhAg1MnGX&a=cc_unsubscribe

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[Bug 1277146] New: libxml2: DoS when parsing specially crafted XML document if XZ support is enabled