[Bug 1274222] New: libxml2: Out-of-bounds memory access

bugzilla at redhat.com bugzilla at redhat.com
Thu Oct 22 10:02:20 UTC 2015


https://bugzilla.redhat.com/show_bug.cgi?id=1274222

            Bug ID: 1274222
           Summary: libxml2: Out-of-bounds memory access
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: low
          Priority: low
          Assignee: security-response-team at redhat.com
          Reporter: amaris at redhat.com
                CC: athmanem at gmail.com, c.david86 at gmail.com,
                    drizt at land.ru, erik-fedora at vanpienbroek.nl,
                    fedora-mingw at lists.fedoraproject.org,
                    ktietz at redhat.com, lfarkas at lfarkas.org,
                    ohudlick at redhat.com, rjones at redhat.com,
                    veillard at redhat.com, weli at redhat.com



An out-of-bounds read vulnerability was found in libxml2 with crafted xml
input.

Report can be found here:

https://bugzilla.gnome.org/show_bug.cgi?id=744980#c1

Upstream patches:

https://git.gnome.org/browse/libxml2/commit/?id=a7dfab7411cbf545f359dd3157e5df1eb0e7ce31
https://git.gnome.org/browse/libxml2/commit/?id=9b8512337d14c8ddf662fcb98b0135f225a1c489

CVE request:

http://seclists.org/oss-sec/2015/q4/127

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=DBMrfilEPi&a=cc_unsubscribe


More information about the mingw mailing list