1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
|
Candidate: CVE-2008-4226
PublicDate: 2008-11-25
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4226
http://www.ubuntu.com/usn/usn-673-1
Description:
Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows
context-dependent attackers to cause a denial of service (memory
corruption) or possibly execute arbitrary code via a large XML document.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Drew Yao
Assigned-to: kees
Patches_libxml2:
upstream_libxml2: needs-triage
dapper_libxml2: released (2.6.24.dfsg-1ubuntu1.4)
gutsy_libxml2: released (2.6.30.dfsg-2ubuntu1.4)
hardy_libxml2: released (2.6.31.dfsg-2ubuntu1.3)
intrepid_libxml2: released (2.6.32.dfsg-4ubuntu1.1)
devel_libxml2: not-affected (2.6.32.dfsg-5ubuntu1)
|