~ubuntu-security/ubuntu-cve-tracker/master : contents of retired/CVE-2008-4226 at revision 13266

~ubuntu-security/ubuntu-cve-tracker/master : (revision 13266)

browse files
view with revision information
view revision
view changes to this file
download file

Candidate: CVE-2008-4226
PublicDate: 2008-11-25
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4226
 http://www.ubuntu.com/usn/usn-673-1
Description:
 Integer overflow in the xmlSAX2Characters function in libxml2 2.7.2 allows
 context-dependent attackers to cause a denial of service (memory
 corruption) or possibly execute arbitrary code via a large XML document.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: Drew Yao
Assigned-to: kees

Patches_libxml2:
upstream_libxml2: needs-triage
dapper_libxml2: released (2.6.24.dfsg-1ubuntu1.4)
gutsy_libxml2: released (2.6.30.dfsg-2ubuntu1.4)
hardy_libxml2: released (2.6.31.dfsg-2ubuntu1.3)
intrepid_libxml2: released (2.6.32.dfsg-4ubuntu1.1)
devel_libxml2: not-affected (2.6.32.dfsg-5ubuntu1)