Back to bug 1319829
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Andrej Nemec | 2016-03-21 15:47:55 UTC | Depends On | 1319830 | |
| Andrej Nemec | 2016-03-21 15:48:03 UTC | Depends On | 1319831 | |
| Andrej Nemec | 2016-03-21 15:48:12 UTC | Depends On | 1319832 | |
| Andrej Nemec | 2016-03-21 15:50:30 UTC | Blocks | 1319834 | |
| Slawomir Czarko | 2016-03-22 08:42:29 UTC | CC | slawomir | |
| Salvatore Bonaccorso | 2016-03-22 18:25:10 UTC | CC | carnil | |
| Norman Sardella | 2016-05-11 13:41:01 UTC | CC | sardella | |
| Huzaifa S. Sidhpurwala | 2016-05-25 05:59:33 UTC | Whiteboard | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-121,rhel-5/libxml2=affected,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jboss/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-121,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jboss/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected |
| Cedric Buissart | 2016-05-27 07:02:49 UTC | Whiteboard | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-121,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jboss/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jboss/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected |
| Cedric Buissart | 2016-05-27 07:18:38 UTC | Doc Text | Missing recurcive loop detection checks were found in the xmlParserEntityCheck() and xmlStringGetNodeList() functions of libxml2, causing application using the library to crash by stack exhaustion while building the associated data. An attacker able to send XML data to be parsed in recovery mode could launch a Denial of Service on the application. | |
| Cedric Buissart | 2016-05-27 07:36:52 UTC | CC | cbuissar | |
| Blocks | 1319834 | 1332827 | ||
| Huzaifa S. Sidhpurwala | 2016-05-27 08:00:29 UTC | Depends On | 1340367 | |
| Huzaifa S. Sidhpurwala | 2016-05-27 08:00:37 UTC | Depends On | 1340369 | |
| Huzaifa S. Sidhpurwala | 2016-05-27 08:00:44 UTC | Depends On | 1340370 | |
| Huzaifa S. Sidhpurwala | 2016-05-27 08:00:50 UTC | Depends On | 1340371 | |
| Eric Christensen | 2016-06-01 16:33:22 UTC | Doc Text | Missing recurcive loop detection checks were found in the xmlParserEntityCheck() and xmlStringGetNodeList() functions of libxml2, causing application using the library to crash by stack exhaustion while building the associated data. An attacker able to send XML data to be parsed in recovery mode could launch a Denial of Service on the application. | Missing recursive loop detection checks were found in the xmlParserEntityCheck() and xmlStringGetNodeList() functions of libxml2, causing application using the library to crash by stack exhaustion while building the associated data. An attacker able to send XML data to be parsed in recovery mode could launch a Denial of Service on the application. |
| Timothy Walsh | 2016-06-06 05:15:55 UTC | Whiteboard | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jboss/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jbews-3/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected |
| Timothy Walsh | 2016-06-06 05:16:03 UTC | CC | csutherl, dknox, jclere, lgao, mbabacek, myarboro, twalsh, weli | |
| Huzaifa S. Sidhpurwala | 2016-06-20 04:19:14 UTC | Depends On | 1340367 | |
| Huzaifa S. Sidhpurwala | 2016-06-20 04:19:59 UTC | Depends On | 1340367 | |
| Timothy Walsh | 2017-01-19 06:55:25 UTC | Blocks | 1395463 | |
| Timothy Walsh | 2017-01-19 07:27:19 UTC | Blocks | 1340339 | |
| Timothy Walsh | 2017-03-08 06:02:34 UTC | Blocks | 1340339 | |
| Timothy Walsh | 2017-03-13 03:35:03 UTC | CC | gzaronik, mturk | |
| Whiteboard | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jbews-3/libxml2=affected,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jbews-3/libxml2=wontfix,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected,jbcs-1/httpd=affected | ||
| Product Security DevOps Team | 2019-06-08 02:50:01 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:50:01 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:45:56 UTC | Whiteboard | impact=moderate,public=20160321,reported=20160321,source=oss-security,cvss2=4.3/AV:N/AC:M/Au:N/C:N/I:N/A:P,cwe=CWE-674,rhel-5/libxml2=wontfix,rhel-6/libxml2=affected,rhel-7/libxml2=affected,jbews-3/libxml2=wontfix,fedora-all/libxml2=affected,fedora-all/mingw-libxml2=affected,epel-7/mingw-libxml2=affected,jbcs-1/httpd=affected | |
| Stanislav Ochotnicky | 2020-12-15 08:51:16 UTC | See Also | https://issues.redhat.com/browse/JWS-440, https://issues.redhat.com/browse/JBCS-101 |
Back to bug 1319829