Bug 983204 (CVE-2013-2877)
Summary: | CVE-2013-2877 libxml2: Out-of-bounds read via a document that ends abruptly | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | unspecified | CC: | c.david86, huzaifas, jrusnack, mcermak, ohudlick, sardella, veillard |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | libxml 2.9.0 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2015-12-01 08:39:44 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 983206, 1093090, 1093091 | ||
Bug Blocks: | 983207 |
Description
Jan Lieskovsky
2013-07-10 17:19:40 UTC
This issue affects the versions of the libxml2 package, as shipped with Red Hat Enterprise Linux 5 and 6. -- This issue affects the version of the libxml2 package, as shipped with Fedora release of 17. Please schedule an update. -- This issue did NOT affect the versions of the libxml2 package, as shipped with Fedora release of 18 and 19 (the libxml2 package versions got already update wrt to this flaw). Created libxml2 tracking bugs for this issue: Affects: fedora-17 [bug 983206] Statement: (none) This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2014:0513 https://rhn.redhat.com/errata/RHSA-2014-0513.html |