CVE-2007-6284

Published: Jan 12, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

28439

third-party-advisory

x_refsource_SECUNIA

GLSA-200801-20

vendor-advisory

x_refsource_GENTOO

28466

third-party-advisory

x_refsource_SECUNIA

ADV-2008-1033

vdb-entry

x_refsource_VUPEN

103201

vendor-advisory

x_refsource_SUNALERT

DSA-1461

vendor-advisory

x_refsource_DEBIAN

USN-569-1

vendor-advisory

x_refsource_UBUNTU

SUSE-SR:2008:002

vendor-advisory

x_refsource_SUSE

20080329 VMSA-2008-0006 Updated libxml2 service console package

mailing-list

x_refsource_BUGTRAQ

oval:org.mitre.oval:def:5216

vdb-entry

signature

x_refsource_OVAL

27248

vdb-entry

x_refsource_BID

28444

third-party-advisory

x_refsource_SECUNIA

MDVSA-2008:010

vendor-advisory

x_refsource_MANDRIVA

ADV-2008-0117

vdb-entry

x_refsource_VUPEN

http://www.xmlsoft.org/news.html

x_refsource_CONFIRM

28716

third-party-advisory

x_refsource_SECUNIA

28740

third-party-advisory

x_refsource_SECUNIA

[xml] 20080111 Security flaw affecting all previous libxml2 releases

mailing-list

x_refsource_MLIST

FEDORA-2008-0462

vendor-advisory

x_refsource_FEDORA

28475

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:11594

vdb-entry

signature

x_refsource_OVAL

20080115 rPSA-2008-0017-1 libxml2

mailing-list

x_refsource_BUGTRAQ

APPLE-SA-2008-07-11

vendor-advisory

x_refsource_APPLE

http://support.avaya.com/elmodocs2/security/ASA-2008-047.htm

x_refsource_CONFIRM

ADV-2008-0144

vdb-entry

x_refsource_VUPEN

28458

third-party-advisory

x_refsource_SECUNIA

29591

third-party-advisory

x_refsource_SECUNIA

ADV-2008-2094

vdb-entry

x_refsource_VUPEN

28636

third-party-advisory

x_refsource_SECUNIA

http://support.avaya.com/elmodocs2/security/ASA-2008-050.htm

x_refsource_CONFIRM

https://issues.rpath.com/browse/RPL-2121

x_refsource_CONFIRM

[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package

mailing-list

x_refsource_MLIST

RHSA-2008:0032

vendor-advisory

x_refsource_REDHAT

FEDORA-2008-0477

vendor-advisory

x_refsource_FEDORA

28470

third-party-advisory

x_refsource_SECUNIA

201514

vendor-advisory

x_refsource_SUNALERT

28450

third-party-advisory

x_refsource_SECUNIA

31074

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=425927

x_refsource_MISC

http://bugs.gentoo.org/show_bug.cgi?id=202628

x_refsource_CONFIRM

28452

third-party-advisory

x_refsource_SECUNIA

1019181

vdb-entry

x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-6284

Description

Affected Products

References