Your submission was sent successfully! Close

CVE-2015-1819

Published: 14 August 2015

The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.

Priority

Low

Status

Package Release Status
libxml2
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise
Released (2.7.8.dfsg-5.1ubuntu4.12)
trusty
Released (2.9.1+dfsg1-3ubuntu4.5)
upstream
Released (2.9.2+zdfsg1-4)
utopic Ignored
(reached end-of-life)
vivid
Released (2.9.2+dfsg1-3ubuntu0.1)
wily Not vulnerable
(2.9.2+zdfsg1-4)
Patches:
upstream: https://git.gnome.org/browse/libxml2/commit/?id=213f1fe0d76d30eaed6e5853057defc43e6df2c9