Slackware Advisory SSA:2008-324-01 Libxml2 Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2008-324-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2008-324-01

Insight

New libxml2 packages are available for Slackware 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, and -current to fix security issues including a denial or service or the possible execution of arbitrary code if untrusted XML is processed. More details about the issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4225 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4226

Severity

Classification

CVE CVE-2008-4225, CVE-2008-4226

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Slackware Advisory SSA:2004-207-02 new mod_ssl packages
Slackware Advisory SSA:2006-207-01 mutt
Slackware Advisory SSA:2003-149-01 CUPS DoS vulnerability fixed
Slackware Advisory SSA:2006-209-01 Apache httpd
Slackware Advisory SSA:2006-081-01 sendmail

Slackware Advisory SSA:2008-324-01 libxml2

Take action and discover your vulnerabilities