SuSE Update For Libxml2 OpenSUSE-SU-2012:1647-1 (libxml2) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 allowed remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.

Affected

libxml2 on openSUSE 12.1

References

http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00014.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-5134

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SLES10: Security update for pam_mount
SLES10: Security update for opensc
SLES10: Security update for IBM Java 1.4.2
SLES10: Security update for cairo
SLES10: Security update for bind

SuSE Update for libxml2 openSUSE-SU-2012:1647-1 (libxml2)

Take action and discover your vulnerabilities