ID CVE-2014-3660
Summary parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when entity substitution has been disabled, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted XML document containing a large number of nested entity references, a variant of the "billion laughs" attack. <a href="http://cwe.mitre.org/data/definitions/611.html" target="_blank">CWE-611: Improper Restriction of XML External Entity Reference ('XXE')</a>
References
Vulnerable Configurations
  • cpe:2.3:a:xmlsoft:libxml2:2.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.0:beta:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.0:beta:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.2.11:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.2.11:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.11:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.11:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.12:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.12:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.13:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.13:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.3.14:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.3.14:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.11:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.11:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.12:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.12:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.13:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.13:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.14:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.14:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.15:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.15:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.16:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.16:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.17:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.17:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.18:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.18:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.19:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.19:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.20:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.20:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.21:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.21:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.22:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.22:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.23:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.23:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.24:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.24:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.25:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.25:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.26:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.26:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.27:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.27:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.28:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.28:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.29:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.29:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.4.30:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.4.30:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.11:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.11:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.11:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.11:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.12:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.12:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.13:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.13:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.14:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.14:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.16:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.16:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.17:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.17:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.18:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.18:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.20:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.20:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.21:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.21:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.22:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.22:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.23:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.23:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.24:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.24:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.25:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.25:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.26:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.26:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.27:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.27:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.28:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.28:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.29:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.29:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.30:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.30:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.31:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.31:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.32:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.32:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.7.8:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.7.8:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.9.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.9.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.9.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.9.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:-:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:-:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.7.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.7.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.7.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.7.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.7.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.7.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.0:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.4:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.7:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.7:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.13:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.13:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.14:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.14:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:1.8.16:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:1.8.16:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.3:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.3:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.5:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.5:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.6:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.5.9:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.5.9:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.10:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.10:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.15:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.15:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.6.19:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.6.19:*:*:*:*:*:*:*
  • cpe:2.3:a:xmlsoft:libxml2:2.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:xmlsoft:libxml2:2.9.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.0.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.0.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.1.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.1.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.7:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.7:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.7:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.7:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.8:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.8:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.7:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.7:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.8:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.6.8:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.6.8:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.7.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.7.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.8.5:supplemental_update:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.8.5:supplemental_update:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9.4:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.9.5:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.9.5:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.10.0:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.10.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.10.1:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.10.1:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.10.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.10.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.10.3:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.10.3:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.10.4:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.10.4:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 08-12-2016 - 03:05)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
redhat via4
advisories
  • bugzilla
    id 1149084
    title CVE-2014-3660 libxml2: denial of service via recursive entity expansion
    oval
    OR
    • AND
      • OR
        • comment Red Hat Enterprise Linux 7 Client is installed
          oval oval:com.redhat.rhba:tst:20150364001
        • comment Red Hat Enterprise Linux 7 Server is installed
          oval oval:com.redhat.rhba:tst:20150364002
        • comment Red Hat Enterprise Linux 7 Workstation is installed
          oval oval:com.redhat.rhba:tst:20150364003
        • comment Red Hat Enterprise Linux 7 ComputeNode is installed
          oval oval:com.redhat.rhba:tst:20150364004
      • OR
        • AND
          • comment libxml2 is earlier than 0:2.9.1-5.el7_0.1
            oval oval:com.redhat.rhsa:tst:20141655005
          • comment libxml2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749006
        • AND
          • comment libxml2-devel is earlier than 0:2.9.1-5.el7_0.1
            oval oval:com.redhat.rhsa:tst:20141655007
          • comment libxml2-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749012
        • AND
          • comment libxml2-python is earlier than 0:2.9.1-5.el7_0.1
            oval oval:com.redhat.rhsa:tst:20141655011
          • comment libxml2-python is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749010
        • AND
          • comment libxml2-static is earlier than 0:2.9.1-5.el7_0.1
            oval oval:com.redhat.rhsa:tst:20141655009
          • comment libxml2-static is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749008
    • AND
      • OR
        • comment Red Hat Enterprise Linux 6 Client is installed
          oval oval:com.redhat.rhba:tst:20111656001
        • comment Red Hat Enterprise Linux 6 Server is installed
          oval oval:com.redhat.rhba:tst:20111656002
        • comment Red Hat Enterprise Linux 6 Workstation is installed
          oval oval:com.redhat.rhba:tst:20111656003
        • comment Red Hat Enterprise Linux 6 ComputeNode is installed
          oval oval:com.redhat.rhba:tst:20111656004
      • OR
        • AND
          • comment libxml2 is earlier than 0:2.7.6-17.el6_6.1
            oval oval:com.redhat.rhsa:tst:20141655017
          • comment libxml2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749006
        • AND
          • comment libxml2-devel is earlier than 0:2.7.6-17.el6_6.1
            oval oval:com.redhat.rhsa:tst:20141655019
          • comment libxml2-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749012
        • AND
          • comment libxml2-python is earlier than 0:2.7.6-17.el6_6.1
            oval oval:com.redhat.rhsa:tst:20141655020
          • comment libxml2-python is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749010
        • AND
          • comment libxml2-static is earlier than 0:2.7.6-17.el6_6.1
            oval oval:com.redhat.rhsa:tst:20141655018
          • comment libxml2-static is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20111749008
    rhsa
    id RHSA-2014:1655
    released 2014-10-16
    severity Moderate
    title RHSA-2014:1655: libxml2 security update (Moderate)
  • bugzilla
    id 1149084
    title CVE-2014-3660 libxml2: denial of service via recursive entity expansion
    oval
    AND
    • comment Red Hat Enterprise Linux 5 is installed
      oval oval:com.redhat.rhba:tst:20070331001
    • OR
      • AND
        • comment libxml2 is earlier than 0:2.6.26-2.1.25.el5_11
          oval oval:com.redhat.rhsa:tst:20141885002
        • comment libxml2 is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20080032014
      • AND
        • comment libxml2-devel is earlier than 0:2.6.26-2.1.25.el5_11
          oval oval:com.redhat.rhsa:tst:20141885004
        • comment libxml2-devel is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20080032016
      • AND
        • comment libxml2-python is earlier than 0:2.6.26-2.1.25.el5_11
          oval oval:com.redhat.rhsa:tst:20141885006
        • comment libxml2-python is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20080032018
    rhsa
    id RHSA-2014:1885
    released 2014-11-20
    severity Moderate
    title RHSA-2014:1885: libxml2 security update (Moderate)
rpms
  • libxml2-0:2.9.1-5.el7_0.1
  • libxml2-devel-0:2.9.1-5.el7_0.1
  • libxml2-python-0:2.9.1-5.el7_0.1
  • libxml2-static-0:2.9.1-5.el7_0.1
  • libxml2-0:2.7.6-17.el6_6.1
  • libxml2-devel-0:2.7.6-17.el6_6.1
  • libxml2-python-0:2.7.6-17.el6_6.1
  • libxml2-static-0:2.7.6-17.el6_6.1
  • libxml2-0:2.6.26-2.1.25.el5_11
  • libxml2-devel-0:2.6.26-2.1.25.el5_11
  • libxml2-python-0:2.6.26-2.1.25.el5_11
refmap via4
apple
  • APPLE-SA-2015-08-13-2
  • APPLE-SA-2015-08-13-3
bid 70644
confirm
debian DSA-3057
mandriva MDVSA-2014:244
misc
mlist [oss-security] 20141017 libxml2 issue: billioun laughs variant (CVE-2014-3660)
secunia
  • 59903
  • 61965
  • 61966
  • 61991
suse
  • openSUSE-SU-2014:1330
  • openSUSE-SU-2015:2372
ubuntu USN-2389-1
Last major update 08-12-2016 - 03:05
Published 04-11-2014 - 16:55
Back to Top