Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2021:14729-1)
Summary:The remote host is missing an update for the 'libxml2' package(s) announced via the SUSE-SU-2021:14729-1 advisory.
The remote host is missing an update for the 'libxml2' package(s) announced via the SUSE-SU-2021:14729-1 advisory.

Vulnerability Insight:
This update for libxml2 fixes the following issues:

Security issues fixed:

CVE-2021-3537: NULL pointer dereference in
valid.c:xmlValidBuildAContentModel (bsc#1185698)

CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess

CVE-2021-3517: Fixed a heap based buffer overflow in
entities.c:xmlEncodeEntitiesInternal (bsc#1185410).

CVE-2021-3516: Fixed a use after free in xmlEncodeEntitiesInternal() in
entities.c (bsc#1185409)

CVE-2020-24977: Fixed a global-buffer-overflow in
xmlEncodeEntitiesInternal (bsc#1176179).

CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun (bsc#1161521).

CVE-2020-7595: Fixed an infinite loop in an EOF situation (bsc#1161517).

CVE-2019-19956: Fixed a memory leak in
xmlParseBalancedChunkMemoryRecover (bsc#1159928).

Affected Software/OS:
'libxml2' package(s) on SUSE Linux Enterprise Server 11-SP4, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Debuginfo 11-SP3

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2014-0191
BugTraq ID: 67233
RedHat Security Advisories: RHSA-2015:0749
SuSE Security Announcement: openSUSE-SU-2015:2372 (Google Search)
XForce ISS Database: libxml2-cve20140191-dos(93092)
Common Vulnerability Exposure (CVE) ID: CVE-2020-7595
SuSE Security Announcement: openSUSE-SU-2020:0681 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2021-3516
Common Vulnerability Exposure (CVE) ID: CVE-2021-3517
Common Vulnerability Exposure (CVE) ID: CVE-2021-3518
Common Vulnerability Exposure (CVE) ID: CVE-2021-3537
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.