First published: Fri Aug 14 2015(Updated: )
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
rubygems/nokogiri | >=1.6.6.0<=1.6.6.3 | 1.6.6.4 |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =8.0 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.04 | |
Redhat Enterprise Linux | <=5.0 | |
XMLSoft Libxml | ||
Oracle Solaris | =11.3 | |
Apple iPhone OS | <=9.2.1 | |
Apple Mac OS X | <=10.11.3 | |
Apple tvOS | <=9.1 | |
Apple watchOS | <=2.1 | |
Oracle Linux | =7 | |
openSUSE openSUSE | =13.1 | |
openSUSE openSUSE | =13.2 | |
Fedoraproject Fedora | =22 | |
Fedoraproject Fedora | =23 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.