FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxml -- remote buffer overflows

Affected packages
libxml < 1.8.17_3
libxml2 < 2.6.15

Details

VuXML ID 9ff4c91e-328c-11d9-a9e7-0001020eed82
Discovery 2004-10-26
Entry 2004-11-09
Modified 2004-11-10

infamous41md reports that libxml contains multiple buffer overflows in the URL parsing and DNS name resolving functions. These vulnerabilities could lead to execution of arbitrary code.

References

Bugtraq ID 11526
CVE Name CVE-2004-0989
Message 20041025205132.1f1620a8.infamous41md@hotpop.com
URL http://www.debian.org/security/2004/dsa-582