VulnerableCode Package Details - pkg:nuget/libxml2@2.9.2

Search for packages

Package details: pkg:nuget/libxml2@2.9.2

Essentials
History (20)

purl	pkg:nuget/libxml2@2.9.2
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.0

Vulnerabilities affecting this package (10)

Vulnerability	Summary	Fixed by
VCID-1155-4sem-aaaq Aliases: CVE-2015-7499 GHSA-jxjr-5h69-qw3w	Moderate severity vulnerability that affects nokogiri	There are no reported fixed by versions.
VCID-3xsz-q8j4-aaaj Aliases: CVE-2015-5312 GHSA-xjqg-9jvg-fgx2	High severity vulnerability that affects nokogiri	There are no reported fixed by versions.
VCID-6zrf-f1cm-aaah Aliases: CVE-2015-8242	Improper Restriction of Operations within the Bounds of a Memory Buffer The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml2 allows context-dependent attackers to cause a denial of service (stack-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.	There are no reported fixed by versions.
VCID-mjyh-qk4q-aaag Aliases: CVE-2015-7942	Improper Restriction of Operations within the Bounds of a Memory Buffer The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted XML data, a different vulnerability than CVE-2015-7941.	There are no reported fixed by versions.
VCID-n4gm-zpen-aaaa Aliases: CVE-2015-7500	Improper Restriction of Operations within the Bounds of a Memory Buffer The xmlParseMisc function in parser.c in libxml2 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via unspecified vectors related to incorrect entities boundaries and start tags.	There are no reported fixed by versions.
VCID-nmvj-q8r8-aaap Aliases: CVE-2015-8317	Improper Restriction of Operations within the Bounds of a Memory Buffer The xmlParseXMLDecl function in parser.c in libxml2 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.	There are no reported fixed by versions.
VCID-sqpm-y8sb-aaac Aliases: CVE-2015-8241	Improper Restriction of Operations within the Bounds of a Memory Buffer The xmlNextChar function in libxml2 does not properly check the state, which allows context-dependent attackers to cause a denial of service (heap-based buffer over-read and application crash) or obtain sensitive information via crafted XML data.	There are no reported fixed by versions.
VCID-swer-ap9v-aaam Aliases: CVE-2015-7497	Improper Restriction of Operations within the Bounds of a Memory Buffer Heap-based buffer overflow in the xmlDictComputeFastQKey function in dict.c in libxml2 allows context-dependent attackers to cause a denial of service via unspecified vectors.	There are no reported fixed by versions.
VCID-tkc2-74m9-aaaq Aliases: CVE-2015-7941	Improper Restriction of Operations within the Bounds of a Memory Buffer libxml2 does not properly stop parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and libxml2 crash) via crafted XML data to the (1) xmlParseEntityDecl or (2) xmlParseConditionalSections function in parser.c, as demonstrated by non-terminated entities.	There are no reported fixed by versions.
VCID-uem6-z7mb-aaae Aliases: CVE-2015-7498	Improper Restriction of Operations within the Bounds of a Memory Buffer Heap-based buffer overflow in the xmlParseXmlDecl function in parser.c in libxml2 allows context-dependent attackers to cause a denial of service via unspecified vectors related to extracting errors after an encoding conversion failure.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-09-17T22:46:36.963540+00:00	GitLab Importer	Affected by	VCID-n4gm-zpen-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7500.yml	34.0.1
2024-09-17T22:46:36.860233+00:00	GitLab Importer	Affected by	VCID-swer-ap9v-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7497.yml	34.0.1
2024-09-17T22:46:36.696209+00:00	GitLab Importer	Affected by	VCID-sqpm-y8sb-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8241.yml	34.0.1
2024-09-17T22:46:36.637414+00:00	GitLab Importer	Affected by	VCID-uem6-z7mb-aaae	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7498.yml	34.0.1
2024-09-17T22:46:36.324808+00:00	GitLab Importer	Affected by	VCID-3xsz-q8j4-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-5312.yml	34.0.1
2024-09-17T22:46:36.270671+00:00	GitLab Importer	Affected by	VCID-6zrf-f1cm-aaah	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8242.yml	34.0.1
2024-09-17T22:46:36.244033+00:00	GitLab Importer	Affected by	VCID-tkc2-74m9-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7941.yml	34.0.1
2024-09-17T22:46:36.131459+00:00	GitLab Importer	Affected by	VCID-nmvj-q8r8-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8317.yml	34.0.1
2024-09-17T22:46:36.095339+00:00	GitLab Importer	Affected by	VCID-1155-4sem-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7499.yml	34.0.1
2024-09-17T22:46:35.628816+00:00	GitLab Importer	Affected by	VCID-mjyh-qk4q-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7942.yml	34.0.1
2024-01-03T18:07:51.113972+00:00	GitLab Importer	Affected by	VCID-n4gm-zpen-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7500.yml	34.0.0rc1
2024-01-03T18:07:51.022897+00:00	GitLab Importer	Affected by	VCID-swer-ap9v-aaam	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7497.yml	34.0.0rc1
2024-01-03T18:07:50.879624+00:00	GitLab Importer	Affected by	VCID-sqpm-y8sb-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8241.yml	34.0.0rc1
2024-01-03T18:07:50.828644+00:00	GitLab Importer	Affected by	VCID-uem6-z7mb-aaae	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7498.yml	34.0.0rc1
2024-01-03T18:07:50.540744+00:00	GitLab Importer	Affected by	VCID-3xsz-q8j4-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-5312.yml	34.0.0rc1
2024-01-03T18:07:50.494125+00:00	GitLab Importer	Affected by	VCID-6zrf-f1cm-aaah	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8242.yml	34.0.0rc1
2024-01-03T18:07:50.474095+00:00	GitLab Importer	Affected by	VCID-tkc2-74m9-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7941.yml	34.0.0rc1
2024-01-03T18:07:50.369252+00:00	GitLab Importer	Affected by	VCID-nmvj-q8r8-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-8317.yml	34.0.0rc1
2024-01-03T18:07:50.336855+00:00	GitLab Importer	Affected by	VCID-1155-4sem-aaaq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7499.yml	34.0.0rc1
2024-01-03T18:07:49.916418+00:00	GitLab Importer	Affected by	VCID-mjyh-qk4q-aaag	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/libxml2/CVE-2015-7942.yml	34.0.0rc1