CVE-2011-3905
published 2011-12-13CVE-2011-3905: libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
PriorityP418medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.59%
72.6th percentile
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | libxml2 | < libxml2 2.7.8.dfsg-5.1 (bookworm) | libxml2 2.7.8.dfsg-5.1 (bookworm) |
| chrome | < 16.0.912.63 | 16.0.912.63 | |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server_eus | — | — |
| redhat | enterprise_linux_workstation | — | — |
| xmlsoft | libxml2 | >= 0 < 2.7.8.dfsg-5.1 | 2.7.8.dfsg-5.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.8.dfsg-5.1 | 2.7.8.dfsg-5.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.8.dfsg-5.1 | 2.7.8.dfsg-5.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.8.dfsg-5.1 | 2.7.8.dfsg-5.1 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_ubuntu9.3CRITICAL
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
libxml2 vulnerabilities
vendor_ubuntu·2012-01-19·CVSS 9.3
CVE-2011-0216 [CRITICAL] libxml2 vulnerabilities
Title: libxml2 vulnerabilities
Summary: Applications using libxml2 could be made to crash or run programs as your
login if they opened a specially crafted file.
It was discovered that libxml2 contained an off by one error. If a user or
application linked against libxml2 were tricked into opening a specially
crafted XML file, an attacker could cause the application to crash or
possibly execute arbitrary code with the privileges of the user invoking
the program. (CVE-2011-0216)
It was discovered that libxml2 is vulnerable to double-free conditions
when parsing certain XML documents. This could allow a remote attacker to
cause a denial of service. (CVE-2011-2821, CVE-2011-2834)
It was discovered that libxml2 did not properly detect end of file when
parsing certain XML documents. An attack
Red Hat
libxml2 out of bounds read
vendor_redhat·2011-12-13·CVSS 5.0
CVE-2011-3905 [MEDIUM] CWE-125 libxml2 out of bounds read
libxml2 out of bounds read
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Statement: This issue affects the version of libxml2 as shipped with Red Hat Enterprise
Linux 4, 5 and 6 and has been addressed via RHSA-2012:0016, RHSA-2012:0017 and
RHSA-2012:0018 respectively. This issue affects the version of mingw32-libxml2
as shipped with Red Hat Enterprise Linux 6. The Red Hat Security Response Team
has rated this issue as having low security impact. A future update may address
this issue in Red Hat Enterprise Linux 6.
Debian
CVE-2011-3905: libxml2 - libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to...
vendor_debian·2011·CVSS 5.0
CVE-2011-3905 [MEDIUM] CVE-2011-3905: libxml2 - libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to...
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Scope: local
bookworm: resolved (fixed in 2.7.8.dfsg-5.1)
bullseye: resolved (fixed in 2.7.8.dfsg-5.1)
forky: resolved (fixed in 2.7.8.dfsg-5.1)
sid: resolved (fixed in 2.7.8.dfsg-5.1)
trixie: resolved (fixed in 2.7.8.dfsg-5.1)
GHSA
GHSA-g3p8-rpgj-m5cf: libxml2, as used in Google Chrome before 16
ghsa_unreviewed·2022-05-13
CVE-2011-3905 [MEDIUM] CWE-125 GHSA-g3p8-rpgj-m5cf: libxml2, as used in Google Chrome before 16
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
OSV
CVE-2011-3905: libxml2, as used in Google Chrome before 16
osv·2011-12-13·CVSS 5.0
CVE-2011-3905 [MEDIUM] CVE-2011-3905: libxml2, as used in Google Chrome before 16
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-3919 CVE-2011-3905 CVE-2011-2834 libxml2 various flaws [fedora-all]
bugzilla·2012-01-06·CVSS 6.8
CVE-2011-3919 [MEDIUM] CVE-2011-3919 CVE-2011-3905 CVE-2011-2834 libxml2 various flaws [fedora-all]
CVE-2011-3919 CVE-2011-3905 CVE-2011-2834 libxml2 various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=securit
Bugzilla
CVE-2011-3905 libxml2 out of bounds read
bugzilla·2011-12-13·CVSS 5.0
CVE-2011-3905 [MEDIUM] CVE-2011-3905 libxml2 out of bounds read
CVE-2011-3905 libxml2 out of bounds read
Reference: CONFIRM:http://code.google.com/p/chromium/issues/detail?id=95465 [Open URL]
Reference: CONFIRM:http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.html [Open URL]
libxml2, as used in Google Chrome before 16.0.912.63, allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
Discussion:
Chrome patch for libxml2:
http://src.chromium.org/viewvc/chrome/trunk/src/third_party/libxml/src/parser.c?r1=100883&r2=100882&pathrev=100883
---
This issue affects the version of libxml2 as shipped with Red Hat Enterprise Linux 4, 5 and 6.
This issue affects the version of libxml2 as shipped with Fedora release 15 and 16.
---
I just commited the latest patch upstream as this looks correct
Bugzilla
CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
bugzilla·2011-11-22·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
CVE-2011-0216 CVE-2011-3905 CVE-2011-3919 mingw32-libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission li
Bugzilla
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
bugzilla·2011-11-22·CVSS 9.3
CVE-2011-0216 [CRITICAL] CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
CVE-2011-0216 libxml2: Off-by-one error leading to heap-based buffer overflow in encoding [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include this bug ID and the
bug IDs of this bug's parent bugs filed against the "Security Response"
product (the top-level CVE bugs). Please mention the CVE IDs being fixed
in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/
http://code.google.com/p/chromium/issues/detail?id=95465http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0217.htmlhttp://www.debian.org/security/2012/dsa-2394http://www.mandriva.com/security/advisories?name=MDVSA-2011:188https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14761http://code.google.com/p/chromium/issues/detail?id=95465http://googlechromereleases.blogspot.com/2011/12/stable-channel-update.htmlhttp://rhn.redhat.com/errata/RHSA-2013-0217.htmlhttp://www.debian.org/security/2012/dsa-2394http://www.mandriva.com/security/advisories?name=MDVSA-2011:188https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14761
2011-12-13
Published