CVE-2015-2716: expat: Buffer overflow in the XML parser
Bug #1881425 reported by
Ghada Khalil
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
High
|
Poornima Y N |
Bug Description
CVE-2015-2716: : expat: Buffer overflow in the XML parser
CVSSv2: 7.5 (AV:N/AC:
Description:
Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code by providing a large amount of compressed XML data, a related issue to CVE-2015-1283.
References:
https:/
https:/
https://<email address hidden>
The new RPMs are:
expat-2.
expat-devel-
expat-2.
Reported By: StarlingX May 2020 CVE Scan
CVE References
information type: | Public → Public Security |
tags: | added: stx.3.0 stx.4.0 stx.security |
description: | updated |
description: | updated |
description: | updated |
Changed in starlingx: | |
assignee: | nobody → Poornima Y N (poornimayn) |
tags: | added: in-r-stx30 |
To post a comment you must log in.
This CVE is applicable to stx.3.0 (r/stx.3.0 branch) & stx.4.0 (master branch)