Wei Lei discovered that libxml2 incorrecty handled certain parameter entities. An attacker could use this issue with specially constructed XML data to cause libxml2 to consume resources, leading to a denial of service.
{ "binaries": [ { "binary_version": "2.9.1+dfsg1-3ubuntu4.11", "binary_name": "libxml2" }, { "binary_version": "2.9.1+dfsg1-3ubuntu4.11", "binary_name": "libxml2-dev" }, { "binary_version": "2.9.1+dfsg1-3ubuntu4.11", "binary_name": "libxml2-utils" }, { "binary_version": "2.9.1+dfsg1-3ubuntu4.11", "binary_name": "python-libxml2" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_version": "2.9.3+dfsg1-1ubuntu0.4", "binary_name": "libxml2" }, { "binary_version": "2.9.3+dfsg1-1ubuntu0.4", "binary_name": "libxml2-dev" }, { "binary_version": "2.9.3+dfsg1-1ubuntu0.4", "binary_name": "libxml2-utils" }, { "binary_version": "2.9.3+dfsg1-1ubuntu0.4", "binary_name": "python-libxml2" } ], "availability": "No subscription required" }