{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2007-6284", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "20080115 rPSA-2008-0017-1 libxml2", "refsource" : "BUGTRAQ", "url" : "http://www.securityfocus.com/archive/1/486410/100/0/threaded" }, { "name" : "20080329 VMSA-2008-0006 Updated libxml2 service console package", "refsource" : "BUGTRAQ", "url" : "http://www.securityfocus.com/archive/1/490306/100/0/threaded" }, { "name" : "[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package", "refsource" : "MLIST", "url" : "http://lists.vmware.com/pipermail/security-announce/2008/000009.html" }, { "name" : "https://bugzilla.redhat.com/show_bug.cgi?id=425927", "refsource" : "MISC", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=425927" }, { "name" : "http://www.xmlsoft.org/news.html", "refsource" : "CONFIRM", "url" : "http://www.xmlsoft.org/news.html" }, { "name" : "https://issues.rpath.com/browse/RPL-2121", "refsource" : "CONFIRM", "url" : "https://issues.rpath.com/browse/RPL-2121" }, { "name" : "http://bugs.gentoo.org/show_bug.cgi?id=202628", "refsource" : "CONFIRM", "url" : "http://bugs.gentoo.org/show_bug.cgi?id=202628" }, { "name" : "http://support.avaya.com/elmodocs2/security/ASA-2008-047.htm", "refsource" : "CONFIRM", "url" : "http://support.avaya.com/elmodocs2/security/ASA-2008-047.htm" }, { "name" : "http://support.avaya.com/elmodocs2/security/ASA-2008-050.htm", "refsource" : "CONFIRM", "url" : "http://support.avaya.com/elmodocs2/security/ASA-2008-050.htm" }, { "name" : "APPLE-SA-2008-07-11", "refsource" : "APPLE", "url" : "http://lists.apple.com/archives/security-announce/2008//Jul/msg00001.html" }, { "name" : "DSA-1461", "refsource" : "DEBIAN", "url" : "http://www.debian.org/security/2008/dsa-1461" }, { "name" : "FEDORA-2008-0462", "refsource" : "FEDORA", "url" : "https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00379.html" }, { "name" : "FEDORA-2008-0477", "refsource" : "FEDORA", "url" : "https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00396.html" }, { "name" : "GLSA-200801-20", "refsource" : "GENTOO", "url" : "http://security.gentoo.org/glsa/glsa-200801-20.xml" }, { "name" : "MDVSA-2008:010", "refsource" : "MANDRIVA", "url" : "http://www.mandriva.com/security/advisories?name=MDVSA-2008:010" }, { "name" : "RHSA-2008:0032", "refsource" : "REDHAT", "url" : "http://www.redhat.com/support/errata/RHSA-2008-0032.html" }, { "name" : "103201", "refsource" : "SUNALERT", "url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-26-103201-1" }, { "name" : "201514", "refsource" : "SUNALERT", "url" : "http://sunsolve.sun.com/search/document.do?assetkey=1-66-201514-1" }, { "name" : "SUSE-SR:2008:002", "refsource" : "SUSE", "url" : "http://www.novell.com/linux/security/advisories/suse_security_summary_report.html" }, { "name" : "USN-569-1", "refsource" : "UBUNTU", "url" : "https://usn.ubuntu.com/569-1/" }, { "name" : "27248", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/27248" }, { "name" : "oval:org.mitre.oval:def:11594", "refsource" : "OVAL", "url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11594" }, { "name" : "ADV-2008-0117", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2008/0117" }, { "name" : "ADV-2008-0144", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2008/0144" }, { "name" : "ADV-2008-1033", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2008/1033/references" }, { "name" : "ADV-2008-2094", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2008/2094/references" }, { "name" : "oval:org.mitre.oval:def:5216", "refsource" : "OVAL", "url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5216" }, { "name" : "1019181", "refsource" : "SECTRACK", "url" : "http://securitytracker.com/id?1019181" }, { "name" : "28439", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28439" }, { "name" : "28444", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28444" }, { "name" : "[xml] 20080111 Security flaw affecting all previous libxml2 releases", "refsource" : "MLIST", "url" : "http://mail.gnome.org/archives/xml/2008-January/msg00036.html" }, { "name" : "28452", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28452" }, { "name" : "28458", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28458" }, { "name" : "28470", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28470" }, { "name" : "28466", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28466" }, { "name" : "28475", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28475" }, { "name" : "28450", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28450" }, { "name" : "28636", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28636" }, { "name" : "28716", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28716" }, { "name" : "28740", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/28740" }, { "name" : "29591", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/29591" }, { "name" : "31074", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/31074" } ] } }