CVE-2016-4463

Related Files

Red Hat Security Advisory 2018-3514-01

Posted Nov 6, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3514-01 - Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Issues addressed include a stack overflow vulnerability.

tags | advisory, overflow

systems | linux, redhat

advisories | CVE-2016-4463

SHA-256 | e598702dc1ff47a58d43c5085110485bf0c6299e5bb441cbb2032f0edda4397f

Download | Favorite | View

Red Hat Security Advisory 2018-3506-01

Posted Nov 6, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3506-01 - Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Issues addressed include a stack overflow vulnerability.

tags | advisory, overflow

systems | linux, redhat

advisories | CVE-2016-4463

SHA-256 | 133145a8b73902fe6bac8626ca7a6a8139ae2fadfe1e06c833cd421912c25533

Download | Favorite | View

Red Hat Security Advisory 2018-3335-01

Posted Oct 31, 2018

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3335-01 - Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Issues addressed include a stack overflow vulnerability.

tags | advisory, overflow

systems | linux, redhat

advisories | CVE-2016-4463

SHA-256 | 83170a9c1605c70c0490cf01889609db63ee8bd6b70768fa1e7ec8ad2de24ec6

Download | Favorite | View

Debian Security Advisory 3610-1

Posted Jun 30, 2016

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3610-1 - Brandon Perry discovered that xerces-c, a validating XML parser library for C++, fails to successfully parse a DTD that is deeply nested, causing a stack overflow. A remote unauthenticated attacker can take advantage of this flaw to cause a denial of service against applications using the xerces-c library.

tags | advisory, remote, denial of service, overflow

systems | linux, debian

advisories | CVE-2016-4463

SHA-256 | 1f894b4a8b46f7ea26ba4c7e1e986dae118351e027465bbd76eee0989c28c308

Download | Favorite | View

Apache Xerces-C XML Parser Crash

Posted Jun 29, 2016

Authored by Brandon Perry

The Xerces-C XML parser fails to successfully parse a DTD that is deeply nested, and this causes a stack overflow, which makes a denial of service attack against many applications possible by an unauthenticated attacker. Apache Xerces-C XML Parser library versions prior to 3.1.4 are affected.

tags | advisory, denial of service, overflow

advisories | CVE-2016-4463

SHA-256 | a0b966184480f64c7fc857680e37cc670d35cc9e4cccf14b0d26c6528bbbdd5a

Download | Favorite | View