CVE-2015-8710

The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
xmlsoftlibxml2
𝑥
< 2.9.3
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libxml2
bookworm
2.9.14+dfsg-1.3~deb12u1
fixed
bullseye
2.9.10+dfsg-6.7+deb11u4
fixed
bullseye (security)
2.9.10+dfsg-6.7+deb11u5
fixed
sid
2.12.7+dfsg+really2.9.14-0.1
fixed
trixie
2.12.7+dfsg+really2.9.14-0.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libxml2
precise
Fixed 2.7.8.dfsg-5.1ubuntu4.14
released
trusty
Fixed 2.9.1+dfsg1-3ubuntu4.7
released
vivid
Fixed 2.9.2+dfsg1-3ubuntu0.3
released
wily
Fixed 2.9.2+zdfsg1-4ubuntu0.3
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libxml2-2
suse enterprise sap 12
2.9.1-17.1
fixed
suse enterprise sap 12 SP1
2.9.1-17.1
fixed
suse enterprise sap 12 SP5
2.9.4-46.20.1
fixed
suse enterprise server 12
2.9.1-17.1
fixed
suse enterprise server 12 SP1
2.9.1-17.1
fixed
suse enterprise server 12 SP5
2.9.4-46.20.1
fixed
libxml2-2-32bit
suse enterprise sap 12
2.9.1-17.1
fixed
suse enterprise sap 12 SP1
2.9.1-17.1
fixed
suse enterprise sap 12 SP5
2.9.4-46.20.1
fixed
suse enterprise server 12
2.9.1-17.1
fixed
suse enterprise server 12 SP1
2.9.1-17.1
fixed
suse enterprise server 12 SP5
2.9.4-46.20.1
fixed
libxml2-doc
suse enterprise sap 12
2.9.1-17.1
fixed
suse enterprise sap 12 SP1
2.9.1-17.1
fixed
suse enterprise sap 12 SP5
2.9.4-46.20.1
fixed
suse enterprise server 12
2.9.1-17.1
fixed
suse enterprise server 12 SP1
2.9.1-17.1
fixed
suse enterprise server 12 SP5
2.9.4-46.20.1
fixed
libxml2-tools
suse enterprise sap 12
2.9.1-17.1
fixed
suse enterprise sap 12 SP1
2.9.1-17.1
fixed
suse enterprise sap 12 SP5
2.9.4-46.20.1
fixed
suse enterprise server 12
2.9.1-17.1
fixed
suse enterprise server 12 SP1
2.9.1-17.1
fixed
suse enterprise server 12 SP5
2.9.4-46.20.1
fixed
python-libxml2
suse enterprise sap 12
2.9.1-17.1
fixed
suse enterprise sap 12 SP1
2.9.1-17.1
fixed
suse enterprise server 12
2.9.1-17.1
fixed
suse enterprise server 12 SP1
2.9.1-17.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
libxml2
RHEL 6
0:2.7.6-20.el6_7.1
fixed
RHEL 7
0:2.9.1-6.el7_2.2
fixed
libxml2-devel
RHEL 6
0:2.7.6-20.el6_7.1
fixed
RHEL 7
0:2.9.1-6.el7_2.2
fixed
libxml2-python
RHEL 6
0:2.7.6-20.el6_7.1
fixed
RHEL 7
0:2.9.1-6.el7_2.2
fixed
libxml2-static
RHEL 6
0:2.7.6-20.el6_7.1
fixed
RHEL 7
0:2.9.1-6.el7_2.2
fixed
Common Weakness Enumeration
References
http://rhn.redhat.com/errata/RHSA-2016-1089.html
http://www.debian.org/security/2015/dsa-3430
http://www.openwall.com/lists/oss-security/2015/04/19/4
http://www.openwall.com/lists/oss-security/2015/09/13/1
http://www.openwall.com/lists/oss-security/2015/12/31/7
http://www.securityfocus.com/bid/79811
https://bugzilla.gnome.org/show_bug.cgi?id=746048
https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c
https://hackerone.com/reports/57125#activity-384861
http://rhn.redhat.com/errata/RHSA-2016-1089.html
http://www.debian.org/security/2015/dsa-3430
http://www.openwall.com/lists/oss-security/2015/04/19/4
http://www.openwall.com/lists/oss-security/2015/09/13/1
http://www.openwall.com/lists/oss-security/2015/12/31/7
http://www.securityfocus.com/bid/79811
https://bugzilla.gnome.org/show_bug.cgi?id=746048
https://git.gnome.org/browse/libxml2/commit/?id=e724879d964d774df9b7969fc846605aa1bac54c
https://hackerone.com/reports/57125#activity-384861