The xmlCurrentChar function in libxml2 before 2.6.31 allows context-dependent attackers to cause a denial of service (infinite loop) via XML containing invalid UTF-8 sequences.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Debian_linux | Debian | 3.1 (including) | 3.1 (including) |
Debian_linux | Debian | 4.0 (including) | 4.0 (including) |
Mandrake_linux | Mandrakesoft | 2007 (including) | 2007 (including) |
Mandrake_linux | Mandrakesoft | 2007.1 (including) | 2007.1 (including) |
Mandrake_linux | Mandrakesoft | 2008.0 (including) | 2008.0 (including) |
Mandrake_linux_corporate_server | Mandrakesoft | 3.0 (including) | 3.0 (including) |
Mandrake_linux_corporate_server | Mandrakesoft | 4.0 (including) | 4.0 (including) |
Fedora | Redhat | 7 (including) | 7 (including) |
Fedora | Redhat | 8 (including) | 8 (including) |