CVE-2015-0252

EPSS 25.2%

xerces-c - security update

發布日:2015/3/24修改日:2026/4/28

描述

internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote attackers to cause a denial of service (segmentation fault and crash) via crafted XML data.

受影響套件(3)

Debian/xerces-cfrom 0, < 3.1.1-5.1
Debian/xerces-cfrom 0, < 3.1.1-1+deb6u1
Debian/xerces-cfrom 0, < 3.1.1-3+deb7u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-0252