Red Hat Customer Portal

Skip to main content

CVE-2013-2877

parser.c in libxml2 before 2.9.0, as used in Google Chrome before 28.0.1500.71 and other products, allows remote attackers to cause a denial of service (out-of-bounds read) via a document that ends abruptly, related to the lack of certain checks for the XML_PARSER_EOF state.

Details Source

Mitre

Public Date

2013-07-09 00:00:00

Impact

Low

Bugzilla

CVE-2013-2877 libxml2: Out-of-bounds read via a document that ends abruptly

Bugzilla ID

983 204

CVSS Status

verified

Base Score

4.30

Base Metrics

AV:N/AC:M/Au:N/C:N/I:N/A:P

IAVA

2014-B-0161

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 6 (libxml2) RHSA-2014:0513 2014-05-19

CWE

CWE-125

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 mingw32-libxml2 Will not fix
Red Hat Enterprise Linux 5 libxml2 Will not fix