all InfoSec news
USN-6579-2: Xerces-C++ vulnerability
Jan. 16, 2024, 12:15 p.m. |
Ubuntu security notices ubuntu.com
corresponding update for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 23.04
and Ubuntu 23.10.
Original advisory details:
It was discovered that Xerces-C++ was not properly handling memory
management operations when parsing XML data containing external DTDs,
which could trigger a use-after-free error. If a user or automated system
were tricked into processing a specially crafted XML document, an attacker
could possibly use this issue to cause a denial of service …
advisory automated data error external free handling lts management memory operations parsing trigger ubuntu ubuntu 20.04 ubuntu 22.04 update use-after-free usn vulnerability xml
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
5 days, 6 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
5 days, 9 hours ago |
ubuntu.com
USN-6747-2: Firefox regressions
5 days, 18 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Incident Response Lead
@ Blue Yonder | Hyderabad
GRC Analyst
@ Chubb | Malaysia
Information Security Manager
@ Walbec Group | Waukesha, WI, United States
Senior Executive / Manager, Security Ops (TSSQ)
@ SMRT Corporation Ltd | Singapore, SG
Senior Engineer, Cybersecurity
@ Sonova Group | Valencia (CA), United States
Consultant (Multiple Positions Available)
@ Atos | Plano, TX, US, 75093