A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when processing XML catalogs that contain repeated <nextCatalog> elements pointing to the same downstream catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to redundantly traverse catalog chains. This leads to excessive CPU consumption and degrades application availability, resulting in a denial-of-service condition.

The version of libxml2 installed on the remote host is prior to 2.11.9 / 2.15.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2026-070-02 advisory.

    New libxml2 packages are available for Slackware 15.0 and -current to fix security issues.

Tenable has extracted the preceding description block directly from the libxml2 security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

    A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when     processing XML catalogs that contain repeated nextCatalog elements pointing to the same downstream     catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to     redundantly traverse catalog chains. This leads to excessive CPU consumption and degrades application     availability, resulting in a denial-of-service condition.(CVE-2026-0992)

    A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in     the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references     itself. A remote attacker could exploit this configuration-dependent issue by providing a specially     crafted XML catalog, leading to infinite recursion and call stack exhaustion. This ultimately results in a     segmentation fault, causing a Denial of Service (DoS) by crashing affected applications.(CVE-2026-0990)

    A flaw was identified in the RelaxNG parser of libxml2 related to how external schema inclusions are     handled. The parser does not enforce a limit on inclusion depth when resolving nested include     directives. Specially crafted or overly complex schemas can cause excessive recursion during parsing. This     may lead to stack exhaustion and application crashes, creating a denial-of-service risk.(CVE-2026-0989)

Tenable has extracted the preceding description block directly from the EulerOS libxml2 security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES16 / SLES_SAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:20631-1 advisory.

    Changes in libxml2:

    - CVE-2026-0990: call stack overflow may lead to application crash due to infinite recursion in       `xmlCatalogXMLResolveURI` (bsc#1256807, bsc#1256811).
    - CVE-2026-0992: excessive resource consumption when processing XML catalogs due to exponential behavior     when handling       `nextCatalog` elements (bsc#1256809, bsc#1256812).
    - CVE-2025-8732: infinite recursion in catalog parsing functions when processing malformed SGML catalog     files       (bsc#1247858).
    - CVE-2026-1757: memory leak in the `xmllint` interactive shell (bsc#1257594, bsc#1257595).
    - CVE-2025-10911: parsing xsl nodes may lead to use-after-free with key data stored cross-RVT     (bsc#1250553)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20312-1 advisory.

    Changes in libxml2:

    - CVE-2026-0990: call stack overflow may lead to application crash due to infinite recursion in       `xmlCatalogXMLResolveURI` (bsc#1256807, bsc#1256811).
    - CVE-2026-0992: excessive resource consumption when processing XML catalogs due to exponential behavior     when handling       `nextCatalog` elements (bsc#1256809, bsc#1256812).
    - CVE-2025-8732: infinite recursion in catalog parsing functions when processing malformed SGML catalog     files       (bsc#1247858).
    - CVE-2026-1757: memory leak in the `xmllint` interactive shell (bsc#1257594, bsc#1257595).
    - CVE-2025-10911: parsing xsl nodes may lead to use-after-free with key data stored cross-RVT     (bsc#1250553)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0782-1 advisory.

    - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in     `xmlCatalogXMLResolveURI`. (bsc#1256807, bsc#1256811)
    - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to exponential     behavior. (bsc#1256809, bsc#1256812)
    - CVE-2026-1757: Fixed a memory leak in the `xmllint` interactive shell. (bsc#1257594, bsc#1257595)
    - CVE-2025-10911: Fixed a use-after-free with key data stored cross-RVT. (bsc#1250553)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0605-1 advisory.

    - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in     `xmlCatalogXMLResolveURI`. (bsc#1256807, bsc#1256811)
    - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to exponential     behavior. (bsc#1256809, bsc#1256812)
    - CVE-2026-1757: Fixed a memory leak in the `xmllint` interactive shell. (bsc#1257594, bsc#1257595)
    - CVE-2025-10911: Fixed a use-after-free with key data stored cross-RVT. (bsc#1250553)
    - CVE-2025-8732: Fixed an infinite recursion in catalog parsing functions when processing malformed SGML     catalog files. (bsc#1247858)
    - CVE-2026-0989: Fixe a call stack exhaustion leading to application crash due to RelaxNG parser not     limiting the recursion depth. (bsc#1256805, bsc#1256810)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0570-1 advisory.

    - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in     `xmlCatalogXMLResolveURI`. (bsc#1256807, bsc#1256811)
    - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to exponential     behavior. (bsc#1256809, bsc#1256812)
    - CVE-2026-1757: Fixed a memory leak in the `xmllint` interactive shell. (bsc#1257594, bsc#1257595)
    - CVE-2025-10911: Fixed a use-after-free with key data stored cross-RVT. (bsc#1250553)
    - CVE-2025-8732: Fixed an infinite recursion in catalog parsing functions when processing malformed SGML     catalog files. (bsc#1247858)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0568-1 advisory.

    - CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in     `xmlCatalogXMLResolveURI`. (bsc#1256807, bsc#1256811)
    - CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to exponential     behavior. (bsc#1256809, bsc#1256812)
    - CVE-2026-1757: Fixed a memory leak in the `xmllint` interactive shell. (bsc#1257594, bsc#1257595)
    - CVE-2025-10911: Fixed a use-after-free with key data stored cross-RVT. (bsc#1250553)

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3144 advisory.

    A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in     the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references     itself. A remote attacker could exploit this configuration-dependent issue by providing a specially     crafted XML catalog, leading to infinite recursion and call stack exhaustion. This ultimately results in a     segmentation fault, causing a Denial of Service (DoS) by crashing affected applications. (CVE-2026-0990)

    A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when     processing XML catalogs that contain repeated <nextCatalog> elements pointing to the same downstream     catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to     redundantly traverse catalog chains. This leads to excessive CPU consumption and degrades application     availability, resulting in a denial-of-service condition. (CVE-2026-0992)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1396 advisory.

    A flaw was found in libxml2, an XML parsing library. This uncontrolled recursion vulnerability occurs in     the xmlCatalogXMLResolveURI function when an XML catalog contains a delegate URI entry that references     itself. A remote attacker could exploit this configuration-dependent issue by providing a specially     crafted XML catalog, leading to infinite recursion and call stack exhaustion. This ultimately results in a     segmentation fault, causing a Denial of Service (DoS) by crashing affected applications. (CVE-2026-0990)

    A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when     processing XML catalogs that contain repeated <nextCatalog> elements pointing to the same downstream     catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to     redundantly traverse catalog chains. This leads to excessive CPU consumption and degrades application     availability, resulting in a denial-of-service condition. (CVE-2026-0992)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7974-1 advisory.

    It was discovered that libxml2 incorrectly handled maliciously crafted SGML catalog files. An attacker     could possibly use this issue to cause libxml2 to consume excessive resources, leading to a denial of     service. (CVE-2025-8732)

    It was discovered that libxml2 incorrectly handled recursive include directories with the RelaxNG parser.
    An attacker could possibly use this issue to cause libxml2 to consume excessive resources, leading to a     denial of service. (CVE-2026-0989)

    Nick Wellnhofer discovered that libxml2 incorrectly parsed catalogs with self-referencing URI delegates.
    An attacker could possibly use this issue to cause libxml2 to consume excessive resources, leading to a     denial of service. (CVE-2026-0990)

    Nick Wellnhofer discovered that libxml2 inefficiently parsed catalogs linked with repeating nextCatalog     elements. An attacker could possibly use this issue to cause libxml2 to use excessive resources, leading     to a denial of service. (CVE-2026-0992)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - A flaw was found in the libxml2 library. This uncontrolled resource consumption vulnerability occurs when     processing XML catalogs that contain repeated <nextCatalog> elements pointing to the same downstream     catalog. A remote attacker can exploit this by supplying crafted catalogs, causing the parser to     redundantly traverse catalog chains. This leads to excessive CPU consumption and degrades application     availability, resulting in a denial-of-service condition. (CVE-2026-0992)

Note that Nessus relies on the presence of the package as reported by the vendor.

ID	Name	Product	Family	Severity
301909	Slackware Linux 15.0 / current libxml2 Multiple Vulnerabilities (SSA:2026-070-02)	Nessus	Slackware Local Security Checks	medium
301633	EulerOS 2.0 SP13 : libxml2 (EulerOS-SA-2026-1288)	Nessus	Huawei Local Security Checks	medium
301615	EulerOS 2.0 SP13 : libxml2 (EulerOS-SA-2026-1252)	Nessus	Huawei Local Security Checks	medium
301455	SUSE SLES16 Security Update : libxml2, libxslt (SUSE-SU-2026:20631-1)	Nessus	SuSE Local Security Checks	medium
301309	openSUSE 16 Security Update : libxml2, libxslt (openSUSE-SU-2026:20312-1)	Nessus	SuSE Local Security Checks	medium
300833	SUSE SLES12 Security Update : libxml2 (SUSE-SU-2026:0782-1)	Nessus	SuSE Local Security Checks	medium
300043	SUSE SLED15 / SLES15 Security Update : libxml2 (SUSE-SU-2026:0605-1)	Nessus	SuSE Local Security Checks	medium
299578	openSUSE 15 Security Update : libxml2 (SUSE-SU-2026:0570-1)	Nessus	SuSE Local Security Checks	medium
299355	openSUSE 15 Security Update : libxml2 (SUSE-SU-2026:0568-1)	Nessus	SuSE Local Security Checks	medium
298135	Amazon Linux 2 : libxml2, --advisory ALAS2-2026-3144 (ALAS-2026-3144)	Nessus	Amazon Linux Local Security Checks	medium
298081	Amazon Linux 2023 : libxml2, libxml2-devel, libxml2-static (ALAS2023-2026-1396)	Nessus	Amazon Linux Local Security Checks	medium
296249	Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : libxml2 vulnerabilities (USN-7974-1)	Nessus	Ubuntu Local Security Checks	medium
286281	Linux Distros Unpatched Vulnerability : CVE-2026-0992	Nessus	Misc.	low

Detections

Analytics

CVE-2026-0992

medium

Tenable Plugins

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

low