F5 Networks BIG-IP : libxml2 vulnerability (K16712298)
High Nessus Plugin ID 95938
SynopsisThe remote device is missing a vendor-supplied security patch.
DescriptionHeap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document. (CVE-2016-1834)
SolutionUpgrade to one of the non-vulnerable versions listed in the F5 Solution K16712298.