The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4529 advisory.

  - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference     and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c. (CVE-2023-28484)

  - An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML     document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic     and memory errors, such as a double free. This behavior occurs because there is an attempt to use the     first byte of an empty string, and any value is possible (not solely the '\0' value). (CVE-2023-29469)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-dae7cc20ac advisory.

    Update to 2.10.4

    * Fix CVE-2023-29469
    * Fix CVE-2023-28484

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote NewStart CGSL host, running version MAIN 6.02, has libxml2 packages installed that are affected by multiple vulnerabilities:

  - A Cross-site scripting (XSS) vulnerability was found in libxml2. A specially crafted input, when     serialized and re-parsed by the libxml2 library, will result in a document with element attributes that     did not exist in the original document. (CVE-2016-3709)

  - A flaw was found in libxml2. Parsing a XML document with the XML_PARSE_HUGE option enabled can result in     an integer overflow because safety checks were missing in some functions. Also, the xmlParseEntityValue     function didn't have any length limitation. (CVE-2022-40303)

  - A flaw was found in libxml2. When a reference cycle is detected in the XML entity cleanup function the XML     entity data can be stored in a dictionary. In this case, the dictionary becomes corrupted resulting in     logic errors, including memory errors like double free. (CVE-2022-40304)

  - A NULL pointer dereference vulnerability was found in libxml2. This issue occurs when parsing (invalid)     XML schemas. (CVE-2023-28484)

  - A flaw was found in libxml2. This issue occurs when hashing empty strings which aren't null-terminated,     xmlDictComputeFastKey could produce inconsistent results, which may lead to various logic or memory     errors, including double free errors. (CVE-2023-29469)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4349 advisory.

    The libxml2 library is a development toolbox providing the implementation of various XML standards.

    Security Fix(es):

    * libxml2: NULL dereference in xmlSchemaFixupComplexType (CVE-2023-28484)

    * libxml2: Hashing of empty dict strings isn't deterministic (CVE-2023-29469)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4529 advisory.

    The libxml2 library is a development toolbox providing the implementation of various XML standards.

    Security Fix(es):

    * libxml2: NULL dereference in xmlSchemaFixupComplexType (CVE-2023-28484)

    * libxml2: Hashing of empty dict strings isn't deterministic (CVE-2023-29469)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Oracle HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory.

  - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The     supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker     with network access via HTTP to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result     in unauthorized access to critical data or complete access to all Oracle HTTP Server accessible data.     (CVE-2023-22019)

  - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: SSL Module (OpenSSL)).     The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated     attacker with network access via HTTPS to compromise Oracle HTTP Server. Successful attacks require human     interaction from a person other than the attacker. Successful attacks of this vulnerability can result in     unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle HTTP Server.     (CVE-2022-2650)

  - Vulnerability in the Oracle Communications Cloud Native Core Binding Support Function product of Oracle     Communications (component: Install/Upgrade (libxml2)). Supported versions that are affected are 23.1.0-23.1.7     and 23.2.0-23.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP     to compromise Oracle Communications Cloud Native Core Binding Support Function. Successful attacks require human     interaction from a person other than the attacker. Successful attacks of this vulnerability can result in     unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Communications Cloud     Native Core Binding Support Function. (CVE-2023-28484)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4349 advisory.

  - In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference     and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c. (CVE-2023-28484)

  - An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML     document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic     and memory errors, such as a double free. This behavior occurs because there is an attempt to use the     first byte of an empty string, and any value is possible (not solely the '\0' value). (CVE-2023-29469)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The versions of MySQL Cluster installed on the remote host are affected by a vulnerability as referenced in the October 2023 CPU advisory.

  - Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General (libxml2)).     Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability     allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster.     Successful attacks require human interaction from a person other than the attacker. Successful attacks     of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash     (complete DOS) of MySQL Cluster. (CVE-2023-28484)

  - Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General (curl)).     Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability     allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster.     Successful attacks of this vulnerability can result in takeover of MySQL Cluster. (CVE-2023-38545)

  - Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General (Kerberos)).     Supported versions that are affected are 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability     allows low privileged attacker with network access via multiple protocols to compromise MySQL Cluster.     Successful attacks of this vulnerability can result in takeover of MySQL Cluster.(CVE-2022-42898)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0413 advisory.

    The libxml2 library is a development toolbox providing the implementation of various XML standards.

    Security Fix(es):

    * libxml2: integer overflows with XML_PARSE_HUGE (CVE-2022-40303)

    * libxml2: dict corruption caused by entity reference cycles (CVE-2022-40304)

    * libxml2: NULL dereference in xmlSchemaFixupComplexType (CVE-2023-28484)

    * libxml2: Hashing of empty dict strings isn't deterministic (CVE-2023-29469)

    * libxml2: crafted xml can cause global buffer overflow (CVE-2023-39615)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Published	Updated	Severity
179624	AlmaLinux 8 : libxml2 (ALSA-2023:4529)	Nessus	Alma Linux Local Security Checks	8/9/2023	8/9/2023	medium
174425	Fedora 37 : libxml2 (2023-dae7cc20ac)	Nessus	Fedora Local Security Checks	4/18/2023	11/14/2024	medium
206834	NewStart CGSL MAIN 6.02 : libxml2 Multiple Vulnerabilities (NS-SA-2024-0055)	Nessus	NewStart CGSL Local Security Checks	9/10/2024	9/10/2024	high
179161	RHEL 9 : libxml2 (RHSA-2023:4349)	Nessus	Red Hat Local Security Checks	8/1/2023	11/7/2024	medium
179456	RHEL 8 : libxml2 (RHSA-2023:4529)	Nessus	Red Hat Local Security Checks	8/8/2023	11/7/2024	medium
183519	Oracle HTTP Server (October 2023 CPU)	Nessus	Web Servers	10/20/2023	10/23/2023	high
179228	AlmaLinux 9 : libxml2 (ALSA-2023:4349)	Nessus	Alma Linux Local Security Checks	8/2/2023	8/2/2023	medium
183437	Oracle MySQL Cluster 8.x < 8.2.0 (Oct 2023 CPU)	Nessus	Databases	10/19/2023	11/5/2025	critical
189557	RHEL 8 : libxml2 (RHSA-2024:0413)	Nessus	Red Hat Local Security Checks	1/25/2024	11/7/2024	high

Detections

Analytics

Plugins Search

medium

medium

high

medium

medium

high

medium

critical

high