CVE-2016-1838

Published: May 20, 2016Modified: May 6, 2026

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

Affected (30)

Products: Canonical: Ubuntu Linux · Debian: Debian Linux · Apple: Iphone Os, Mac Os X, Tvos, Watchos · +3 more

Show all products

1 product

1 product

4 products

6 products

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.10
Canonical Ubuntu Linux	Version 16.04

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Apple Iphone Os	Before 9.3.2
Apple Mac Os X	Before 10.11.5
Apple Tvos	Before 9.2.1
Apple Watchos	Before 2.2.1

Configuration D

18 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.2
Redhat Enterprise Linux Server Aus	Version 7.3
Redhat Enterprise Linux Server Aus	Version 7.4
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Eus	Version 7.2
Redhat Enterprise Linux Server Eus	Version 7.3
Redhat Enterprise Linux Server Eus	Version 7.4
Redhat Enterprise Linux Server Eus	Version 7.5
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 7.2
Redhat Enterprise Linux Server Tus	Version 7.3
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Workstation	Version 6.0
Redhat Enterprise Linux Workstation	Version 7.0

Configuration E

2 vulnerable

Vulnerable Software	Affected Versions
Mcafee Web Gateway	From 7.5.0.0 to 7.5.2.10
Mcafee Web Gateway	From 7.6.0.0 to 7.6.2.3

Configuration F

1 vulnerable

Vulnerable Software	Affected Versions
Xmlsoft Libxml2	Up to 2.9.4

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (48)

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html

Source: product-security@apple.com

Mailing ListVendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00002.html

Source: product-security@apple.com

Mailing ListVendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00003.html

Source: product-security@apple.com

Mailing ListVendor Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00004.html

Source: product-security@apple.com

Mailing ListVendor Advisory

http://rhn.redhat.com/errata/RHSA-2016-2957.html

Source: product-security@apple.com

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

Source: product-security@apple.com

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Source: product-security@apple.com

Third Party Advisory

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: product-security@apple.com

Third Party Advisory

http://www.securityfocus.com/bid/90691

Source: product-security@apple.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1035890

Source: product-security@apple.com

Third Party AdvisoryVDB Entry

http://www.ubuntu.com/usn/USN-2994-1

Source: product-security@apple.com

Third Party Advisory

http://xmlsoft.org/news.html

Source: product-security@apple.com

Release NotesVendor Advisory

https://access.redhat.com/errata/RHSA-2016:1292

Source: product-security@apple.com

Third Party Advisory

https://bugs.chromium.org/p/project-zero/issues/detail?id=639

Source: product-security@apple.com

ExploitThird Party Advisory

https://bugzilla.gnome.org/show_bug.cgi?id=758588

Source: product-security@apple.com

ExploitIssue TrackingThird Party Advisory

https://git.gnome.org/browse/libxml2/commit/?id=db07dd613e461df93dde7902c6505629bf0734e9

Source: product-security@apple.com

PatchThird Party Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10170

Source: product-security@apple.com

PatchThird Party Advisory

https://security.gentoo.org/glsa/201701-37

Source: product-security@apple.com

Third Party Advisory

https://support.apple.com/HT206564

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/HT206566

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/HT206567

Source: product-security@apple.com

Vendor Advisory

https://support.apple.com/HT206568

Source: product-security@apple.com

Vendor Advisory

https://www.debian.org/security/2016/dsa-3593

Source: product-security@apple.com

Third Party Advisory

https://www.tenable.com/security/tns-2016-18

Source: product-security@apple.com

Third Party Advisory

http://lists.apple.com/archives/security-announce/2016/May/msg00001.html