libxml2 security update
Specially crafted XPath expressions could allow attackers
to cause a denial of service or possibly have unspecified
other impact (CVE-2011-2821,CVE-2011-2834).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5488
Fixed bugs
bnc#732787
VUL-1: CVE-2011-2821: libxml2: double free()
CVE#CVE-2011-2821
Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression.
CVE#CVE-2011-2834
Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
