CVE-2012-2807

Publication date 27 June 2012

Last updated 24 July 2024

Ubuntu priority

Multiple integer overflows in libxml2, as used in Google Chrome before 20.0.1132.43 and other products, on 64-bit Linux platforms allow remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
libxml2	12.04 LTS precise	Fixed 2.7.8.dfsg-5.1ubuntu4.2
	11.10 oneiric	Fixed 2.7.8.dfsg-4ubuntu0.4
	11.04 natty	Fixed 2.7.8.dfsg-2ubuntu0.5
	10.04 LTS lucid	Fixed 2.7.6.dfsg-1ubuntu1.6
	8.04 LTS hardy	Fixed 2.6.31.dfsg-2ubuntu1.10

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
libxml2	Vendor: http://git.chromium.org/gitweb/?p=chromium/src.git;a=patch;h=f183580d61c054f7f6bb35cfe29e1b342390fbebcd Upstream: ?id=459 Upstream: ?id=4f9 Upstream: ?id=baa

References

Related Ubuntu Security Notices (USN)

USN-1587-1
libxml2 vulnerability
27 September 2012

CVE-2012-2807

Status

Patch details

References

Related Ubuntu Security Notices (USN)

Other references