ubuntu · CVE-2015-7499

Quick triage

Priority: low Published: 2015-11-26 00:00:00 UTC Updated: 2025-05-26 12:50:51 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-7499 low priority: Ubuntu including 1 source packages (libxml2), 5 status rows across 5 suites (precise, trusty, upstream, vivid, wily): released 5.

Description:

Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive process memory information via unspecified vectors.

cvelogic Threat Intelligence