VDB

GCVE-110-MAGEIA-2015-136

GCVE-110-MAGEIA-2015-136
Advisory Published
Vulnetix · Advisory published April 9, 2015
Updated xerces-c packages fix security vulnerability: Anton Rager and Jonathan Brossard from the Salesforce.com Product Security Team and Ben Laurie of Google discovered a denial of service vulnerability in xerces-c. The parser mishandles certain kinds of malformed input documents, resulting in a segmentation fault during a parse operation. An unauthenticated attacker could use this flaw to cause an application using the xerces-c library to crash (CVE-2015-0252).

Affected Products

VendorProductVersionsPlatforms
Mageiakmod-virtualbox0 (affected), 5.0.4-2.mga5 (unaffected)
Mageiakmod-vboxadditions0 (affected), 5.0.4-2.mga5 (unaffected)
Mageiaxerces-c3.1.2-1.mga4 (unaffected), 0 (affected), 0 (affected), 3.1.2-1.mga4 (unaffected)
Mageiavirtualbox5.0.4-1.mga5 (unaffected), 0 (affected)

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›