VDB

GCVE-110-MAGEIA-2018-158

GCVE-110-MAGEIA-2018-158
Advisory Published
Vulnetix · Advisory published March 6, 2018
Updated xerces-c packages fix security vulnerability: The Xerces-C XML parser mishandles certain kinds of external DTD references, resulting in dereference of a NULL pointer while processing the path to the DTD. The bug allows for a denial of service attack in applications that allow DTD processing and do not prevent external DTD usage, and could conceivably result in remote code execution. (CVE-2017-12627)

Affected Products

VendorProductVersionsPlatforms
Mageiahedgewars0 (affected), 0.9.24.1-1.mga6 (unaffected)
Mageiaxerces-c0 (affected), 0 (affected), 3.1.4-2.1.mga6 (unaffected), 3.1.4-2.1.mga6 (unaffected)

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›