{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2010-4008","title":"Title"},{"category":"description","text":"libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2010-4008","url":"https://www.suse.com/security/cve/CVE-2010-4008"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 648277 for CVE-2010-4008","url":"https://bugzilla.suse.com/648277"},{"category":"external","summary":"Advisory link for SUSE-SR:2010:023","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JM6O73UJO5HWG5RGIFFSFKGTDNFSGYWB/#JM6O73UJO5HWG5RGIFFSFKGTDNFSGYWB"}],"title":"SUSE CVE CVE-2010-4008","tracking":{"current_release_date":"2025-07-03T00:29:02Z","generator":{"date":"2023-02-15T05:56:19Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2010-4008","initial_release_date":"2023-02-15T05:56:19Z","revision_history":[{"date":"2023-02-15T05:56:19Z","number":"2","summary":"Current version"},{"date":"2023-12-08T05:08:23Z","number":"3","summary":"Current version"},{"date":"2023-12-09T03:32:13Z","number":"4","summary":"Current version"},{"date":"2024-10-05T08:33:43Z","number":"5","summary":"Current version"},{"date":"2024-10-21T22:28:16Z","number":"6","summary":"Current version"},{"date":"2025-03-14T07:57:39Z","number":"7","summary":"Current version"},{"date":"2025-03-16T14:30:22Z","number":"8","summary":"Current version"},{"date":"2025-04-25T14:00:45Z","number":"9","summary":"Current version"},{"date":"2025-06-26T05:53:44Z","number":"10","summary":"Current version"},{"date":"2025-07-03T00:29:02Z","number":"11","summary":"Current version"}],"status":"interim","version":"11"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"HPE Helion OpenStack 8","product":{"name":"HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8","product_identification_helper":{"cpe":"cpe:/o:suse:hpe-helion-openstack:8"}}},{"category":"product_name","name":"SUSE Enterprise Storage 6","product":{"name":"SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6","product_identification_helper":{"cpe":"cpe:/o:suse:ses:6"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 12 SP5","product":{"name":"SUSE Linux Enterprise High Performance Computing 12 SP5","product_id":"SUSE Linux Enterprise High Performance Computing 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sle-hpc:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 11","product":{"name":"SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11","product_identification_helper":{"cpe":"cpe:/o:suse:suse_sles:11"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product":{"name":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA","product_identification_helper":{"cpe":"cpe:/o:suse:sles:11:sp1:teradata"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP2-BCL","product":{"name":"SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL","product_identification_helper":{"cpe":"cpe:/o:suse:sles-bcl:12:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP4-ESPOS","product":{"name":"SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-espos:12:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP4-LTSS","product":{"name":"SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:12:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP5","product":{"name":"SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server Teradata 12 SP3","product":{"name":"SUSE Linux Enterprise Server Teradata 12 SP3","product_id":"SUSE Linux Enterprise Server Teradata 12 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sles_teradata:12:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 11","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:11"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp5"}}},{"category":"product_name","name":"SUSE OpenStack Cloud 8","product":{"name":"SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud:8"}}},{"category":"product_name","name":"SUSE OpenStack Cloud 9","product":{"name":"SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud:9"}}},{"category":"product_name","name":"SUSE OpenStack Cloud Crowbar 8","product":{"name":"SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud-crowbar:8"}}},{"category":"product_name","name":"SUSE OpenStack Cloud Crowbar 9","product":{"name":"SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9","product_identification_helper":{"cpe":"cpe:/o:suse:suse-openstack-cloud-crowbar:9"}}},{"category":"product_version","name":"libxml2","product":{"name":"libxml2","product_id":"libxml2","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2@?upstream=libxml2.src.rpm"}}},{"category":"product_version","name":"libxml2-2","product":{"name":"libxml2-2","product_id":"libxml2-2","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-2@?upstream=libxml2.src.rpm"}}},{"category":"product_version","name":"libxml2-2-32bit","product":{"name":"libxml2-2-32bit","product_id":"libxml2-2-32bit","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-2-32bit@?upstream=libxml2.src.rpm"}}},{"category":"product_version","name":"libxml2-2.7.1-10.11.1","product":{"name":"libxml2-2.7.1-10.11.1","product_id":"libxml2-2.7.1-10.11.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2@2.7.1-10.11.1?upstream=libxml2-2.7.1-10.11.1.src.rpm"}}},{"category":"product_version","name":"libxml2-2.7.6-0.3.1","product":{"name":"libxml2-2.7.6-0.3.1","product_id":"libxml2-2.7.6-0.3.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2@2.7.6-0.3.1?upstream=libxml2-2.7.6-0.3.1.src.rpm"}}},{"category":"product_version","name":"libxml2-32bit-2.7.1-10.11.1","product":{"name":"libxml2-32bit-2.7.1-10.11.1","product_id":"libxml2-32bit-2.7.1-10.11.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-32bit@2.7.1-10.11.1?upstream=libxml2-2.7.1-10.11.1.src.rpm"}}},{"category":"product_version","name":"libxml2-32bit-2.7.6-0.3.1","product":{"name":"libxml2-32bit-2.7.6-0.3.1","product_id":"libxml2-32bit-2.7.6-0.3.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-32bit@2.7.6-0.3.1?upstream=libxml2-2.7.6-0.3.1.src.rpm"}}},{"category":"product_version","name":"libxml2-doc","product":{"name":"libxml2-doc","product_id":"libxml2-doc","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-doc@?upstream=libxml2.src.rpm"}}},{"category":"product_version","name":"libxml2-doc-2.7.1-10.11.1","product":{"name":"libxml2-doc-2.7.1-10.11.1","product_id":"libxml2-doc-2.7.1-10.11.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-doc@2.7.1-10.11.1?upstream=libxml2-2.7.1-10.11.1.src.rpm"}}},{"category":"product_version","name":"libxml2-doc-2.7.6-0.3.1","product":{"name":"libxml2-doc-2.7.6-0.3.1","product_id":"libxml2-doc-2.7.6-0.3.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-doc@2.7.6-0.3.1?upstream=libxml2-2.7.6-0.3.1.src.rpm"}}},{"category":"product_version","name":"libxml2-python-2.7.6-0.25.1","product":{"name":"libxml2-python-2.7.6-0.25.1","product_id":"libxml2-python-2.7.6-0.25.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-python@2.7.6-0.25.1?upstream=libxml2-python-2.7.6-0.25.1.src.rpm"}}},{"category":"product_version","name":"libxml2-tools","product":{"name":"libxml2-tools","product_id":"libxml2-tools","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-tools@?upstream=libxml2.src.rpm"}}},{"category":"product_version","name":"libxml2-x86-2.7.1-10.11.1","product":{"name":"libxml2-x86-2.7.1-10.11.1","product_id":"libxml2-x86-2.7.1-10.11.1","product_identification_helper":{"cpe":"cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libxml2-x86@2.7.1-10.11.1?upstream=libxml2-2.7.1-10.11.1.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"libxml2-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:libxml2-2.7.1-10.11.1"},"product_reference":"libxml2-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-32bit-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:libxml2-32bit-2.7.1-10.11.1"},"product_reference":"libxml2-32bit-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:libxml2-doc-2.7.1-10.11.1"},"product_reference":"libxml2-doc-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-x86-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server 11","product_id":"SUSE Linux Enterprise Server 11:libxml2-x86-2.7.1-10.11.1"},"product_reference":"libxml2-x86-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2.7.6-0.3.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-2.7.6-0.3.1"},"product_reference":"libxml2-2.7.6-0.3.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"libxml2-32bit-2.7.6-0.3.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-32bit-2.7.6-0.3.1"},"product_reference":"libxml2-32bit-2.7.6-0.3.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc-2.7.6-0.3.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-doc-2.7.6-0.3.1"},"product_reference":"libxml2-doc-2.7.6-0.3.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"libxml2-python-2.7.6-0.25.1 as component of SUSE Linux Enterprise Server 11 SP1-TERADATA","product_id":"SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-python-2.7.6-0.25.1"},"product_reference":"libxml2-python-2.7.6-0.25.1","relates_to_product_reference":"SUSE Linux Enterprise Server 11 SP1-TERADATA"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:libxml2-2.7.1-10.11.1"},"product_reference":"libxml2-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-32bit-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:libxml2-32bit-2.7.1-10.11.1"},"product_reference":"libxml2-32bit-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:libxml2-doc-2.7.1-10.11.1"},"product_reference":"libxml2-doc-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-x86-2.7.1-10.11.1 as component of SUSE Linux Enterprise Server for SAP Applications 11","product_id":"SUSE Linux Enterprise Server for SAP Applications 11:libxml2-x86-2.7.1-10.11.1"},"product_reference":"libxml2-x86-2.7.1-10.11.1","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 11"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"HPE Helion OpenStack 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"HPE Helion OpenStack 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"HPE Helion OpenStack 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"HPE Helion OpenStack 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of HPE Helion OpenStack 8","product_id":"HPE Helion OpenStack 8:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"HPE Helion OpenStack 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Enterprise Storage 6"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise High Performance Computing 12 SP5","product_id":"SUSE Linux Enterprise High Performance Computing 12 SP5:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP2-BCL"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP2-BCL"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP2-BCL"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP2-BCL"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server 12 SP2-BCL","product_id":"SUSE Linux Enterprise Server 12 SP2-BCL:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP2-BCL"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server 12 SP4-ESPOS","product_id":"SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server 12 SP4-LTSS","product_id":"SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server Teradata 12 SP3","product_id":"SUSE Linux Enterprise Server Teradata 12 SP3:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server Teradata 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE OpenStack Cloud 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE OpenStack Cloud 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE OpenStack Cloud 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE OpenStack Cloud 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE OpenStack Cloud 8","product_id":"SUSE OpenStack Cloud 8:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE OpenStack Cloud 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE OpenStack Cloud 9","product_id":"SUSE OpenStack Cloud 9:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE OpenStack Cloud 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE OpenStack Cloud Crowbar 8","product_id":"SUSE OpenStack Cloud Crowbar 8:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 8"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:libxml2-2"},"product_reference":"libxml2-2","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-2-32bit as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:libxml2-2-32bit"},"product_reference":"libxml2-2-32bit","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-doc as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:libxml2-doc"},"product_reference":"libxml2-doc","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2-tools as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:libxml2-tools"},"product_reference":"libxml2-tools","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"},{"category":"default_component_of","full_product_name":{"name":"libxml2 as component of SUSE OpenStack Cloud Crowbar 9","product_id":"SUSE OpenStack Cloud Crowbar 9:libxml2"},"product_reference":"libxml2","relates_to_product_reference":"SUSE OpenStack Cloud Crowbar 9"}]},"vulnerabilities":[{"cve":"CVE-2010-4008","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2010-4008"}],"notes":[{"category":"general","text":"libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to cause a denial of service (application crash) via a crafted XML document.","title":"CVE description"}],"product_status":{"known_affected":["HPE Helion OpenStack 8:libxml2","HPE Helion OpenStack 8:libxml2-2","HPE Helion OpenStack 8:libxml2-2-32bit","HPE Helion OpenStack 8:libxml2-doc","HPE Helion OpenStack 8:libxml2-tools","SUSE Enterprise Storage 6:libxml2","SUSE Linux Enterprise Server 12 SP2-BCL:libxml2","SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-2","SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-2-32bit","SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-doc","SUSE Linux Enterprise Server 12 SP2-BCL:libxml2-tools","SUSE OpenStack Cloud 8:libxml2","SUSE OpenStack Cloud 8:libxml2-2","SUSE OpenStack Cloud 8:libxml2-2-32bit","SUSE OpenStack Cloud 8:libxml2-doc","SUSE OpenStack Cloud 8:libxml2-tools","SUSE OpenStack Cloud Crowbar 8:libxml2","SUSE OpenStack Cloud Crowbar 8:libxml2-2","SUSE OpenStack Cloud Crowbar 8:libxml2-2-32bit","SUSE OpenStack Cloud Crowbar 8:libxml2-doc","SUSE OpenStack Cloud Crowbar 8:libxml2-tools"],"known_not_affected":["SUSE Linux Enterprise High Performance Computing 12 SP5:libxml2","SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2","SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-2","SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-2-32bit","SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-doc","SUSE Linux Enterprise Server 12 SP4-ESPOS:libxml2-tools","SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2","SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-2","SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-2-32bit","SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-doc","SUSE Linux Enterprise Server 12 SP4-LTSS:libxml2-tools","SUSE Linux Enterprise Server 12 SP5:libxml2","SUSE Linux Enterprise Server 12 SP5:libxml2-2","SUSE Linux Enterprise Server 12 SP5:libxml2-2-32bit","SUSE Linux Enterprise Server 12 SP5:libxml2-doc","SUSE Linux Enterprise Server 12 SP5:libxml2-tools","SUSE Linux Enterprise Server Teradata 12 SP3:libxml2","SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2","SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-2","SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-2-32bit","SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-doc","SUSE Linux Enterprise Server for SAP Applications 12 SP3:libxml2-tools","SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2","SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-2","SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-2-32bit","SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-doc","SUSE Linux Enterprise Server for SAP Applications 12 SP4:libxml2-tools","SUSE Linux Enterprise Server for SAP Applications 12 SP5:libxml2","SUSE OpenStack Cloud 9:libxml2","SUSE OpenStack Cloud 9:libxml2-2","SUSE OpenStack Cloud 9:libxml2-2-32bit","SUSE OpenStack Cloud 9:libxml2-doc","SUSE OpenStack Cloud 9:libxml2-tools","SUSE OpenStack Cloud Crowbar 9:libxml2","SUSE OpenStack Cloud Crowbar 9:libxml2-2","SUSE OpenStack Cloud Crowbar 9:libxml2-2-32bit","SUSE OpenStack Cloud Crowbar 9:libxml2-doc","SUSE OpenStack Cloud Crowbar 9:libxml2-tools"],"recommended":["SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-32bit-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-doc-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-python-2.7.6-0.25.1","SUSE Linux Enterprise Server 11:libxml2-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-32bit-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-doc-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-x86-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-32bit-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-doc-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-x86-2.7.1-10.11.1"]},"references":[{"category":"external","summary":"CVE-2010-4008","url":"https://www.suse.com/security/cve/CVE-2010-4008"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 648277 for CVE-2010-4008","url":"https://bugzilla.suse.com/648277"},{"category":"external","summary":"Advisory link for SUSE-SR:2010:023","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/JM6O73UJO5HWG5RGIFFSFKGTDNFSGYWB/#JM6O73UJO5HWG5RGIFFSFKGTDNFSGYWB"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-32bit-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-doc-2.7.6-0.3.1","SUSE Linux Enterprise Server 11 SP1-TERADATA:libxml2-python-2.7.6-0.25.1","SUSE Linux Enterprise Server 11:libxml2-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-32bit-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-doc-2.7.1-10.11.1","SUSE Linux Enterprise Server 11:libxml2-x86-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-32bit-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-doc-2.7.1-10.11.1","SUSE Linux Enterprise Server for SAP Applications 11:libxml2-x86-2.7.1-10.11.1"]}],"threats":[{"category":"impact","date":"2013-06-28T05:38:40Z","details":"moderate"}],"title":"CVE-2010-4008"}]}