Guest

Preview Tool

Cisco Bug: CSCuj45991 - XMLSoft libxml2 Hash Collisions Denial of Service Vulnerability

Last Modified

Jan 30, 2020

Products (1)

  • Cisco Jabber Software Development Kit

Known Affected Releases

9.0 9.2(0)

Description (partial)

Symptom:
Cisco Jabber-SDK includes a version of libxml2 that is affected by the vulnerabilities identified by the following Common Vulnerability and Exposures 
(CVE) IDs:

CVE-2012-0841,CVE-2011-4461,CVE-2011-4815,CVE-2011-4885,CVE-2012-0193

This bug was opened to address the potential impact on this product.

Conditions:
Device with default configuration.

This vulnerability will be fixed in version 9.2(6) of the Jabber Web voice and video SDK to be released in Spring 2014.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.