{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-07-03T10:05:01.539","vulnerabilities":[{"cve":{"id":"CVE-2009-2414","sourceIdentifier":"secalert@redhat.com","published":"2009-08-11T18:30:00.937","lastModified":"2026-06-16T23:09:23.990","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework."},{"lang":"es","value":"Vulnerabilidad de agotamiento de pila en  libxml2 v2.5.10, v2.6.16, v2.6.26, v2.6.27, y v2.6.32, y libxml v1.8.17, permite a atacantes dependientes de contexto producir una denegación de servicio (caída de aplicación) a través de una declaración de elementos en una DTD, relacionada con la recursión de función, como se demostro en Codenomicon XML fuzzing framework."}],"affected":[{"source":"secalert@redhat.com","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:N/A:P","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml:1.8.17:*:*:*:*:*:*:*","matchCriteriaId":"E7C0B552-67E9-48E5-ABFB-AF0CD6DA46FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml2:2.5.10:*:*:*:*:*:*:*","matchCriteriaId":"D463EC3C-88F1-46D9-ADB6-6283DC23B0B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml2:2.6.16:*:*:*:*:*:*:*","matchCriteriaId":"0AD69C98-11AB-4BB5-A91A-F029BA0E1DB1"},{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml2:2.6.26:*:*:*:*:*:*:*","matchCriteriaId":"1D8135B1-FB22-4755-A5ED-CDB16E3E85A3"},{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml2:2.6.27:*:*:*:*:*:*:*","matchCriteriaId":"2B4685BF-394A-4426-980A-2B1D37737C06"},{"vulnerable":true,"criteria":"cpe:2.3:a:xmlsoft:libxml2:2.6.32:*:*:*:*:*:*:*","matchCriteriaId":"7069A49C-038C-4E7B-AF03-4D90D5734414"}]}]}],"references":[{"url":"http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.html","source":"secalert@redhat.com"},{"url":"http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html","source":"secalert@redhat.com"},{"url":"http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html","source":"secalert@redhat.com"},{"url":"http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html","source":"secalert@redhat.com"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.html","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/35036","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/36207","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/36338","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/36417","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/36631","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/37346","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/37471","source":"secalert@redhat.com"},{"url":"http://support.apple.com/kb/HT3937","source":"secalert@redhat.com"},{"url":"http://support.apple.com/kb/HT3949","source":"secalert@redhat.com"},{"url":"http://support.apple.com/kb/HT4225","source":"secalert@redhat.com"},{"url":"http://www.cert.fi/en/reports/2009/vulnerability2009085.html","source":"secalert@redhat.com"},{"url":"http://www.codenomicon.com/labs/xml/","source":"secalert@redhat.com"},{"url":"http://www.debian.org/security/2009/dsa-1859","source":"secalert@redhat.com","tags":["Patch"]},{"url":"http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.html","source":"secalert@redhat.com"},{"url":"http://www.networkworld.com/columnists/2009/080509-xml-flaw.html","source":"secalert@redhat.com"},{"url":"http://www.openoffice.org/security/cves/CVE-2009-2414-2416.html","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/archive/1/507985/100/0/threaded","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/36010","source":"secalert@redhat.com"},{"url":"http://www.ubuntu.com/usn/USN-815-1","source":"secalert@redhat.com"},{"url":"http://www.vmware.com/security/advisories/VMSA-2009-0016.html","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2009/2420","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2009/3184","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2009/3217","source":"secalert@redhat.com"},{"url":"http://www.vupen.com/english/advisories/2009/3316","source":"secalert@redhat.com"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=515195","source":"secalert@redhat.com"},{"url":"https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10129","source":"secalert@redhat.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8639","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.html","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.html","source":"secalert@redhat.com"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.html","source":"secalert@redhat.com"},{"url":"http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/35036","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36207","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36338","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36417","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/36631","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/37346","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/37471","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.apple.com/kb/HT3937","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.apple.com/kb/HT3949","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://support.apple.com/kb/HT4225","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.cert.fi/en/reports/2009/vulnerability2009085.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.codenomicon.com/labs/xml/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.debian.org/security/2009/dsa-1859","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.networkworld.com/columnists/2009/080509-xml-flaw.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openoffice.org/security/cves/CVE-2009-2414-2416.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/archive/1/507985/100/0/threaded","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/36010","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.ubuntu.com/usn/USN-815-1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vmware.com/security/advisories/VMSA-2009-0016.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/2420","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/3184","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/3217","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/3316","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=515195","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10129","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8639","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.html","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.html","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}