netcdf_4_7_3-gnu-openmpi2-hpc (SUSE:Linux Enterprise Module for HPC 15 SP2) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for HPC 15 SP2 package netcdf_4_7_3-gnu-openmpi2-hpc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (16)
CVE-2021-26221 — CVSS 8.1 (high): The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool.
CVE-2021-26220 — CVSS 8.1 (high): The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool.
CVE-2021-26222 — CVSS 8.1 (high): The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool.
CVE-2021-31598 — CVSS 7.5 (high): An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect memory handling while parsing crafted…
CVE-2019-20006 — CVSS 7.5 (high): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_char_content puts a pointer to the internal address of a larger…
CVE-2019-20200 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing crafted a XML file, performs incorrect…
CVE-2019-20201 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_* functions mishandle XML entities, leading to an infinite loop in…
CVE-2019-20202 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_char_content() tries to use realloc on a block that was not…
CVE-2019-20199 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing a crafted XML file, performs incorrect…
CVE-2019-20198 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_ent_ok() mishandles recursion, leading to stack consumption for a…
CVE-2019-20007 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezxml_str2utf8, while parsing a crafted XML file, performs zero-length…
CVE-2021-30485 — CVSS 6.5 (medium): An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs…
CVE-2021-31229 — CVSS 6.5 (medium): An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd() performs incorrect memory handling while parsing…
CVE-2021-31347 — CVSS 6.5 (medium): An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing…
CVE-2021-31348 — CVSS 6.5 (medium): An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing…
CVE-2019-20005 — CVSS 6.5 (medium): An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing a crafted XML file, performs incorrect…