Not a user yet?
Log in Register for free Suggest a product
Update

USN-8174-1: XML::Parser vulnerabilities

Ubuntu DesktopUbuntu Desktop
Canonical

USN-8174-1: XML::Parser vulnerabilities

Publication date: 14 April 2026
Overview: Several security issues were fixed in XML::Parser.

Packages
libxml-parser-perl - Perl module for parsing XML files

Details
It was discovered that XML::Parser incorrectly handled certain multi-byte
UTF-8 characters. If a user or automated system were tricked into
processing specially crafted XML data, a remote attacker could use this
issue to cause XML::Parser to crash, resulting in a denial of service or to
possibly execute arbitrary code. (CVE-2006-10002)

It was discovered that XML::Parser incorrectly handled very deep element
nesting. If a user or automated system were tricked into processing
specially crafted XML data, a remote attacker could use this issue to cause
XML::Parser to crash, resulting in a denial of service or to possibly
execute arbitrary code (CVE-2006-10003)

Update instructions
In general, a standard system update will make all the necessary changes.

The problem can be corrected by updating your system to the following package versions:

  • 25.10 questing libxml-parser-perl – 2.47-1ubuntu0.25.10.1
  • 24.04 LTS noble libxml-parser-perl – 2.47-1ubuntu0.24.04.1
  • 22.04 LTS jammy libxml-parser-perl – 2.46-3ubuntu0.1
More updatesTo the product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Receive Important Update Messages Stay tuned for upcoming Canonical updates

More from the Operating Systems section

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad