製品・ソフトウェアに関する情報

JVN脆弱性詳細

Google Chrome で使用される libxml2 におけるサービス運用妨害 (DoS) の脆弱性

Title	Google Chrome で使用される libxml2 におけるサービス運用妨害 (DoS) の脆弱性
Summary	Google Chrome で使用される libxml2 の parser.c 内の xmlParseAttValueComplex 関数には、サービス運用妨害 (DoS) 状態となる、または任意のコードを実行される脆弱性が存在します。
Possible impacts	第三者により、XML ドキュメント内の巧妙に細工されたエンティティを介して、サービス運用妨害 (DoS) 状態にされる、または任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Nov. 26, 2012, midnight
Registration Date	Nov. 29, 2012, 11:41 a.m.
Last Update	Feb. 3, 2014, 11:20 a.m.

CVSS2.0 : 警告
Score	6.8
Vector	AV:N/AC:M/Au:N/C:P/I:P/A:P

Affected System

アップル

Apple TV 6.0 未満 (Apple TV 第 2 世代以降)

iOS 7 未満 (iPad 2 以降)

iOS 7 未満 (iPhone 4 以降)

iOS 7 未満 (iPod touch 第 5 世代以降)

iTunes 11.1.4 未満 (Windows 7)

iTunes 11.1.4 未満 (Windows 8)

iTunes 11.1.4 未満 (Windows Vista)

iTunes 11.1.4 未満 (Windows XP SP2 以降)

Google

Google Chrome 23.0.1271.91 未満

xmlsoft.org

libxml2 2.9.0 およびそれ以前

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2012-5134	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5134
National Vulnerability Database (NVD)
2	CVE-2012-5134	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-5134
SECURITY BLOG
3	CVE-2012-5134 Buffer Overflow vulnerability in libxml2	https://blogs.oracle.com/sunsecurity/entry/cve_2012_5134_buffer_overflow

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-119	https://jvndb.jvn.jp/ja/cwe/CWE-119.html

ベンダー情報

No	Name	URL
Apple Mailing Lists
1	APPLE-SA-2013-09-18-2	http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html
2	APPLE-SA-2013-09-20-1	http://lists.apple.com/archives/security-announce/2013/Sep/msg00008.html
3	APPLE-SA-2013-10-22-8	http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html
Apple Security Updates
4	HT5934	http://support.apple.com/kb/HT5934
5	HT5935	http://support.apple.com/kb/HT5935
6	HT6001	http://support.apple.com/kb/HT6001
Apple セキュリティアップデート
7	HT5934	http://support.apple.com/kb/HT5934?viewlocale=ja_JP
8	HT5935	http://support.apple.com/kb/HT5935?viewlocale=ja_JP
9	HT6001	http://support.apple.com/kb/HT6001?viewlocale=ja_JP
Debian Security Advisory
10	DSA-2580	http://www.debian.org/security/2012/dsa-2580
GNOME GIT REPOSITORY
11	Fix potential out of bound access	http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d
Google
12	Google Chrome	http://www.google.co.jp/chrome/intl/ja/landing_ff_yt.html?hl=ja&hl=ja
13	Stable Channel Update	http://googlechromereleases.blogspot.jp/2012/11/stable-channel-update.html
opensuse-security-announce
14	openSUSE-SU-2012:1637	http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html
15	openSUSE-SU-2013:0178	http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html
Red Hat Bugzilla
16	Bug 880466	https://bugzilla.redhat.com/show_bug.cgi?id=880466
Red Hat Security Advisory
17	RHSA-2012:1512	http://rhn.redhat.com/errata/RHSA-2012-1512.html
18	RHSA-2013:0217	http://rhn.redhat.com/errata/RHSA-2013-0217.html
Security Advisories
19	MDVSA-2013:056	http://www.mandriva.com/security/advisories?name=MDVSA-2013:056
Ubuntu Security Notice
20	USN-1656-1	http://www.ubuntu.com/usn/USN-1656-1

その他

No	Name	URL
JVN
1	JVNVU#94321146	http://jvn.jp/vu/JVNVU94321146/
2	JVNVU#95174988	http://jvn.jp/cert/JVNVU95174988/
3	JVNVU#98681940	http://jvn.jp/cert/JVNVU98681940/index.html

Change Log

No	Changed Details	Date of change
0	[2012年11月29日] 掲載 [2012年12月14日] ベンダ情報：レッドハット (RHSA-2012:1512) を追加 [2013年05月27日] ベンダ情報：オラクル (CVE-2012-5134 Buffer Overflow vulnerability in libxml2) を追加 [2013年10月15日] 影響を受けるシステム：アップル (HT5934) の情報を追加影響を受けるシステム：アップル (HT5935) の情報を追加ベンダ情報：アップル (HT5934) を追加ベンダ情報：アップル (HT5935) を追加ベンダ情報：アップル (APPLE-SA-2013-09-18-2) を追加参考情報：JVN (JVNVU#98681940) を追加 [2013年11月08日] 影響を受けるシステム：アップル (HT6001) の情報を追加ベンダ情報：Debian (DSA-2580) を追加ベンダ情報：Mandriva, Inc. (MDVSA-2013:056) を追加ベンダ情報：Novell (openSUSE-SU-2012:1637) を追加ベンダ情報：Novell (openSUSE-SU-2013:0178) を追加ベンダ情報：Ubuntu (USN-1656-1) を追加ベンダ情報：アップル (APPLE-SA-2013-10-22-8) を追加ベンダ情報：アップル (APPLE-SA-2013-09-20-1) を追加ベンダ情報：アップル (HT6001) を追加ベンダ情報：レッドハット (RHSA-2013:0217) を追加参考情報：JVN (JVNVU#95174988) を追加 [2014年02月03日] 影響を受けるシステム：内容を更新参考情報：JVN (JVNVU#94321146) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2012-5134

Summary	Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 2.9.0 and earlier, as used in Google Chrome before 23.0.1271.91 and other products, allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document.
Publication Date	Nov. 28, 2012, 10:55 a.m.
Registration Date	Jan. 28, 2021, 3:04 p.m.
Last Update	Nov. 21, 2024, 10:44 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:google:chrome:23.0.1271.87:::::::*
cpe:2.3:a:google:chrome:23.0.1271.58:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.2:::::::*
cpe:2.3:a:google:chrome:23.0.1271.19:::::::*
cpe:2.3:a:google:chrome:23.0.1271.51:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.30:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.32:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.1.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.19:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.9:::::::*
cpe:2.3:a:google:chrome:23.0.1271.45:::::::*
cpe:2.3:a:google:chrome:23.0.1271.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.6:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.26:::::::*
cpe:2.3:a:google:chrome:23.0.1271.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.2:::::::*
cpe:2.3:a:xmlsoft:libxml2::::::::		2.9.0
cpe:2.3:a:xmlsoft:libxml2:2.4.21:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.20:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.25:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.24:::::::*
cpe:2.3:a:google:chrome:23.0.1271.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.61:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.86:::::::*
cpe:2.3:a:google:chrome:23.0.1271.23:::::::*
cpe:2.3:a:google:chrome:23.0.1271.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.27:::::::*
cpe:2.3:a:google:chrome:23.0.1271.49:::::::*
cpe:2.3:a:google:chrome:23.0.1271.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.1.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.46:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.52:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.14:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.27:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.7:::::::*
cpe:2.3:a:google:chrome:23.0.1271.54:::::::*
cpe:2.3:a:google:chrome:23.0.1271.15:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.13:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.26:::::::*
cpe:2.3:a:google:chrome:23.0.1271.88:::::::*
cpe:2.3:a:google:chrome:23.0.1271.39:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.85:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.28:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.55:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.57:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.84:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.15:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.9.0:rc1::::::
cpe:2.3:a:xmlsoft:libxml2:2.2.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.22:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.26:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.31:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.11:::::::*
cpe:2.3:a:google:chrome:23.0.1271.24:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.7:::::::*
cpe:2.3:a:google:chrome:23.0.1271.62:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.0.0:::::::*
cpe:2.3:a:google:chrome:23.0.1271.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.22:::::::*
cpe:2.3:a:google:chrome:23.0.1271.37:::::::*
cpe:2.3:a:google:chrome:23.0.1271.56:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.2:::::::*
cpe:2.3:a:google:chrome:23.0.1271.40:::::::*
cpe:2.3:a:google:chrome:23.0.1271.30:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.60:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.0:beta::::::
cpe:2.3:a:xmlsoft:libxml2:2.6.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.20:::::::*
cpe:2.3:a:google:chrome:23.0.1271.35:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.1:::::::*
cpe:2.3:a:google:chrome::::::::		23.0.1271.89
cpe:2.3:a:xmlsoft:libxml2:2.7.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.6:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.36:::::::*
cpe:2.3:a:google:chrome:23.0.1271.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.23:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.0:::::::*
cpe:2.3:a:google:chrome:23.0.1271.21:::::::*
cpe:2.3:a:google:chrome:23.0.1271.33:::::::*
cpe:2.3:a:google:chrome:23.0.1271.64:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.9:::::::*
cpe:2.3:a:google:chrome:23.0.1271.53:::::::*
cpe:2.3:a:google:chrome:23.0.1271.41:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.30:::::::*
cpe:2.3:a:google:chrome:23.0.1271.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.1:::::::*
cpe:2.3:a:google:chrome:23.0.1271.20:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.38:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.83:::::::*
cpe:2.3:a:google:chrome:23.0.1271.44:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.10:::::::*
cpe:2.3:a:google:chrome:23.0.1271.50:::::::*
cpe:2.3:a:google:chrome:23.0.1271.32:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.14:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.22:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.29:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.6:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:apple:iphone_os:6.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.0:::::::*
cpe:2.3:o:apple:iphone_os:3.2:::::::*
cpe:2.3:o:apple:iphone_os:3.1.3:::::::*
cpe:2.3:o:apple:iphone_os:1.0.2:::::::*
cpe:2.3:o:apple:iphone_os:4.3.2:::::::*
cpe:2.3:o:apple:iphone_os:4.0.2:::::::*
cpe:2.3:o:apple:iphone_os::::::::		6.1.4
cpe:2.3:o:apple:iphone_os:2.2:::::::*
cpe:2.3:o:apple:iphone_os:1.1.1:::::::*
cpe:2.3:o:apple:iphone_os:6.1.3:::::::*
cpe:2.3:o:apple:iphone_os:5.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.8:::::::*
cpe:2.3:o:apple:iphone_os:6.0.2:::::::*
cpe:2.3:o:apple:iphone_os:4.1:::::::*
cpe:2.3:o:apple:iphone_os:2.0.0:::::::*
cpe:2.3:o:apple:iphone_os:3.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.3.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.5:::::::*
cpe:2.3:o:apple:iphone_os:1.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.3:::::::*
cpe:2.3:o:apple:iphone_os:1.1.0:::::::*
cpe:2.3:o:apple:iphone_os:1.0.1:::::::*
cpe:2.3:o:apple:iphone_os:2.1:::::::*
cpe:2.3:o:apple:iphone_os:6.0:::::::*
cpe:2.3:o:apple:iphone_os:4.3.5:::::::*
cpe:2.3:o:apple:iphone_os:6.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.5:::::::*
cpe:2.3:o:apple:iphone_os:4.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.3.3:::::::*
cpe:2.3:o:apple:iphone_os:5.0.1:::::::*
cpe:2.3:o:apple:iphone_os:2.1.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.4:::::::*
cpe:2.3:o:apple:iphone_os:5.0:::::::*
cpe:2.3:o:apple:iphone_os:1.0.0:::::::*
cpe:2.3:o:apple:iphone_os:5.1.1:::::::*
cpe:2.3:o:apple:iphone_os:2.0.2:::::::*
cpe:2.3:o:apple:iphone_os:2.0:::::::*
cpe:2.3:o:apple:iphone_os:2.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.0:::::::*
cpe:2.3:o:apple:iphone_os:4.3.0:::::::*
cpe:2.3:o:apple:iphone_os:2.2.1:::::::*
cpe:2.3:o:apple:iphone_os:3.2.1:::::::*
cpe:2.3:o:apple:iphone_os:3.2.2:::::::*
cpe:2.3:o:apple:iphone_os:6.0.1:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d
2	http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d
3	http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html
4	http://googlechromereleases.blogspot.com/2012/11/stable-channel-update.html
5	http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html
6	http://lists.apple.com/archives/security-announce/2013/Oct/msg00009.html
7	http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html
8	http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.html
9	http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html
10	http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00004.html
11	http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html
12	http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00023.html
13	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html
14	http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00002.html
15	http://rhn.redhat.com/errata/RHSA-2012-1512.html
16	http://rhn.redhat.com/errata/RHSA-2012-1512.html
17	http://rhn.redhat.com/errata/RHSA-2013-0217.html
18	http://rhn.redhat.com/errata/RHSA-2013-0217.html
19	http://secunia.com/advisories/51448
20	http://secunia.com/advisories/51448
21	http://secunia.com/advisories/54886
22	http://secunia.com/advisories/54886
23	http://secunia.com/advisories/55568
24	http://secunia.com/advisories/55568
25	http://support.apple.com/kb/HT5934
26	http://support.apple.com/kb/HT5934
27	http://support.apple.com/kb/HT6001
28	http://support.apple.com/kb/HT6001
29	http://www.debian.org/security/2012/dsa-2580
30	http://www.debian.org/security/2012/dsa-2580
31	http://www.mandriva.com/security/advisories?name=MDVSA-2013:056
32	http://www.mandriva.com/security/advisories?name=MDVSA-2013:056
33	http://www.securityfocus.com/bid/56684
34	http://www.securityfocus.com/bid/56684
35	http://www.securitytracker.com/id?1027815
36	http://www.securitytracker.com/id?1027815
37	http://www.ubuntu.com/usn/USN-1656-1
38	http://www.ubuntu.com/usn/USN-1656-1
39	https://bugzilla.redhat.com/show_bug.cgi?id=880466
40	https://bugzilla.redhat.com/show_bug.cgi?id=880466
41	https://code.google.com/p/chromium/issues/detail?id=158249
42	https://code.google.com/p/chromium/issues/detail?id=158249
43	https://exchange.xforce.ibmcloud.com/vulnerabilities/80294
44	https://exchange.xforce.ibmcloud.com/vulnerabilities/80294

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:google:chrome:23.0.1271.87:::::::*
cpe:2.3:a:google:chrome:23.0.1271.58:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.2:::::::*
cpe:2.3:a:google:chrome:23.0.1271.19:::::::*
cpe:2.3:a:google:chrome:23.0.1271.51:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.30:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.32:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.1.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.19:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.9:::::::*
cpe:2.3:a:google:chrome:23.0.1271.45:::::::*
cpe:2.3:a:google:chrome:23.0.1271.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.6:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.26:::::::*
cpe:2.3:a:google:chrome:23.0.1271.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.2:::::::*
cpe:2.3:a:xmlsoft:libxml2::::::::		2.9.0
cpe:2.3:a:xmlsoft:libxml2:2.4.21:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.20:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.17:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.25:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.24:::::::*
cpe:2.3:a:google:chrome:23.0.1271.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.61:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.86:::::::*
cpe:2.3:a:google:chrome:23.0.1271.23:::::::*
cpe:2.3:a:google:chrome:23.0.1271.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.27:::::::*
cpe:2.3:a:google:chrome:23.0.1271.49:::::::*
cpe:2.3:a:google:chrome:23.0.1271.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.1.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.46:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.52:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.14:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.27:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.7:::::::*
cpe:2.3:a:google:chrome:23.0.1271.54:::::::*
cpe:2.3:a:google:chrome:23.0.1271.15:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.13:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.26:::::::*
cpe:2.3:a:google:chrome:23.0.1271.88:::::::*
cpe:2.3:a:google:chrome:23.0.1271.39:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.85:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.28:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.55:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.57:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.8:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.8:::::::*
cpe:2.3:a:google:chrome:23.0.1271.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.84:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.15:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.9.0:rc1::::::
cpe:2.3:a:xmlsoft:libxml2:2.2.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.22:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.26:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.31:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.18:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.11:::::::*
cpe:2.3:a:google:chrome:23.0.1271.24:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.7:::::::*
cpe:2.3:a:google:chrome:23.0.1271.62:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.5:::::::*
cpe:2.3:a:google:chrome:23.0.1271.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.0.0:::::::*
cpe:2.3:a:google:chrome:23.0.1271.7:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.10:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.6:::::::*
cpe:2.3:a:google:chrome:23.0.1271.22:::::::*
cpe:2.3:a:google:chrome:23.0.1271.37:::::::*
cpe:2.3:a:google:chrome:23.0.1271.56:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.2:::::::*
cpe:2.3:a:google:chrome:23.0.1271.40:::::::*
cpe:2.3:a:google:chrome:23.0.1271.30:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.60:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.0:beta::::::
cpe:2.3:a:xmlsoft:libxml2:2.6.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.20:::::::*
cpe:2.3:a:google:chrome:23.0.1271.35:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.1:::::::*
cpe:2.3:a:google:chrome::::::::		23.0.1271.89
cpe:2.3:a:xmlsoft:libxml2:2.7.0:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.6:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.36:::::::*
cpe:2.3:a:google:chrome:23.0.1271.13:::::::*
cpe:2.3:a:google:chrome:23.0.1271.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.9:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.1:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.23:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.0:::::::*
cpe:2.3:a:google:chrome:23.0.1271.21:::::::*
cpe:2.3:a:google:chrome:23.0.1271.33:::::::*
cpe:2.3:a:google:chrome:23.0.1271.64:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.9:::::::*
cpe:2.3:a:google:chrome:23.0.1271.53:::::::*
cpe:2.3:a:google:chrome:23.0.1271.41:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.30:::::::*
cpe:2.3:a:google:chrome:23.0.1271.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.1:::::::*
cpe:2.3:a:google:chrome:23.0.1271.20:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.3:::::::*
cpe:2.3:a:google:chrome:23.0.1271.16:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.14:::::::*
cpe:2.3:a:google:chrome:23.0.1271.38:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.7.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.7.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.83:::::::*
cpe:2.3:a:google:chrome:23.0.1271.44:::::::*
cpe:2.3:a:xmlsoft:libxml2:1.8.4:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.5.10:::::::*
cpe:2.3:a:google:chrome:23.0.1271.50:::::::*
cpe:2.3:a:google:chrome:23.0.1271.32:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.12:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.4:::::::*
cpe:2.3:a:google:chrome:23.0.1271.5:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.14:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.22:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.3.2:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.3:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.2.11:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.4.29:::::::*
cpe:2.3:a:xmlsoft:libxml2:2.6.6:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:apple:iphone_os:6.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.0:::::::*
cpe:2.3:o:apple:iphone_os:3.2:::::::*
cpe:2.3:o:apple:iphone_os:3.1.3:::::::*
cpe:2.3:o:apple:iphone_os:1.0.2:::::::*
cpe:2.3:o:apple:iphone_os:4.3.2:::::::*
cpe:2.3:o:apple:iphone_os:4.0.2:::::::*
cpe:2.3:o:apple:iphone_os::::::::		6.1.4
cpe:2.3:o:apple:iphone_os:2.2:::::::*
cpe:2.3:o:apple:iphone_os:1.1.1:::::::*
cpe:2.3:o:apple:iphone_os:6.1.3:::::::*
cpe:2.3:o:apple:iphone_os:5.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.8:::::::*
cpe:2.3:o:apple:iphone_os:6.0.2:::::::*
cpe:2.3:o:apple:iphone_os:4.1:::::::*
cpe:2.3:o:apple:iphone_os:2.0.0:::::::*
cpe:2.3:o:apple:iphone_os:3.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.3.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.5:::::::*
cpe:2.3:o:apple:iphone_os:1.1.2:::::::*
cpe:2.3:o:apple:iphone_os:3.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.3:::::::*
cpe:2.3:o:apple:iphone_os:1.1.0:::::::*
cpe:2.3:o:apple:iphone_os:1.0.1:::::::*
cpe:2.3:o:apple:iphone_os:2.1:::::::*
cpe:2.3:o:apple:iphone_os:6.0:::::::*
cpe:2.3:o:apple:iphone_os:4.3.5:::::::*
cpe:2.3:o:apple:iphone_os:6.1:::::::*
cpe:2.3:o:apple:iphone_os:4.2.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.5:::::::*
cpe:2.3:o:apple:iphone_os:4.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.3.3:::::::*
cpe:2.3:o:apple:iphone_os:5.0.1:::::::*
cpe:2.3:o:apple:iphone_os:2.1.1:::::::*
cpe:2.3:o:apple:iphone_os:1.1.4:::::::*
cpe:2.3:o:apple:iphone_os:5.0:::::::*
cpe:2.3:o:apple:iphone_os:1.0.0:::::::*
cpe:2.3:o:apple:iphone_os:5.1.1:::::::*
cpe:2.3:o:apple:iphone_os:2.0.2:::::::*
cpe:2.3:o:apple:iphone_os:2.0:::::::*
cpe:2.3:o:apple:iphone_os:2.0.1:::::::*
cpe:2.3:o:apple:iphone_os:4.0:::::::*
cpe:2.3:o:apple:iphone_os:4.3.0:::::::*
cpe:2.3:o:apple:iphone_os:2.2.1:::::::*
cpe:2.3:o:apple:iphone_os:3.2.1:::::::*
cpe:2.3:o:apple:iphone_os:3.2.2:::::::*
cpe:2.3:o:apple:iphone_os:6.0.1:::::::*