Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux

Amazon Linux Local Check: ALAS-2014-341
Information
Severity
Severity
Medium
Family
Family
Amazon Linux Local Security Checks
CVSSv2 Base
CVSSv2 Base
4.3
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:N/I:N/A:P
Solution Type
Solution Type
Vendor Patch
Created
Created
7 years ago
Modified
Modified
4 years ago
Summary
Amazon Linux Local Security Checks
Insight
Insight
It was discovered that libxml2, a library providing support to read, modify and write XML files, incorrectly performs entity substituton in the doctype prolog, even if the application using libxml2 disabled any entity substitution. A remote attacker could provide a specially-crafted XML file that, when processed, would lead to the exhaustion of CPU and memory resources or file descriptors.
Solution
Solution
Run yum update libxml2 to update your system.