Critical severity9.8NVD Advisory· Published Apr 11, 2016· Updated May 6, 2026
CVE-2015-8710
CVE-2015-8710
Description
The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possibly have unspecified other impact via an unclosed HTML comment.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.openwall.com/lists/oss-security/2015/04/19/4nvdMailing ListPatch
- rhn.redhat.com/errata/RHSA-2016-1089.htmlnvdThird Party Advisory
- www.debian.org/security/2015/dsa-3430nvdThird Party Advisory
- www.securityfocus.com/bid/79811nvdThird Party AdvisoryVDB Entry
- git.gnome.org/browse/libxml2/commit/nvdThird Party Advisory
- hackerone.com/reports/57125nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2015/09/13/1nvdMailing List
- www.openwall.com/lists/oss-security/2015/12/31/7nvdMailing List
- bugzilla.gnome.org/show_bug.cginvdIssue Tracking
News mentions
0No linked articles in our index yet.