U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2008-3281

Change History

Modified Analysis by NIST 2/02/2024 10:02:14 AM

Action Type Old Value New Value
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Added CWE

								
							
							
						
NIST CWE-776
Removed CWE
NIST CWE-399

								
						
Changed CPE Configuration
OR
     *cpe:2.3:a:xmlsoft:libxml2:2.4.19:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.4.23:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.5.4:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.5.10:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.5.11:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.0:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.1:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.2:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.3:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.11:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.12:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.13:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:2.6.14:*:*:*:*:*:*:*
     *cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:* versions up to (including) 2.6.32
OR
     *cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:* versions up to (including) 2.6.32
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* versions up to (excluding) 4.0
     *cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions from (including) 1.0.0 up to (excluding) 3.0
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
     *cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:4.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:4.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:5.2:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:2.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:3.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:4.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:2.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:3.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:4.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:vmware:esx:2.5.4:*:*:*:*:*:*:*
     *cpe:2.3:o:vmware:esx:2.5.5:*:*:*:*:*:*:*
     *cpe:2.3:o:vmware:esx:3.0.2:*:*:*:*:*:*:*
     *cpe:2.3:o:vmware:esx:3.0.3:*:*:*:*:*:*:*
Changed Reference Type
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html No Types Assigned
http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html Mailing List
Changed Reference Type
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html No Types Assigned
http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html Broken Link, Mailing List
Changed Reference Type
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html No Types Assigned
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html Mailing List
Changed Reference Type
http://lists.vmware.com/pipermail/security-announce/2008/000039.html No Types Assigned
http://lists.vmware.com/pipermail/security-announce/2008/000039.html Broken Link
Changed Reference Type
http://mail.gnome.org/archives/xml/2008-August/msg00034.html Exploit
http://mail.gnome.org/archives/xml/2008-August/msg00034.html Mailing List, Patch
Changed Reference Type
http://secunia.com/advisories/31558 No Types Assigned
http://secunia.com/advisories/31558 Broken Link
Changed Reference Type
http://secunia.com/advisories/31566 No Types Assigned
http://secunia.com/advisories/31566 Broken Link
Changed Reference Type
http://secunia.com/advisories/31590 No Types Assigned
http://secunia.com/advisories/31590 Broken Link
Changed Reference Type
http://secunia.com/advisories/31728 No Types Assigned
http://secunia.com/advisories/31728 Broken Link
Changed Reference Type
http://secunia.com/advisories/31748 No Types Assigned
http://secunia.com/advisories/31748 Broken Link
Changed Reference Type
http://secunia.com/advisories/31855 No Types Assigned
http://secunia.com/advisories/31855 Broken Link
Changed Reference Type
http://secunia.com/advisories/31982 No Types Assigned
http://secunia.com/advisories/31982 Broken Link
Changed Reference Type
http://secunia.com/advisories/32488 No Types Assigned
http://secunia.com/advisories/32488 Broken Link
Changed Reference Type
http://secunia.com/advisories/32807 No Types Assigned
http://secunia.com/advisories/32807 Broken Link
Changed Reference Type
http://secunia.com/advisories/32974 No Types Assigned
http://secunia.com/advisories/32974 Broken Link
Changed Reference Type
http://secunia.com/advisories/35379 No Types Assigned
http://secunia.com/advisories/35379 Broken Link
Changed Reference Type
http://security.gentoo.org/glsa/glsa-200812-06.xml No Types Assigned
http://security.gentoo.org/glsa/glsa-200812-06.xml Third Party Advisory
Changed Reference Type
http://support.apple.com/kb/HT3613 No Types Assigned
http://support.apple.com/kb/HT3613 Third Party Advisory
Changed Reference Type
http://support.apple.com/kb/HT3639 No Types Assigned
http://support.apple.com/kb/HT3639 Third Party Advisory
Changed Reference Type
http://svn.gnome.org/viewvc/libxml2?view=revision&revision=3772 No Types Assigned
http://svn.gnome.org/viewvc/libxml2?view=revision&revision=3772 Broken Link
Changed Reference Type
http://wiki.rpath.com/Advisories:rPSA-2008-0325 No Types Assigned
http://wiki.rpath.com/Advisories:rPSA-2008-0325 Broken Link
Changed Reference Type
http://www.debian.org/security/2008/dsa-1631 No Types Assigned
http://www.debian.org/security/2008/dsa-1631 Mailing List, Third Party Advisory
Changed Reference Type
http://www.mandriva.com/security/advisories?name=MDVSA-2008:180 No Types Assigned
http://www.mandriva.com/security/advisories?name=MDVSA-2008:180 Broken Link
Changed Reference Type
http://www.mandriva.com/security/advisories?name=MDVSA-2008:192 No Types Assigned
http://www.mandriva.com/security/advisories?name=MDVSA-2008:192 Broken Link
Changed Reference Type
http://www.securityfocus.com/archive/1/497962/100/0/threaded No Types Assigned
http://www.securityfocus.com/archive/1/497962/100/0/threaded Broken Link, Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securityfocus.com/bid/30783 Patch
http://www.securityfocus.com/bid/30783 Broken Link, Patch, Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id?1020728 No Types Assigned
http://www.securitytracker.com/id?1020728 Broken Link, Third Party Advisory, VDB Entry
Changed Reference Type
http://www.ubuntu.com/usn/usn-640-1 No Types Assigned
http://www.ubuntu.com/usn/usn-640-1 Third Party Advisory
Changed Reference Type
http://www.vmware.com/security/advisories/VMSA-2008-0017.html No Types Assigned
http://www.vmware.com/security/advisories/VMSA-2008-0017.html Third Party Advisory
Changed Reference Type
http://www.vupen.com/english/advisories/2008/2419 No Types Assigned
http://www.vupen.com/english/advisories/2008/2419 Broken Link
Changed Reference Type
http://www.vupen.com/english/advisories/2008/2843 No Types Assigned
http://www.vupen.com/english/advisories/2008/2843 Broken Link
Changed Reference Type
http://www.vupen.com/english/advisories/2008/2971 No Types Assigned
http://www.vupen.com/english/advisories/2008/2971 Broken Link
Changed Reference Type
http://www.vupen.com/english/advisories/2009/1522 No Types Assigned
http://www.vupen.com/english/advisories/2009/1522 Broken Link
Changed Reference Type
http://www.vupen.com/english/advisories/2009/1621 No Types Assigned
http://www.vupen.com/english/advisories/2009/1621 Broken Link
Changed Reference Type
http://xmlsoft.org/news.html No Types Assigned
http://xmlsoft.org/news.html Release Notes
Changed Reference Type
https://bugzilla.redhat.com/show_bug.cgi?id=458086 No Types Assigned
https://bugzilla.redhat.com/show_bug.cgi?id=458086 Issue Tracking
Changed Reference Type
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6496 No Types Assigned
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6496 Broken Link
Changed Reference Type
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9812 No Types Assigned
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9812 Broken Link
Changed Reference Type
https://rhn.redhat.com/errata/RHSA-2008-0836.html No Types Assigned
https://rhn.redhat.com/errata/RHSA-2008-0836.html Third Party Advisory
Changed Reference Type
https://usn.ubuntu.com/644-1/ No Types Assigned
https://usn.ubuntu.com/644-1/ Broken Link
Changed Reference Type
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00261.html No Types Assigned
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00261.html Mailing List
Changed Reference Type
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00347.html No Types Assigned
https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00347.html Mailing List