CVE-2009-2416

Name: CVE-2009-2416
Creator: NVD / NIST
Published: 2009-08-11T18:30:00.983+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.5/10EPSS 1.79%

Last modified Jun 16, 2026

CVE-2009-2416 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.. EPSS estimates a 1.79% chance of exploitation in the next 30 days.

Description

Multiple use-after-free vulnerabilities in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allow context-dependent attackers to cause a denial of service (application crash) via crafted (1) Notation or (2) Enumeration attribute types in an XML file, as demonstrated by the Codenomicon XML fuzzing framework.

Metrics

CVSS 3.1

6.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS Probability

1.79%

75.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Xmlsoft	Libxml	1.8.17
Xmlsoft	Libxml2	2.5.10
Xmlsoft	Libxml2	2.6.16
Xmlsoft	Libxml2	2.6.26
Xmlsoft	Libxml2	2.6.27
Xmlsoft	Libxml2	2.6.32
Fedoraproject	Fedora	10
Fedoraproject	Fedora	11
Debian	Debian Linux	4.0
Redhat	Enterprise Linux	3.0
Redhat	Enterprise Linux	4.0
Redhat	Enterprise Linux	5.0
Canonical	Ubuntu Linux	6.06
Canonical	Ubuntu Linux	8.04
Canonical	Ubuntu Linux	8.10
Canonical	Ubuntu Linux	9.04
Google	Chrome	< 2.0.172.43
Apple	Safari	< 4.0.4
Apple	Iphone Os	>= 2.0, < 4.0
Apple	Mac Os X	< 10.4.11
Apple	Mac Os X	>= 10.5.0, < 10.5.8
Apple	Mac Os X	>= 10.6.0, < 10.6.2
Apple	Mac Os X Server	< 10.4.11
Apple	Mac Os X Server	>= 10.5.0, < 10.5.8
Apple	Mac Os X Server	>= 10.6.0, < 10.6.2
Opensuse	Opensuse	>= 10.3, <= 11.1
Suse	Linux Enterprise	10.0
Suse	Linux Enterprise	11.0
Suse	Linux Enterprise Server	9
Vmware	Vcenter Server	4.0
Vmware	Vma	4.0
Vmware	Esx	3.0.3
Vmware	Esx	3.5
Vmware	Esx	4.0
Vmware	Esxi	3.5
Vmware	Esxi	4.0
Sun	Openoffice.Org	>= 2.0.0, < 2.4.3
Sun	Openoffice.Org	>= 3.0.0, < 3.1.1

References

http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.htmlRelease Notes
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.htmlMailing List
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.htmlMailing List
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.htmlMailing List
http://secunia.com/advisories/35036Broken Link
http://secunia.com/advisories/36207Broken Link
http://secunia.com/advisories/36338Broken Link
http://secunia.com/advisories/36417Broken Link
http://secunia.com/advisories/36631Broken Link
http://secunia.com/advisories/37346Broken Link
http://secunia.com/advisories/37471Broken Link
http://support.apple.com/kb/HT3937Third Party Advisory
http://support.apple.com/kb/HT3949Third Party Advisory
http://support.apple.com/kb/HT4225Third Party Advisory
http://www.cert.fi/en/reports/2009/vulnerability2009085.htmlBroken Link
http://www.codenomicon.com/labs/xml/Broken Link
http://www.debian.org/security/2009/dsa-1859Mailing List, Patch
http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.htmlPatch
http://www.networkworld.com/columnists/2009/080509-xml-flaw.htmlBroken Link
http://www.openoffice.org/security/cves/CVE-2009-2414-2416.htmlThird Party Advisory
http://www.securityfocus.com/archive/1/507985/100/0/threadedBroken Link, Third Party Advisory, VDB Entry
http://www.securityfocus.com/bid/36010Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-815-1Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlThird Party Advisory
http://www.vupen.com/english/advisories/2009/2420Broken Link
http://www.vupen.com/english/advisories/2009/3184Broken Link
http://www.vupen.com/english/advisories/2009/3217Broken Link
http://www.vupen.com/english/advisories/2009/3316Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=515205Issue Tracking, Patch
https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7783Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9262Broken Link
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.htmlMailing List
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.htmlMailing List
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.htmlMailing List
http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.htmlRelease Notes
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.htmlMailing List
http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.htmlMailing List
http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.htmlMailing List
http://secunia.com/advisories/35036Broken Link
http://secunia.com/advisories/36207Broken Link
http://secunia.com/advisories/36338Broken Link
http://secunia.com/advisories/36417Broken Link
http://secunia.com/advisories/36631Broken Link
http://secunia.com/advisories/37346Broken Link
http://secunia.com/advisories/37471Broken Link
http://support.apple.com/kb/HT3937Third Party Advisory
http://support.apple.com/kb/HT3949Third Party Advisory
http://support.apple.com/kb/HT4225Third Party Advisory
http://www.cert.fi/en/reports/2009/vulnerability2009085.htmlBroken Link
http://www.codenomicon.com/labs/xml/Broken Link
http://www.debian.org/security/2009/dsa-1859Mailing List, Patch
http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.htmlPatch
http://www.networkworld.com/columnists/2009/080509-xml-flaw.htmlBroken Link
http://www.openoffice.org/security/cves/CVE-2009-2414-2416.htmlThird Party Advisory
http://www.securityfocus.com/archive/1/507985/100/0/threadedBroken Link, Third Party Advisory, VDB Entry
http://www.securityfocus.com/bid/36010Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-815-1Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlThird Party Advisory
http://www.vupen.com/english/advisories/2009/2420Broken Link
http://www.vupen.com/english/advisories/2009/3184Broken Link
http://www.vupen.com/english/advisories/2009/3217Broken Link
http://www.vupen.com/english/advisories/2009/3316Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=515205Issue Tracking, Patch
https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7783Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9262Broken Link
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.htmlMailing List
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.htmlMailing List
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.htmlMailing List

Timeline

Published: Aug 11, 2009
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2009-2416?

How severe is CVE-2009-2416?

CVE-2009-2416 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 1.79% probability of exploitation in the next 30 days.

How do I fix CVE-2009-2416?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-2416?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST