Описание
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.
Отчет
Red Hat Satellite 6 is not vulnerable to this issue, because the candlepin component who uses the c3p0 jar never passes a XML configuration file to c3p0, even though it includes a vulnerable version of the latter. Since this issue requires a XML files to be loaded by c3p0, an exploitation path doesn't exist.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat BPM Suite 6 | c3p0 | Out of support scope | ||
| Red Hat JBoss Enterprise Web Server 2 | c3p0 | Out of support scope | ||
| Red Hat JBoss Fuse 6 | c3p0 | Out of support scope | ||
| Red Hat JBoss SOA Platform 5 | c3p0 | Out of support scope | ||
| Red Hat Mobile Application Platform 4 | c3p0 | Out of support scope | ||
| Red Hat OpenShift Application Runtimes | c3p0 | Fix deferred | ||
| Red Hat Process Automation 7 | c3p0 | Not affected | ||
| Red Hat Satellite 5 | c3p0 | Out of support scope | ||
| Red Hat Satellite 6 | candlepin | Not affected | ||
| Red Hat Storage 3 | c3p0 | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
4.4 Medium
CVSS3
Связанные уязвимости
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack whe ...
Уязвимость функции ConfigXmlUtils библиотеки работы с JDBC-драйверами c3p0, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.4 Medium
CVSS3