Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-25314

Опубликовано: 19 фев. 2022
Источник: redhat
CVSS3: 7.5
EPSS Низкий

Описание

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.

An integer overflow flaw was found in expat. This issue affects the encoding name parameter at the parser creation time, which is often hard-coded (rather than user input), takes a value in the gigabytes to trigger, and on a 64-bit machine. This flaw can cause a denial of service.

Отчет

This flaw has been rated as having a severity of Moderate. The encoding name parameter is often hard-coded (rather than user input) and it would take a value in the gigabytes for the name to trigger this issue. The versions of expat as shipped with Red Hat Enterprise Linux 6 and 7 are not affected by this flaw as they did not include the vulnerable copyString() function.

Меры по смягчению последствий

There is no known mitigation other than restricting applications using the expat library from processing untrusted XML content.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6expatNot affected
Red Hat Enterprise Linux 7expatNot affected
Red Hat Enterprise Linux 7firefoxOut of support scope
Red Hat Enterprise Linux 7thunderbirdOut of support scope
Red Hat Enterprise Linux 8firefoxNot affected
Red Hat Enterprise Linux 8firefox:flatpak/firefoxNot affected
Red Hat Enterprise Linux 8thunderbirdNot affected
Red Hat Enterprise Linux 8thunderbird:flatpak/thunderbirdNot affected
Red Hat Enterprise Linux 8xmlrpc-cNot affected
Red Hat Enterprise Linux 9firefoxNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2056354expat: Integer overflow in copyString()

EPSS

Процентиль: 62%
0.00434
Низкий

7.5 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-25314

CVSS3: 7.5
ubuntu
почти 4 года назад

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.

nvd логотип

CVE-2022-25314

CVSS3: 7.5
nvd
почти 4 года назад

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.

msrc логотип

CVE-2022-25314

CVSS3: 7.5
msrc
почти 4 года назад

In Expat (aka libexpat) before 2.4.5 there is an integer overflow in copyString.

debian логотип

CVE-2022-25314

CVSS3: 7.5
debian
почти 4 года назад

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in ...

github логотип

GHSA-3qc2-95g6-46cj

CVSS3: 7.5
github
почти 4 года назад

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.

EPSS

Процентиль: 62%
0.00434
Низкий

7.5 High

CVSS3