Описание
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
A use-after-free flaw was found in libxml2. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
Отчет
The severity of this vulnerability is not important but moderate due to the lack of impact to both confidentiality and integrity, but potential impact to availability. The theoretical risk of impact to availability is limited due to the specific requirement that applications must continue to misuse the reader API after it has already reported validation errors instead of handling those errors. The flaw requires that crafted XML documents can be provided by an attacker and the utilization of DTD validation and XInclude expansion using the XMLReader API. Along with those conditions, the application using the XMLReader API must be ignoring errors when expanding invalid XInclude nodes in an maliciously crafted document. These conditions are unlikely to exist in the intended usage of the XMLReader API.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libxml2 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | libxml2 | Out of support scope | ||
| Red Hat Satellite 6 | puppet-agent | Affected | ||
| Red Hat Enterprise Linux 8 | libxml2 | Fixed | RHSA-2024:3626 | 05.06.2024 |
| Red Hat Enterprise Linux 8 | libxml2 | Fixed | RHSA-2024:3626 | 05.06.2024 |
| Red Hat Enterprise Linux 8.6 Extended Update Support | libxml2 | Fixed | RHSA-2024:3299 | 22.05.2024 |
| Red Hat Enterprise Linux 8.8 Extended Update Support | libxml2 | Fixed | RHSA-2024:3303 | 23.05.2024 |
| Red Hat Enterprise Linux 9 | libxml2 | Fixed | RHSA-2024:2679 | 02.05.2024 |
| Red Hat Enterprise Linux 9 | libxml2 | Fixed | RHSA-2024:2679 | 02.05.2024 |
| Red Hat Enterprise Linux 9.2 Extended Update Support | libxml2 | Fixed | RHSA-2024:3625 | 05.06.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.1 ...
EPSS
7.5 High
CVSS3