Описание
Security update for libxml2
This update for libxml2 fixes two security issues:
-
libxml2 limits the number of recursions an XML document can contain so to protect against the 'Billion Laughs' denial-of-service attack. Unfortunately, the underlying counter was not incremented properly in all necessary locations. Therefore, specially crafted XML documents could exhaust all available stack space and crash the XML parser without running into the recursion limit. This vulnerability has been fixed. (bsc#975947)
-
When running in recovery mode, certain invalid XML documents would trigger an infinite recursion in libxml2 that ran until all stack space was exhausted. This vulnerability could have been used to facilitate a denial-of-sevice attack. (CVE-2016-3627, bsc#972335)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
Ссылки
- Link for SUSE-SU-2016:1205-1
- E-Mail link for SUSE-SU-2016:1205-1
- SUSE Security Ratings
- SUSE Bug 972335
- SUSE Bug 975947
- SUSE CVE CVE-2016-3627 page
Описание
The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in recovery mode, allows context-dependent attackers to cause a denial of service (infinite recursion, stack consumption, and application crash) via a crafted XML document.
Затронутые продукты
Ссылки
- CVE-2016-3627
- SUSE Bug 1026099
- SUSE Bug 1026101
- SUSE Bug 1123919
- SUSE Bug 972335
- SUSE Bug 975947