Описание
Security update for libxml2
This update for libxml2 fixes the following security issues:
- CVE-2018-9251: The xz_decomp function allowed remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1088279).
- CVE-2018-14567: Prevent denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1105166).
- CVE-2018-14404: Prevent NULL pointer dereference in the xmlXPathCompOpEval() function when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case leading to a denial of service attack (bsc#1102046).
- CVE-2017-18258: The xz_head function allowed remote attackers to cause a denial of service (memory consumption) via a crafted LZMA file, because the decoder functionality did not restrict memory usage to what is required for a legitimate file (bsc#1088601).
Список пакетов
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Software Development Kit 12 SP3
Ссылки
- Link for SUSE-SU-2018:3081-1
- E-Mail link for SUSE-SU-2018:3081-1
- SUSE Security Ratings
- SUSE Bug 1088279
- SUSE Bug 1088601
- SUSE Bug 1102046
- SUSE Bug 1105166
- SUSE CVE CVE-2017-18258 page
- SUSE CVE CVE-2018-14404 page
- SUSE CVE CVE-2018-14567 page
- SUSE CVE CVE-2018-9251 page
Описание
The xz_head function in xzlib.c in libxml2 before 2.9.6 allows remote attackers to cause a denial of service (memory consumption) via a crafted LZMA file, because the decoder functionality does not restrict memory usage to what is required for a legitimate file.
Затронутые продукты
Ссылки
- CVE-2017-18258
- SUSE Bug 1088279
- SUSE Bug 1088601
- SUSE Bug 1105166
Описание
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.
Затронутые продукты
Ссылки
- CVE-2018-14404
- SUSE Bug 1102046
- SUSE Bug 1148896
Описание
libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035 and CVE-2018-9251.
Затронутые продукты
Ссылки
- CVE-2018-14567
- SUSE Bug 1088279
- SUSE Bug 1088601
- SUSE Bug 1105166
Описание
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035.
Затронутые продукты
Ссылки
- CVE-2018-9251
- SUSE Bug 1088279
- SUSE Bug 1088601
- SUSE Bug 1105166