expat: buffer over-read and crash in big2_toUtf8() on XML with malformed UTF-8 sequences

The big2toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service application crash via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlo...

Mandriva Update for expat MDVSA-2009:316-3 (expat)

Check for the Version of expat OpenVAS Vulnerability Test Mandriva Update for expat MDVSA-2009:316-3 expat Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

expat big2_toUtf8()函数XML文件解析拒绝服务漏洞

BUGTRAQ ID: 37203 CVE ID: CVE-2009-3560 Expat是用C语言编写的XML解析器库。 Expat库的lib/xmltok.c文件中的big2toUtf8函数存在拒绝服务漏洞。如果用户受骗打开了包含有畸形UTF-8序列的XML文档，就会在lib/xmlparse.c的doProlog函数中触发缓冲区越界读取，导致链接到Expat库上的应用崩溃。 James Clark Expat 2.0.1 厂商补丁： Debian ------ Debian已经为此发布了一个安全公告（DSA-1953-1）以及相应补丁: DSA-1953-1：New expat...

CVE-2009-3560

The big2toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service application crash via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlo...

libwww -- multiple vulnerabilities

Mitre reports: The HTBoundaryputblock function in HTBound.c for W3C libwww w3c-libwww allows remote servers to cause a denial of service segmentation fault via a crafted multipart/byteranges MIME message that triggers an out-of-bounds read. The big2toUtf8 function in lib/xmltok.c in libexpat in...