8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
46.7%
libexpat.so is vulnerable to use-after-free. The vulnerability is possible because the raw names will be pointing into the stored entity value instead of the parse buffer in doContent
method of the file xmlparse.c
, which doesn’t release the consumed memory.
github.com/libexpat/libexpat/commit/dde178b976934e16526a3277d31d9fa3fab7a6c1
github.com/libexpat/libexpat/pull/629
github.com/libexpat/libexpat/pull/640
lists.debian.org/debian-lts-announce/2022/09/msg00029.html
lists.fedoraproject.org/archives/list/[email protected]/message/GSVZN3IJ6OCPSJL7AEX3ZHSHAHFOGESK/
lists.fedoraproject.org/archives/list/[email protected]/message/J2IGJNHFV53PYST7VQV3T4NHVYAMXA36/
lists.fedoraproject.org/archives/list/[email protected]/message/LQB6FJAM5YQ35SF5B2MN25Y2FX56EOEZ/
lists.fedoraproject.org/archives/list/[email protected]/message/WE2ZKEPGFCZ7R6DRVH3K6RBJPT42ZBEG/
lists.fedoraproject.org/archives/list/[email protected]/message/XCGBVQQ47URGJAZWHCISHDWF6QBTV2LE/
security.gentoo.org/glsa/202209-24
security.gentoo.org/glsa/202211-06
security.netapp.com/advisory/ntap-20221028-0008/
www.debian.org/security/2022/dsa-5236
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
46.7%