CVE-2011-1944

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions.
References
Link Resource
http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 Patch
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.html Exploit Patch
http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0217.html
http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html Patch Vendor Advisory
http://secunia.com/advisories/44711 Vendor Advisory
http://support.apple.com/kb/HT5281
http://support.apple.com/kb/HT5503
http://ubuntu.com/usn/usn-1153-1
http://www.debian.org/security/2011/dsa-2255
http://www.mandriva.com/security/advisories?name=MDVSA-2011:131
http://www.openwall.com/lists/oss-security/2011/05/31/8 Exploit Patch
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/73248
http://www.redhat.com/support/errata/RHSA-2011-1749.html
http://www.securityfocus.com/bid/48056 Exploit
https://bugzilla.redhat.com/show_bug.cgi?id=709747 Exploit Patch
http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 Patch
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.html Exploit Patch
http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0217.html
http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html Patch Vendor Advisory
http://secunia.com/advisories/44711 Vendor Advisory
http://support.apple.com/kb/HT5281
http://support.apple.com/kb/HT5503
http://ubuntu.com/usn/usn-1153-1
http://www.debian.org/security/2011/dsa-2255
http://www.mandriva.com/security/advisories?name=MDVSA-2011:131
http://www.openwall.com/lists/oss-security/2011/05/31/8 Exploit Patch
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.osvdb.org/73248
http://www.redhat.com/support/errata/RHSA-2011-1749.html
http://www.securityfocus.com/bid/48056 Exploit
https://bugzilla.redhat.com/show_bug.cgi?id=709747 Exploit Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:xmlsoft:libxml2:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.9:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.11:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.12:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.13:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.14:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.16:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.17:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.20:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.22:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.26:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.27:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.30:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.6.32:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:xmlsoft:libxml2:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml2:2.7.8:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:xmlsoft:libxml:*:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.7.3:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.7.4:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.4:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.5:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.6:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.7:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.8:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.9:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.10:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.11:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.12:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.13:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.14:*:*:*:*:*:*:*
cpe:2.3:a:xmlsoft:libxml:1.8.15:*:*:*:*:*:*:*

History

21 Nov 2024, 01:27

Type Values Removed Values Added
References () http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 - Patch () http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4 - Patch
References () http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 - () http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 -
References () http://lists.apple.com/archives/security-announce/2012/May/msg00001.html - () http://lists.apple.com/archives/security-announce/2012/May/msg00001.html -
References () http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html - () http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html -
References () http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.html - Exploit, Patch () http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.html - Exploit, Patch
References () http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.html - () http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.html -
References () http://rhn.redhat.com/errata/RHSA-2013-0217.html - () http://rhn.redhat.com/errata/RHSA-2013-0217.html -
References () http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html - Patch, Vendor Advisory () http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html - Patch, Vendor Advisory
References () http://secunia.com/advisories/44711 - Vendor Advisory () http://secunia.com/advisories/44711 - Vendor Advisory
References () http://support.apple.com/kb/HT5281 - () http://support.apple.com/kb/HT5281 -
References () http://support.apple.com/kb/HT5503 - () http://support.apple.com/kb/HT5503 -
References () http://ubuntu.com/usn/usn-1153-1 - () http://ubuntu.com/usn/usn-1153-1 -
References () http://www.debian.org/security/2011/dsa-2255 - () http://www.debian.org/security/2011/dsa-2255 -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2011:131 - () http://www.mandriva.com/security/advisories?name=MDVSA-2011:131 -
References () http://www.openwall.com/lists/oss-security/2011/05/31/8 - Exploit, Patch () http://www.openwall.com/lists/oss-security/2011/05/31/8 - Exploit, Patch
References () http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html - () http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html -
References () http://www.osvdb.org/73248 - () http://www.osvdb.org/73248 -
References () http://www.redhat.com/support/errata/RHSA-2011-1749.html - () http://www.redhat.com/support/errata/RHSA-2011-1749.html -
References () http://www.securityfocus.com/bid/48056 - Exploit () http://www.securityfocus.com/bid/48056 - Exploit
References () https://bugzilla.redhat.com/show_bug.cgi?id=709747 - Exploit, Patch () https://bugzilla.redhat.com/show_bug.cgi?id=709747 - Exploit, Patch

Information

Published : 2011-09-02 16:55

Updated : 2024-11-21 01:27


NVD link : CVE-2011-1944

Mitre link : CVE-2011-1944

CVE.ORG link : CVE-2011-1944


JSON object : View

Products Affected

xmlsoft

  • libxml2
  • libxml
CWE
CWE-189

Numeric Errors