Download
| Alert*
oval:org.secpod.oval:def:57436
It was discovered that Expat, an XML parsing C library, did not properly handled XML input including XML names that contain a large number of colons, potentially resulting in denial of service. oval:org.secpod.oval:def:89003158 This update for expat fixes the following issues: Security issue fixed: - CVE-2018-20843: Fixed a denial of service triggered by high resource consumption in the XML parser when XML names contain a large amount of colons . oval:org.secpod.oval:def:57454 expat: XML parsing C library Expat could be made to consume a high amount of RAM and CPU resources if it received a specially crafted XML file. oval:org.secpod.oval:def:116827 This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parsed. ... oval:org.secpod.oval:def:1801491 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . Fixed In Version:¶ expat 2.2.7 oval:org.secpod.oval:def:1801492 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . Fixed In Version:¶ expat 2.2.7 oval:org.secpod.oval:def:1801493 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . Fixed In Version:¶ expat 2.2.7 oval:org.secpod.oval:def:1801494 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . Fixed In Version:¶ expat 2.2.7 oval:org.secpod.oval:def:2105215 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks). oval:org.secpod.oval:def:604411 It was discovered that Expat, an XML parsing C library, did not properly handled XML input including XML names that contain a large number of colons, potentially resulting in denial of service. oval:org.secpod.oval:def:1902184 In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing . oval:org.secpod.oval:def:2500210 Expat is a C library for parsing XML documents. The mingw-expat packages provide a port of the Expat library for MinGW. oval:org.secpod.oval:def:705041 expat: XML parsing C library Expat could be made to consume a high amount of RAM and CPU resources if it received a specially crafted XML file. oval:org.secpod.oval:def:67967 Expat is a C library for parsing XML documents. Security Fix: * expat: large number of colons in input makes parser consume high amount of resources, leading to DoS * expat: heap-based buffer over-read via crafted XML input For more details about the security issue, including the impact, a CVSS sc ... oval:org.secpod.oval:def:1601399 It was discovered that the "setElementTypePrefix" function incorrectly extracted XML namespace prefixes. By tricking an application into processing a specially crafted XML file, an attacker could cause unusually high consumption of memory resources and possibly lead to a denial of service. In libexp ... oval:org.secpod.oval:def:1601378 It was discovered that the "setElementTypePrefix" function incorrectly extracted XML namespace prefixes. By tricking an application into processing a specially crafted XML file, an attacker could cause unusually high consumption of memory resources and possibly lead to a denial of service. In libexp ... oval:org.secpod.oval:def:504710 Expat is a C library for parsing XML documents. Security Fix: * expat: large number of colons in input makes parser consume high amount of resources, leading to DoS * expat: heap-based buffer over-read via crafted XML input For more details about the security issue, including the impact, a CVSS sc ... oval:org.secpod.oval:def:205667 Expat is a C library for parsing XML documents. Security Fix: * expat: large number of colons in input makes parser consume high amount of resources, leading to DoS * expat: heap-based buffer over-read via crafted XML input For more details about the security issue, including the impact, a CVSS sc ... oval:org.secpod.oval:def:1504409 [2.1.0-12] - add security fixes for CVE-2018-20843, CVE-2019-15903 oval:org.secpod.oval:def:1504356 [2.2.5-4] - add security fixes for CVE-2018-20843, CVE-2019-15903 oval:org.secpod.oval:def:1700427 It was discovered that the "setElementTypePrefix" function incorrectly extracted XML namespace prefixes. By tricking an application into processing a specially crafted XML file, an attacker could cause unusually high consumption of memory resources and possibly lead to a denial of service. In libexp ... oval:org.secpod.oval:def:504327 Expat is a C library for parsing XML documents. Security Fix: * expat: large number of colons in input makes parser consume high amount of resources, leading to DoS * expat: heap-based buffer over-read via crafted XML input For more details about the security issue, including the impact, a CVSS sc ... oval:org.secpod.oval:def:2500066 Expat is a C library for parsing XML documents. |