Univention Bugzilla – Full Text Bug Listing |
Summary: | libxml2: Multiple issues (4.1) | ||
---|---|---|---|
Product: | UCS | Reporter: | Arvid Requate <requate> |
Component: | Security updates | Assignee: | Arvid Requate <requate> |
Status: | CLOSED FIXED | QA Contact: | Jürn Brodersen <brodersen> |
Severity: | normal | ||
Priority: | P5 | CC: | best |
Version: | UCS 4.1 | Flags: | requate:
Patch_Available+
|
Target Milestone: | UCS 4.1-5-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | Security | |
Max CVSS v3 score: | 8.1 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H) | ||
Bug Depends on: | 45355 | ||
Bug Blocks: |
Description
Arvid Requate
2017-07-11 16:04:47 CEST
2.8.0+dfsg1-7+wheezy9 fixes: * A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execution in an application that uses this library. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37104170. (CVE-2017-0663) * Incorrect limit used for port values (CVE-2017-7376) Upstream Debian package version 2.8.0+dfsg1-7+wheezy10 fixes this issue: * heap overflow in memory debug code (CVE-2017-5130) Upstream Debian package version 2.8.0+dfsg1-7+wheez11 fixes these issues: * parser.c mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name (CVE-2017-16931) * parser.c does not prevent infinite recursion in parameter entities (CVE-2017-16932) Imported and built. Advisory: https://git.knut.univention.de/univention/ucs/blob/4.1-5/doc/errata/staging/libxml2.yaml YAML fail (maintenance)? http://jenkins.knut.univention.de:8080/job/UCS-4.1/job/UCS-4.1-5/job/ErrataValidation/32/testReport/libxml2/ Yes, the check_errata_for_release script bails out due to the extended maintenance UCS 4.1-5. I've added an ignore-tag for this to the advisory. Installation: OK YAML: OK Verified |