9.8 CRITICAL
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes
XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes. A :utf8 PerlIO layer, parse_stream() in Expat.xs could overflow the XML input buffer because Perl's read() returns decoded characters while SvPV() gives back multi-byte UTF-8 bytes that can exceed the pre-allocated buffer size. This can cause heap corruption (double free or corruption) and crashes.
References
Affected products
- =<2.47
Matching in nixpkgs
pkgs.perlPackages.XMLParser
Perl module for parsing XML documents
pkgs.perl5Packages.XMLParser
Perl module for parsing XML documents
pkgs.perl538Packages.XMLParser
Perl module for parsing XML documents
pkgs.perl540Packages.XMLParser
Perl module for parsing XML documents
pkgs.perlPackages.XMLParserLite
Lightweight pure-perl XML Parser (based on regexps)
pkgs.perl5Packages.XMLParserLite
Lightweight pure-perl XML Parser (based on regexps)
pkgs.perl538Packages.XMLParserLite
Lightweight pure-perl XML Parser (based on regexps)
pkgs.perl540Packages.XMLParserLite
Lightweight pure-perl XML Parser (based on regexps)