Suggestions search

All statuses

Filter by:

With package: perl540Packages.XMLParser

Found 2 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2006-10002

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 3 days ago

XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes

XML::Parser versions through 2.47 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes. A :utf8 PerlIO layer, parse_stream() in Expat.xs could overflow the XML input buffer because Perl's read() returns decoded characters while SvPV() gives back multi-byte UTF-8 bytes that can exceed the pre-allocated buffer size. This can cause heap corruption (double free or corruption) and crashes.

References

https://rt.cpan.org/Ticket/Display.html?id=19859 issue-tracking
https://github.com/cpan-authors/XML-Parser/issues/64 issue-tracking
https://github.com/cpan-authors/XML-Parser/commit/6b291f4d260fc124a6ec80382b87a… patch
http://www.openwall.com/lists/oss-security/2026/03/19/1

Affected products

XML-Parser

=<2.47

Matching in nixpkgs

pkgs.perlPackages.XMLParser

Perl module for parsing XML documents

nixos-unstable 2.46
- nixpkgs-unstable 2.46
- nixos-unstable-small 2.46
nixos-25.11 2.46
- nixos-25.11-small 2.46
- nixpkgs-25.11-darwin 2.46

pkgs.perl5Packages.XMLParser

Perl module for parsing XML documents

nixos-unstable 2.46
- nixpkgs-unstable 2.46
- nixos-unstable-small 2.46

pkgs.perl538Packages.XMLParser

Perl module for parsing XML documents

nixos-25.11 2.46
- nixos-25.11-small 2.46
- nixpkgs-25.11-darwin 2.46

pkgs.perl540Packages.XMLParser

Perl module for parsing XML documents

nixos-25.11 2.46
- nixos-25.11-small 2.46
- nixpkgs-25.11-darwin 2.46

pkgs.perlPackages.XMLParserLite

Lightweight pure-perl XML Parser (based on regexps)

nixos-unstable 0.722
- nixpkgs-unstable 0.722
- nixos-unstable-small 0.722
nixos-25.11 0.722
- nixos-25.11-small 0.722
- nixpkgs-25.11-darwin 0.722

pkgs.perl5Packages.XMLParserLite

Lightweight pure-perl XML Parser (based on regexps)

nixos-unstable 0.722
- nixpkgs-unstable 0.722
- nixos-unstable-small 0.722

pkgs.perl538Packages.XMLParserLite

Lightweight pure-perl XML Parser (based on regexps)

nixos-25.11 0.722
- nixos-25.11-small 0.722
- nixpkgs-25.11-darwin 0.722

pkgs.perl540Packages.XMLParserLite

Lightweight pure-perl XML Parser (based on regexps)

nixos-25.11 0.722
- nixos-25.11-small 0.722
- nixpkgs-25.11-darwin 0.722

Untriaged

Permalink CVE-2006-10003

9.8 CRITICAL

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 3 days ago

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack. In the case (stackptr == stacksize - 1), the stack will NOT be expanded. Then the new value will be written at location (++stackptr), which equals stacksize and therefore falls just outside the allocated buffer. The bug can be observed when parsing an XML file with very deep element nesting