Published: 03/07/2012 Updated: 05/08/2022

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

The XML parser (xmlparse.c) in expat prior to 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent malicious users to cause a denial of service (CPU consumption) via an XML file with many identifiers with the same value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libexpat project libexpat
python python
debian debian linux 7.0
debian debian linux 6.0
canonical ubuntu linux 11.04
canonical ubuntu linux 11.10
canonical ubuntu linux 8.04
canonical ubuntu linux 10.04
canonical ubuntu linux 12.04
oracle solaris 11.3
redhat enterprise linux server 5.0
redhat enterprise linux server aus 6.2
redhat enterprise linux workstation 5.0
redhat enterprise linux desktop 6.0
redhat enterprise linux server 6.0
redhat enterprise linux workstation 6.0
redhat enterprise linux desktop 5.0
redhat storage 2.0
redhat enterprise linux eus 6.2

Debian Bug report logs - #663579 Three security issues Package: libexpat1; Maintainer for libexpat1 is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Source for libexpat1 is src:expat (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <muehlenhoff@univentionde> Date: Mon, 12 Mar 2012 13:51:11 UTC Severity: grave Tag ...

Synopsis Moderate: expat security update Type/Severity Security Advisory: Moderate Topic Updated expat packages that fix two security issues are now available forRed Hat Enterprise Linux 5 and 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulnerability ...

Synopsis Important: Red Hat JBoss Core Services Apache HTTP 2423 Release Type/Severity Security Advisory: Important Topic Red Hat JBoss Core Services httpd 2423 is now available from the Red Hat Customer Portal for Solaris and Microsoft Windows systemsRed Hat Product Security has rated this release as ...

Synopsis Important: Red Hat JBoss Enterprise Application Platform 6418 security update Type/Severity Security Advisory: Important Topic An update is now available for Red Hat JBoss Enterprise Application PlatformRed Hat Product Security has rated this update as having a security impact of Important A Co ...

It was discovered that Expat, a C library to parse XML, is vulnerable to denial of service through hash collisions and a memory leak in pool handling For the stable distribution (squeeze), this problem has been fixed in version 201-7+squeeze1 For the testing distribution (wheezy), this problem has been fixed in version 210~beta3-1 For the un ...

Expat could be made to cause a denial of service by consuming excessive CPU and memory resources ...

XML-RPC for C and C++ could be made to cause a denial of service by consuming excessive CPU and memory resources ...

Several security issues were fixed in Python 24 ...

Several security issues were fixed in Python 25 ...

A denial of service flaw was found in the implementation of hash arrays in Expat An attacker could use this flaw to make an application using Expat consume an excessive amount of CPU time by providing a specially-crafted XML file that triggers multiple hash function collisions To mitigate this issue, randomization has been added to the hash funct ...

Tenable's Passive Vulnerability Scanner (PVS) uses third-party libraries to provide certain standardized functionality Four of these libraries were found to contain vulnerabilities and were fixed upstream Those fixes have been integrated despite there being no known exploitation scenarios related to PVS OpenSSL ssl/statem/statemc read_state_ma ...

CWE-400 http://secunia.com/advisories/49504 http://mail.libexpat.org/pipermail/expat-discuss/2012-March/002768.html http://rhn.redhat.com/errata/RHSA-2012-0731.html http://sourceforge.net/projects/expat/files/expat/2.1.0/http://www.mandriva.com/security/advisories?name=MDVSA-2012:041 http://sourceforge.net/tracker/?func=detail&atid=110127&aid=3496608&group_id=10127 http://bugs.python.org/issue13703#msg151870 http://www.ubuntu.com/usn/USN-1613-2 http://www.debian.org/security/2012/dsa-2525 http://www.ubuntu.com/usn/USN-1527-1 http://www.ubuntu.com/usn/USN-1613-1 http://secunia.com/advisories/51040 http://secunia.com/advisories/51024 http://www.securityfocus.com/bid/52379 http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html https://support.apple.com/HT205637 http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html http://rhn.redhat.com/errata/RHSA-2016-0062.html https://www.tenable.com/security/tns-2016-20 http://rhn.redhat.com/errata/RHSA-2016-2957.html https://kc.mcafee.com/corporate/index?page=content&id=SB10365 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663579 https://nvd.nist.gov https://usn.ubuntu.com/1527-1/https://www.debian.org/security/./dsa-2525

Get Started

CVE-2012-0876

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect