Main Vulnerability Database SB2016092617

SB2016092617 - XXE attack in expat (Alpine package)

Published: September 26, 2016

Security Bulletin ID SB2016092617

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) XXE attack (CVE-ID: CVE-2016-4472)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to the overflow protection in Expat is removed by compilers with certain optimization settings. A remote attacker can supply specially crafted XML data and cause the service to crash.

The vulnerability exists due to incomplete fix for CVE-2015-1283 and CVE-2015-2716.

Remediation

Install update from vendor's website.

References

https://git.alpinelinux.org/aports/commit/?id=4ade9bd2f5a58188134c8d14ecae193c70da237e
https://git.alpinelinux.org/aports/commit/?id=61684c5b8c0524c2a4a18513bf15e976df5d0e87