Skip to content

DoS vulnerability in XML/src/xmlparse.cpp #4123

New issue
New issue
Closed
#4683
Closed
DoS vulnerability in XML/src/xmlparse.cpp#4123
#4683
Assignees
matejk
Labels
securitythird-party
Milestone
Release 1.14.0
@the-Chain-Warden-thresh

Description

@the-Chain-Warden-thresh
the-Chain-Warden-thresh
opened on Aug 24, 2023

Version

latest on branch devel

Description

Poco uses libexpat to parse XML file. However, I've found that Poco doesn't fix a vulnerability in libexpat, i.e. CVE-2009-3560, which may cause a buffer over-read, and then results in a denial of service (application crash).
Specifically, next = end; ( line 3835 in XML/src/xmlparse.cpp ) should be removed to fix this vulnerability. You can check infomation and patch of this CVE for further confirmation:
Description of CVE-2009-3560: https://nvd.nist.gov/vuln/detail/https://nvd.nist.gov/vuln/detail/CVE-2009-3560[2009-3720](https://nvd.nist.gov/vuln/detail/CVE-2009-3720)
Patch commit of CVE-2009-3720: libexpat/libexpat@82d4951

Metadata

Metadata

Assignees

Labels

securitythird-party

Type

No type

Projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions