https://bugzilla.redhat.com/show_bug.cgi?id=1304636
Bug ID: 1304636 Summary: CVE-2015-8806 libxml2: heap-buffer overread in dict.c Product: Security Response Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team@redhat.com Reporter: anemec@redhat.com CC: athmanem@gmail.com, c.david86@gmail.com, erik-fedora@vanpienbroek.nl, fedora-mingw@lists.fedoraproject.org, ktietz@redhat.com, lfarkas@lfarkas.org, ohudlick@redhat.com, rjones@redhat.com, veillard@redhat.com
A heap-buffer overread vulnerability was found in libxml2. A specially crafted file can cause the application to crash.
External bugzilla report with reproducer:
https://bugzilla.gnome.org/show_bug.cgi?id=749115
CVE assignment:
http://seclists.org/oss-sec/2016/q1/277
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
Andrej Nemec anemec@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=moderate,public=2016 |impact=moderate,public=2016 |0126,reported=20160126,sour |0126,reported=20160126,sour |ce=oss-security,cvss2=4.3/A |ce=oss-security,cvss2=4.3/A |V:N/AC:M/Au:N/C:N/I:N/A:P,c |V:N/AC:M/Au:N/C:N/I:N/A:P,c |we=CWE-122,rhel-5/libxml2=n |we=CWE-122,rhel-5/libxml2=a |ew,rhel-6/libxml2=new,rhel- |ffected,rhel-6/libxml2=affe |7/libxml2=new,jboss/libxml2 |cted,rhel-7/libxml2=affecte |=new,fedora-all/libxml2=new |d,jboss/libxml2=affected,fe |,fedora-all/mingw-libxml2=n |dora-all/libxml2=affected,f |ew,epel-7/mingw-libxml2=new |edora-all/mingw-libxml2=aff | |ected,epel-7/mingw-libxml2= | |affected
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
Andrej Nemec anemec@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1304638 Depends On| |1304639 Depends On| |1304640
--- Comment #1 from Andrej Nemec anemec@redhat.com ---
Created libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1304638]
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=1304638 [Bug 1304638] CVE-2015-8806 libxml2: heap-buffer overread in dict.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1304639 [Bug 1304639] CVE-2015-8806 mingw-libxml2: libxml2: heap-buffer overread in dict.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1304640 [Bug 1304640] CVE-2015-8806 mingw-libxml2: libxml2: heap-buffer overread in dict.c [epel-7]
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
--- Comment #2 from Andrej Nemec anemec@redhat.com ---
Created mingw-libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1304639] Affects: epel-7 [bug 1304640]
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
Andrej Nemec anemec@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1304644
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
Cedric Buissart cbuissar@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |cbuissar@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=1304636
--- Comment #4 from Cedric Buissart cbuissar@redhat.com --- I believe that this is actually a duplicate of CVE-2016-2073