CVE-2011-1944: Buffer Overflow
First published: Wed Jun 01 2011(Updated: )
An integer overflow, leading to heap-based buffer overflow was found in the way libxml, XML files manipulation library, processed certain XPath expressions. A remote attacker could provide a specially-crafted XML file, which once opened in an application linked against libxml would cause that application to crash, or, potentially, execute arbitrary code with the privileges of the user running the application. References: [1] <a href="http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html">http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html</a> [2] <a href="http://www.openwall.com/lists/oss-security/2011/05/31/5">http://www.openwall.com/lists/oss-security/2011/05/31/5</a> [3] <a href="http://www.openwall.com/lists/oss-security/2011/05/31/8">http://www.openwall.com/lists/oss-security/2011/05/31/8</a> Upstream patch: [4] <a href="http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4">http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/libxml2 | <2.8.0 | 2.8.0 |
| Gnome Libxml2 | =2.6.16 | |
| Gnome Libxml2 | =2.6.32 | |
| Gnome Libxml2 | =2.6.26 | |
| Gnome Libxml2 | =2.6.11 | |
| Gnome Libxml2 | =2.6.17 | |
| Gnome Libxml2 | =2.6.27 | |
| Gnome Libxml2 | =2.6.13 | |
| Gnome Libxml2 | =2.6.7 | |
| Gnome Libxml2 | =2.6.14 | |
| Gnome Libxml2 | =2.6.8 | |
| Gnome Libxml2 | =2.6.2 | |
| Gnome Libxml2 | =2.6.5 | |
| Gnome Libxml2 | =2.6.4 | |
| Gnome Libxml2 | =2.6.18 | |
| Gnome Libxml2 | =2.6.1 | |
| Gnome Libxml2 | =2.6.20 | |
| Gnome Libxml2 | =2.6.12 | |
| Gnome Libxml2 | =2.6.0 | |
| Gnome Libxml2 | =2.6.9 | |
| Gnome Libxml2 | =2.6.30 | |
| Gnome Libxml2 | =2.6.22 | |
| Gnome Libxml2 | =2.6.3 | |
| Gnome Libxml2 | =2.6.6 | |
| Gnome Libxml2 | =2.7.2 | |
| Gnome Libxml2 | =2.7.8 | |
| Gnome Libxml2 | =2.7.7 | |
| Gnome Libxml2 | =2.7.5 | |
| Gnome Libxml2 | =2.7.3 | |
| Gnome Libxml2 | =2.7.1 | |
| Gnome Libxml2 | =2.7.0 | |
| Gnome Libxml2 | =2.7.6 | |
| Gnome Libxml2 | =2.7.4 | |
| libxml2 | =1.8.9 | |
| libxml2 | =1.6.0 | |
| libxml2 | =1.7.2 | |
| libxml2 | =1.8.3 | |
| libxml2 | =1.8.0 | |
| libxml2 | =1.8.13 | |
| libxml2 | =1.8.10 | |
| libxml2 | =1.8.4 | |
| libxml2 | =1.8.6 | |
| libxml2 | =1.7.0 | |
| libxml2 | <=1.8.16 | |
| libxml2 | =1.8.14 | |
| libxml2 | =1.8.8 | |
| libxml2 | =1.7.4 | |
| libxml2 | =1.8.7 | |
| libxml2 | =1.7.3 | |
| libxml2 | =1.8.1 | |
| libxml2 | =1.8.11 | |
| libxml2 | =1.6.2 | |
| libxml2 | =1.5.0 | |
| libxml2 | =1.8.2 | |
| libxml2 | =1.8.12 | |
| libxml2 | =1.8.5 | |
| libxml2 | =1.6.1 | |
| libxml2 | =1.8.15 | |
| libxml2 | =1.7.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-updates/2011-07/msg00035.html
- http://ubuntu.com/usn/usn-1153-1
- http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html
- http://www.debian.org/security/2011/dsa-2255
- http://git.gnome.org/browse/libxml2/commit/?id=d7958b21e7f8c447a26bb2436f08402b2c308be4
- http://secunia.com/advisories/44711
- http://www.openwall.com/lists/oss-security/2011/05/31/8
- http://www.osvdb.org/73248
- http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062238.html
- http://www.securityfocus.com/bid/48056
- https://bugzilla.redhat.com/show_bug.cgi?id=709747
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:131
- http://www.redhat.com/support/errata/RHSA-2011-1749.html
- http://support.apple.com/kb/HT5281
- http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
- http://support.apple.com/kb/HT5503
- http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html
- http://rhn.redhat.com/errata/RHSA-2013-0217.html
- http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
- http://www.openwall.com/lists/oss-security/2011/05/31/5
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=709750
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=709751
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=709747#c3
- https://rhn.redhat.com/errata/RHSA-2011-1749.html
- https://rhn.redhat.com/errata/RHSA-2012-0017.html
- https://rhn.redhat.com/errata/RHSA-2013-0217.html
Frequently Asked Questions
What is the severity of CVE-2011-1944?
CVE-2011-1944 is considered a high severity vulnerability due to the potential for remote code execution and denial of service.
How do I fix CVE-2011-1944?
To fix CVE-2011-1944, update libxml2 to version 2.8.0 or later.
What types of systems are affected by CVE-2011-1944?
CVE-2011-1944 affects systems using libxml2 versions older than 2.8.0, including various distributions like Red Hat and Gnome.
What causes CVE-2011-1944?
CVE-2011-1944 is caused by an integer overflow leading to a heap-based buffer overflow while processing specific XPath expressions in XML files.
Can CVE-2011-1944 be exploited remotely?
Yes, an attacker can exploit CVE-2011-1944 remotely by providing a specially-crafted XML file that triggers the vulnerability.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/severity
- agent/remedy
- agent/references
- agent/event
- agent/description
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2011-1944
- agent/software-canonical-lookup
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/redhat
- vendor/xmlsoft
- canonical/gnome libxml2
- version/gnome libxml2/2.6.16
- version/gnome libxml2/2.6.32
- version/gnome libxml2/2.6.26
- version/gnome libxml2/2.6.11
- version/gnome libxml2/2.6.17
- version/gnome libxml2/2.6.27
- version/gnome libxml2/2.6.13
- version/gnome libxml2/2.6.7
- version/gnome libxml2/2.6.14
- version/gnome libxml2/2.6.8
- version/gnome libxml2/2.6.2
- version/gnome libxml2/2.6.5
- version/gnome libxml2/2.6.4
- version/gnome libxml2/2.6.18
- version/gnome libxml2/2.6.1
- version/gnome libxml2/2.6.20
- version/gnome libxml2/2.6.12
- version/gnome libxml2/2.6.0
- version/gnome libxml2/2.6.9
- version/gnome libxml2/2.6.30
- version/gnome libxml2/2.6.22
- version/gnome libxml2/2.6.3
- version/gnome libxml2/2.6.6
- version/gnome libxml2/2.7.2
- version/gnome libxml2/2.7.8
- version/gnome libxml2/2.7.7
- version/gnome libxml2/2.7.5
- version/gnome libxml2/2.7.3
- version/gnome libxml2/2.7.1
- version/gnome libxml2/2.7.0
- version/gnome libxml2/2.7.6
- version/gnome libxml2/2.7.4
- canonical/libxml2
- version/libxml2/1.8.9
- version/libxml2/1.6.0
- version/libxml2/1.7.2
- version/libxml2/1.8.3
- version/libxml2/1.8.0
- version/libxml2/1.8.13
- version/libxml2/1.8.10
- version/libxml2/1.8.4
- version/libxml2/1.8.6
- version/libxml2/1.7.0
- version/libxml2/1.8.16
- version/libxml2/1.8.14
- version/libxml2/1.8.8
- version/libxml2/1.7.4
- version/libxml2/1.8.7
- version/libxml2/1.7.3
- version/libxml2/1.8.1
- version/libxml2/1.8.11
- version/libxml2/1.6.2
- version/libxml2/1.5.0
- version/libxml2/1.8.2
- version/libxml2/1.8.12
- version/libxml2/1.8.5
- version/libxml2/1.6.1
- version/libxml2/1.8.15
- version/libxml2/1.7.1