- Vulnerability/
- RHSA-2009:1572
RHSA-2009:1572: Moderate: 4Suite security update
First published: Tue Nov 10 2009(Updated: )
The 4Suite package contains XML-related tools and libraries for Python,<br>including 4DOM, 4XSLT, 4XPath, 4RDF, and 4XPointer.<br>A buffer over-read flaw was found in the way 4Suite's XML parser handles<br>malformed UTF-8 sequences when processing XML files. A specially-crafted<br>XML file could cause applications using the 4Suite library to crash while<br>parsing the file. (CVE-2009-3720)<br>Note: In Red Hat Enterprise Linux 3, this flaw only affects a non-default<br>configuration of the 4Suite package: configurations where the beta version<br>of the cDomlette module is enabled.<br>All 4Suite users should upgrade to this updated package, which contains a<br>backported patch to correct this issue. After installing the updated<br>package, applications using the 4Suite XML-related tools and libraries must<br>be restarted for the update to take effect.
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2009:1572
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type