Buffer overflow in Apple Iphone_os

CVE-2015-7942

The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip intermediary entities when it stops parsing invalid input, which allows context-dependent attackers to cause a denial of service (out-of-bounds read and…

Vulnerability class: Buffer Overflow

EPSS: 0.010 (77.5th percentile) — read the EPSS interpretation.

Affected products

Apple Iphone_os
Apple Mac_os_x
Apple Tvos
Apple Watchos
Hp Icewall_federation_agent — versions 3.0
Hp Icewall_file_manager — versions 3.0
Xmlsoft Libxml2 — versions 2.9.2
Canonical Ubuntu_linux — versions 12.04, 14.04, 15.04
Debian Debian_linux — versions 7.0, 8.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

RHSA-2015:2550 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
APPLE-SA-2016-03-21-5 (vendor-advisory, x_refsource_APPLE, Mailing List, Third Party Advisory)
openSUSE-SU-2016:0106 (vendor-advisory, x_refsource_SUSE)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM, Exploit, Issue Tracking)
[oss-security] 20151022 Crafted xml causes out of bound memory access - Libxml2 (mailing-list, x_refsource_MLIST)
DSA-3430 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
79507 (vdb-entry, x_refsource_BID)
APPLE-SA-2016-03-21-1 (vendor-advisory, x_refsource_APPLE, Mailing List, Third Party Advisory)