CVE - CVE-2009-3720

CVE-ID
CVE-2009-3720	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.13&r2=1.15&view=patch CONFIRM:http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?view=log CONFIRM:http://svn.python.org/view?view=rev&revision=74429 CONFIRM:https://bugs.gentoo.org/show_bug.cgi?id=280615 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=531697 FEDORA:FEDORA-2009-12690 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00370.html FEDORA:FEDORA-2009-12737 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00413.html FEDORA:FEDORA-2009-12753 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01274.html FEDORA:FEDORA-2010-17720 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051367.html FEDORA:FEDORA-2010-17732 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051247.html FEDORA:FEDORA-2010-17762 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051228.html FEDORA:FEDORA-2010-17807 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051442.html FEDORA:FEDORA-2010-17819 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051405.html HP:HPSBUX02645 URL:http://marc.info/?l=bugtraq&m=130168502603566&w=2 MANDRIVA:MDVSA-2009:211 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:211~~ (Obsolete source) MANDRIVA:MDVSA-2009:212 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:212~~ (Obsolete source) MANDRIVA:MDVSA-2009:215 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:215~~ (Obsolete source) MANDRIVA:MDVSA-2009:216 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:216~~ (Obsolete source) MANDRIVA:MDVSA-2009:217 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:217~~ (Obsolete source) MANDRIVA:MDVSA-2009:218 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:218~~ (Obsolete source) MANDRIVA:MDVSA-2009:219 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:219~~ (Obsolete source) MANDRIVA:MDVSA-2009:220 URL:~~http://www.mandriva.com/security/advisories?name=MDVSA-2009:220~~ (Obsolete source) MISC:http://sourceforge.net/tracker/index.php?func=detail&aid=1990430&group_id=10127&atid=110127 MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences URL:http://mail.python.org/pipermail/expat-bugs/2009-January/002781.html MLIST:[httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20190815 svn commit: r1048742 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/f7f95ac1cd9895db2714fa3ebaa0b94d0c6df360f742a40951384a53@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20190815 svn commit: r1048743 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/8d63cb8e9100f28a99429b4328e4e7cebce861d5772ac9863ba2ae6f@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20200401 svn commit: r1058586 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r57608dc51b79102f3952ae06f54d5277b649c86d6533dcd6a7d201f7@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20200401 svn commit: r1058587 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/rfbaf647d52c1cb843e726a0933f156366a806cead84fbd430951591b@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ URL:https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073139 [6/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ URL:https://lists.apache.org/thread.html/r2295080a257bad27ea68ca0af12fc715577f9e84801eae116a33107e@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073140 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r9ea3538f229874c80a10af473856a81fbf5f694cd7f471cc679ba70b@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/ URL:https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073146 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities-httpd.xml security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/rdca61ae990660bacb682295f2a09d34612b7bb5f457577fe17f4d064@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ URL:https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1073149 [7/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ URL:https://lists.apache.org/thread.html/rad2acee3ab838b52c04a0698b1728a9a43467bf365bd481c993c535d@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210330 svn commit: r1888194 [6/13] - /httpd/site/trunk/content/security/json/ URL:https://lists.apache.org/thread.html/reb7c64aeea604bf948467d9d1cab8ff23fa7d002be1964bcc275aae7@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [1/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r5f9c22f9c28adbd9f00556059edc7b03a5d5bb71d4bb80257c0d34e4@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210603 svn commit: r1075360 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/rad01d817195e6cc871cb1d73b207ca326379a20a6e7f30febaf56d24@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [1/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/rb9c9f42dafa25d2f669dac2a536a03f2575bc5ec1be6f480618aee10@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210606 svn commit: r1075467 [2/2] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2021-31618.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r476d175be0aaf4a17680ef98c5153b4d336eaef76fb2224cc94c463a@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6@%3Ccvs.httpd.apache.org%3E MLIST:[httpd-cvs] 20210606 svn commit: r1075470 [3/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html URL:https://lists.apache.org/thread.html/r75cbe9ea3e2114e4271bbeca7aff96117b50c1b6eb7c4772b0337c1f@%3Ccvs.httpd.apache.org%3E MLIST:[oss-security] 20090821 expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/21/2 MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/26/4 MLIST:[oss-security] 20090826 Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/26/3 MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/27/6 MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/09/06/1 MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/23/2 MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/22/9 MLIST:[oss-security] 20091022 Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/22/5 MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/23/6 MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/26/3 MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/28/3 MLIST:[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates URL:http://lists.vmware.com/pipermail/security-announce/2010/000082.html OVAL:oval:org.mitre.oval:def:11019 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11019 OVAL:oval:org.mitre.oval:def:12719 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12719 OVAL:oval:org.mitre.oval:def:7112 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7112 REDHAT:RHSA-2010:0002 URL:http://www.redhat.com/support/errata/RHSA-2010-0002.html REDHAT:RHSA-2011:0896 URL:http://www.redhat.com/support/errata/RHSA-2011-0896.html SECTRACK:1023160 URL:http://www.securitytracker.com/id?1023160 SECUNIA:37324 URL:http://secunia.com/advisories/37324 SECUNIA:37537 URL:http://secunia.com/advisories/37537 SECUNIA:37925 URL:http://secunia.com/advisories/37925 SECUNIA:38050 URL:http://secunia.com/advisories/38050 SECUNIA:38231 URL:http://secunia.com/advisories/38231 SECUNIA:38794 URL:http://secunia.com/advisories/38794 SECUNIA:38832 URL:http://secunia.com/advisories/38832 SECUNIA:38834 URL:http://secunia.com/advisories/38834 SECUNIA:39478 URL:http://secunia.com/advisories/39478 SECUNIA:41701 URL:http://secunia.com/advisories/41701 SECUNIA:42326 URL:http://secunia.com/advisories/42326 SECUNIA:42338 URL:http://secunia.com/advisories/42338 SECUNIA:43300 URL:http://secunia.com/advisories/43300 SLACKWARE:SSA:2011-041-02 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.486026 SUNALERT:273630 URL:~~http://sunsolve.sun.com/search/document.do?assetkey=1-66-273630-1~~ (Obsolete source) SUSE:SUSE-SR:2009:018 URL:http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html SUSE:SUSE-SR:2010:011 URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html SUSE:SUSE-SR:2010:012 URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html SUSE:SUSE-SR:2010:013 URL:http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html SUSE:SUSE-SR:2010:014 URL:http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html UBUNTU:USN-890-1 URL:http://www.ubuntu.com/usn/USN-890-1 UBUNTU:USN-890-6 URL:http://www.ubuntu.com/usn/USN-890-6 VUPEN:ADV-2010-0528 URL:~~http://www.vupen.com/english/advisories/2010/0528~~ (Obsolete source) VUPEN:ADV-2010-0896 URL:~~http://www.vupen.com/english/advisories/2010/0896~~ (Obsolete source) VUPEN:ADV-2010-1107 URL:~~http://www.vupen.com/english/advisories/2010/1107~~ (Obsolete source) VUPEN:ADV-2010-3035 URL:~~http://www.vupen.com/english/advisories/2010/3035~~ (Obsolete source) VUPEN:ADV-2010-3053 URL:~~http://www.vupen.com/english/advisories/2010/3053~~ (Obsolete source) VUPEN:ADV-2010-3061 URL:~~http://www.vupen.com/english/advisories/2010/3061~~ (Obsolete source) VUPEN:ADV-2011-0359 URL:~~http://www.vupen.com/english/advisories/2011/0359~~ (Obsolete source)
Assigning CNA
Red Hat, Inc.
Date Record Created
20091016	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20091016)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)