CVE - CVE-2009-3720

CVE-ID
CVE-2009-3720	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences URL:http://mail.python.org/pipermail/expat-bugs/2009-January/002781.html MLIST:[oss-security] 20090821 expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/21/2 MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/26/4 MLIST:[oss-security] 20090826 Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/26/3 MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/08/27/6 MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/09/06/1 MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/23/2 MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/22/9 MLIST:[oss-security] 20091022 Regarding expat bug 1990430 URL:http://www.openwall.com/lists/oss-security/2009/10/22/5 MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/23/6 MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/26/3 MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430] URL:http://www.openwall.com/lists/oss-security/2009/10/28/3 MLIST:[security-announce] 20100303 VMSA-2010-0004 ESX Service Console and vMA third party updates URL:http://lists.vmware.com/pipermail/security-announce/2010/000082.html MISC:http://sourceforge.net/tracker/index.php?func=detail&aid=1990430&group_id=10127&atid=110127 CONFIRM:http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.13&r2=1.15&view=patch CONFIRM:http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?view=log CONFIRM:http://svn.python.org/view?view=rev&revision=74429 CONFIRM:https://bugs.gentoo.org/show_bug.cgi?id=280615 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=531697 FEDORA:FEDORA-2009-12690 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00370.html FEDORA:FEDORA-2009-12737 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00413.html FEDORA:FEDORA-2009-12753 URL:https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01274.html FEDORA:FEDORA-2010-17720 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051367.html FEDORA:FEDORA-2010-17732 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051247.html FEDORA:FEDORA-2010-17762 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051228.html FEDORA:FEDORA-2010-17807 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051442.html FEDORA:FEDORA-2010-17819 URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051405.html HP:HPSBUX02645 URL:http://marc.info/?l=bugtraq&m=130168502603566&w=2 MANDRIVA:MDVSA-2009:211 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:211 MANDRIVA:MDVSA-2009:212 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:212 MANDRIVA:MDVSA-2009:215 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:215 MANDRIVA:MDVSA-2009:216 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:216 MANDRIVA:MDVSA-2009:217 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:217 MANDRIVA:MDVSA-2009:218 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:218 MANDRIVA:MDVSA-2009:220 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:220 MANDRIVA:MDVSA-2009:219 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:219 REDHAT:RHSA-2010:0002 URL:http://www.redhat.com/support/errata/RHSA-2010-0002.html REDHAT:RHSA-2011:0896 URL:http://www.redhat.com/support/errata/RHSA-2011-0896.html SLACKWARE:SSA:2011-041-02 URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.486026 SUNALERT:273630 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-273630-1 SUSE:SUSE-SR:2009:018 URL:http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html SUSE:SUSE-SR:2010:011 URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html SUSE:SUSE-SR:2010:012 URL:http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00002.html SUSE:SUSE-SR:2010:013 URL:http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html SUSE:SUSE-SR:2010:014 URL:http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html UBUNTU:USN-890-1 URL:http://www.ubuntu.com/usn/USN-890-1 UBUNTU:USN-890-6 URL:http://www.ubuntu.com/usn/USN-890-6 OVAL:oval:org.mitre.oval:def:11019 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11019 OVAL:oval:org.mitre.oval:def:7112 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7112 OVAL:oval:org.mitre.oval:def:12719 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12719 SECTRACK:1023160 URL:http://www.securitytracker.com/id?1023160 SECUNIA:37324 URL:http://secunia.com/advisories/37324 SECUNIA:37537 URL:http://secunia.com/advisories/37537 SECUNIA:37925 URL:http://secunia.com/advisories/37925 SECUNIA:38231 URL:http://secunia.com/advisories/38231 SECUNIA:38794 URL:http://secunia.com/advisories/38794 SECUNIA:38832 URL:http://secunia.com/advisories/38832 SECUNIA:38834 URL:http://secunia.com/advisories/38834 SECUNIA:39478 URL:http://secunia.com/advisories/39478 SECUNIA:38050 URL:http://secunia.com/advisories/38050 SECUNIA:41701 URL:http://secunia.com/advisories/41701 SECUNIA:43300 URL:http://secunia.com/advisories/43300 SECUNIA:42326 URL:http://secunia.com/advisories/42326 SECUNIA:42338 URL:http://secunia.com/advisories/42338 VUPEN:ADV-2010-0528 URL:http://www.vupen.com/english/advisories/2010/0528 VUPEN:ADV-2010-0896 URL:http://www.vupen.com/english/advisories/2010/0896 VUPEN:ADV-2010-1107 URL:http://www.vupen.com/english/advisories/2010/1107 VUPEN:ADV-2011-0359 URL:http://www.vupen.com/english/advisories/2011/0359 VUPEN:ADV-2010-3035 URL:http://www.vupen.com/english/advisories/2010/3035 VUPEN:ADV-2010-3053 URL:http://www.vupen.com/english/advisories/2010/3053 VUPEN:ADV-2010-3061 URL:http://www.vupen.com/english/advisories/2010/3061
Assigning CNA
N/A
Date Entry Created
20091016	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20091016)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org