FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser

Affected packages
10.1 <= FreeBSD < 10.1_18
10.2 <= FreeBSD < 10.2_1
9.3 <= FreeBSD < 9.3_23

Details

VuXML ID 0da8a68e-600a-11e6-a6c3-14dae9d210b8
Discovery 2015-08-18
Entry 2016-08-11

Problem Description:

Multiple integer overflows have been discovered in the XML_GetBuffer() function in the expat library.

Impact:

The integer overflows may be exploited by using specifically crafted XML data and lead to infinite loop, or a heap buffer overflow, which results in a Denial of Service condition, or enables remote attackers to execute arbitrary code.

References

CVE Name CVE-2015-1283
FreeBSD Advisory SA-15:20.expat