Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
25 Jan 2021, 15:44
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:libexpat:expat:2.0.0:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.4:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.6:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:*:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.8:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.1:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.5:*:*:*:*:*:*:* cpe:2.3:a:libexpat:expat:1.95.7:*:*:*:*:*:*:* |
cpe:2.3:a:libexpat_project:libexpat:1.95.6:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.7:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.8:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:2.0.0:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.2:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.5:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:*:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.4:*:*:*:*:*:*:* cpe:2.3:a:libexpat_project:libexpat:1.95.1:*:*:*:*:*:*:* |
Information
Published : 2012-07-03 19:55
Updated : 2023-12-10 11:16
NVD link : CVE-2012-1148
Mitre link : CVE-2012-1148
CVE.ORG link : CVE-2012-1148
JSON object : View
Products Affected
libexpat_project
- libexpat
apple
- mac_os_x
CWE
CWE-399
Resource Management Errors