Bug 880466 (CVE-2012-5134)

Summary: CVE-2012-5134 libxml2: Heap-buffer-underflow in xmlParseAttValueComplex
Product: [Other] Security Response Reporter: Huzaifa S. Sidhpurwala <huzaifas>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: bressers, c.david86, drizt72, erik-fedora, fedora-mingw, ktietz, lfarkas, maurizio, mcermak, mnewsome, ohudlick, rjones, seceng-idm-qe-list, veillard
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-04-25 12:10:36 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 880467, 880468, 880475, 880476, 880477, 882064, 891477, 891478, 913211    
Bug Blocks: 880218, 891480    

Description Huzaifa S. Sidhpurwala 2012-11-27 04:18:10 UTC 
A heap-buffer overflow was found in the way libxml2 decoded certain XML entitites. A remote attacker could provide a specially-crafted XML file, which once opened in an application linked against libxml would cause that application to crash, or, potentially, execute arbitrary code with the privileges of the user running the application.

Reference:
http://googlechromereleases.blogspot.in/2012/11/stable-channel-update.html

Patch:
http://git.gnome.org/browse/libxml2/commit/?id=6a36fbe3b3e001a8a840b5c1fdd81cefc9947f0d
Comment 3 Huzaifa S. Sidhpurwala 2012-11-27 05:00:42 UTC 
Created libxml2 tracking bugs for this issue

Affects: fedora-all [bug 880477]
Comment 6 errata-xmlrpc 2012-11-29 18:49:44 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5
  Red Hat Enterprise Linux 6

Via RHSA-2012:1512 https://rhn.redhat.com/errata/RHSA-2012-1512.html
Comment 7 Huzaifa S. Sidhpurwala 2012-11-30 03:30:28 UTC 
Created mingw32-libxml2 tracking bugs for this issue

Affects: fedora-all [bug 882064]
Comment 12 errata-xmlrpc 2013-01-31 19:33:42 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2013:0217 https://rhn.redhat.com/errata/RHSA-2013-0217.html