2123376 – (CVE-2022-25887) CVE-2022-25887 sanitize-html: insecure global regular expression replacement logic may lead to ReDoS

Bug 2123376 (CVE-2022-25887) - CVE-2022-25887 sanitize-html: insecure global regular expression replacement logic may lead to ReDoS

Summary: CVE-2022-25887 sanitize-html: insecure global regular expression replacement ...

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2022-25887
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2123457 2127948 2123458 2123459 2123600
Blocks:	2123377
TreeView+	depends on / blocked

Reported:	2022-09-01 13:53 UTC by Marian Rehak
Modified:	2024-03-15 23:38 UTC (History)
CC List:	52 users (show)
Fixed In Version:	sanitize-html 2.7.1
Doc Type:	If docs needed, set a value
Doc Text:	A flaw was found in sanitize-html library. Insecure global regular expression replacement logic of HTML comment removal could lead to a regular expression Denial of Service (ReDoS), affecting the availability of the affected component.
Clone Of:
Environment:
Last Closed:	2022-12-03 04:34:09 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2022:7313	0	None	None	None	2022-11-02 14:07:34 UTC

Description Marian Rehak 2022-09-01 13:53:38 UTC

A Regular Expression Denial of Service (ReDoS) due to insecure global regular expression replacement logic of HTML comment removal.

Reference:

https://security.snyk.io/vuln/SNYK-JS-SANITIZEHTML-2957526
https://github.com/apostrophecms/sanitize-html/pull/557
https://github.com/apostrophecms/sanitize-html/commit/b4682c12fd30e12e82fa2d9b766de91d7d2cd23c

Comment 2 Anten Skrabec 2022-09-01 18:03:38 UTC

Created golang-github-apache-beam-2 tracking bugs for this issue:

Affects: fedora-all [bug 2123458]


Created golang-github-prometheus tracking bugs for this issue:

Affects: epel-all [bug 2123457]


Created python-ipyparallel tracking bugs for this issue:

Affects: fedora-all [bug 2123459]

Comment 7 errata-xmlrpc 2022-11-02 14:07:30 UTC

This issue has been addressed in the following products:

  Red Hat Advanced Cluster Management for Kubernetes 2.6 for RHEL 8

Via RHSA-2022:7313 https://access.redhat.com/errata/RHSA-2022:7313

Comment 9 Product Security DevOps Team 2022-12-03 04:34:05 UTC

This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2022-25887

Note You need to log in before you can comment on or make changes to this bug.

adudiak
bcoca
caswilli
chousekn
cmeyers
davidn
dffrench
dhalasz
fjansen
gblomqui
go-sig
gparvin
gzaronik
jburrell
jcammara
jhardy
jobarker
jramanat
jwendell
jwong
kaycoth
kshier
mabashia
mattias.ellert
micjohns
nboldt
ngough
njean
notting
osapryki
ovanders
pahickey
psegedy
rcernich
relrod
rgodfrey
rpetrell
scorneli
sdoran
smcdonal
stcannon
sthirugn
tcarlin
tfister
tkasparek
tkuratom
tsasak
twalsh
vkrizan
vkumar
vmugicag
zebob.m