2448999 – (CVE-2006-10003) CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files

Bug 2448999 (CVE-2006-10003) - CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nested XML files

Summary: CVE-2006-10003 perl-xml-parser: XML::Parser: Memory corruption via deeply nes...

Keywords:
Status:	NEW
Alias:	CVE-2006-10003
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2449275 2449278 2449280 2449282
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-19 12:02 UTC by OSIDB Bzimport
Modified:	2026-03-19 23:05 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-03-19 12:02:03 UTC

XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack.

In the case (stackptr == stacksize - 1), the stack will NOT be expanded. Then the new value will be written at location (++stackptr), which equals stacksize and therefore falls just outside the allocated buffer.

The bug can be observed when parsing an XML file with very deep element nesting

Note You need to log in before you can comment on or make changes to this bug.