Bug 787067 (CVE-2012-0841) - CVE-2012-0841 libxml2: hash table collisions CPU usage DoS
Summary: CVE-2012-0841 libxml2: hash table collisions CPU usage DoS
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2012-0841
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 788843 788844 788845 788846 788847 788848 795698 795699 795700 810940 891477 891478 1206463
Blocks: hashdos, oCERT-2011-003 782164 788255 891480
TreeView+ depends on / blocked
 
Reported: 2012-02-03 04:55 UTC by Kurt Seifried
Modified: 2019-09-29 12:50 UTC (History)
12 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-01-17 04:43:35 UTC


Attachments (Terms of Use)


Links
System ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2012:0324 normal SHIPPED_LIVE Moderate: libxml2 security update 2012-02-22 03:27:58 UTC
Red Hat Product Errata RHSA-2013:0217 normal SHIPPED_LIVE Important: mingw32-libxml2 security update 2013-02-01 00:25:14 UTC

Description Kurt Seifried 2012-02-03 04:55:24 UTC
Juraj Somorovsky and Christopher Meyer reported that certain XML parsers/servers are affected by the same, or similar, flaw as the hash table collisions CPU usage denial of service.  Sending a specially crafted message to an XML service can result in longer processing time, which could lead to a denial of service.  It is reported that this attack on XML can be applied on different XML nodes (such as entities, element attributes, namespaces, various elements in the XML security, etc.).

libxml2 is written in C and makes significant use of arrays. I will contact 
upstream to make them aware of this issue.

Comment 16 Huzaifa S. Sidhpurwala 2012-02-21 10:20:17 UTC
This is now public via:

http://git.gnome.org/browse/libxml2/commit/?id=8973d58b7498fa5100a876815476b81fd1a2412a

Comment 17 Huzaifa S. Sidhpurwala 2012-02-21 10:26:18 UTC
Created libxml2 tracking bugs for this issue

Affects: fedora-all [bug 795698]

Comment 18 Huzaifa S. Sidhpurwala 2012-02-21 10:26:22 UTC
Created mingw32-libxml2 tracking bugs for this issue

Affects: fedora-all [bug 795699]
Affects: epel-5 [bug 795700]

Comment 19 errata-xmlrpc 2012-02-21 22:29:44 UTC
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5
  Red Hat Enterprise Linux 6

Via RHSA-2012:0324 https://rhn.redhat.com/errata/RHSA-2012-0324.html

Comment 21 Huzaifa S. Sidhpurwala 2012-02-28 05:49:01 UTC
Statement:

(none)

Comment 24 errata-xmlrpc 2013-01-31 19:33:29 UTC
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2013:0217 https://rhn.redhat.com/errata/RHSA-2013-0217.html


Note You need to log in before you can comment on or make changes to this bug.