CVE-2022-43680

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 47%
VendorProductVersion
libexpat_projectlibexpat
𝑥
≤ 2.4.9
debiandebian_linux
10.0
debiandebian_linux
11.0
netapph300s_firmware
-
netapph500s_firmware
-
netapph700s_firmware
-
netapph410s_firmware
-
netapph410c_firmware
-
netappactive_iq_unified_manager
-
netapponcommand_workflow_automation
-
netappsolidfire_\&_hci_management_node
-
netapphci_compute_node_firmware
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
expat
bullseye
2.2.10-2+deb11u5
fixed
bullseye (security)
2.2.10-2+deb11u6
fixed
bookworm
2.5.0-1
fixed
bookworm (security)
2.5.0-1+deb12u1
fixed
sid
2.6.3-2
fixed
trixie
2.6.3-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
apache2
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
apr-util
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
ayttm
jammy
dne
focal
dne
bionic
dne
xenial
needs-triage
trusty
ignored
cableswig
jammy
dne
focal
dne
bionic
dne
xenial
needs-triage
trusty
ignored
cadaver
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
cmake
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
ignored
coin3
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
expat
noble
Fixed 2.5.0-1
released
mantic
Fixed 2.5.0-1
released
lunar
Fixed 2.5.0-1
released
kinetic
Fixed 2.4.8-2ubuntu0.22.10.1
released
jammy
Fixed 2.4.7-1ubuntu0.2
released
focal
Fixed 2.2.9-1ubuntu0.6
released
bionic
Fixed 2.2.5-3ubuntu0.8
released
xenial
Fixed 2.1.0-7ubuntu0.16.04.5+esm7
released
trusty
Fixed 2.1.0-4ubuntu1.4+esm7
released
firefox
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
ignored
bionic
ignored
xenial
ignored
trusty
ignored
gdcm
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
not-affected
ghostscript
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
ignored
insighttoolkit
jammy
dne
focal
dne
bionic
dne
xenial
needs-triage
trusty
ignored
insighttoolkit4
noble
dne
mantic
dne
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
needs-triage
trusty
ignored
libxmltok
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
matanza
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
smart
jammy
dne
focal
dne
bionic
not-affected
xenial
not-affected
trusty
ignored
swish-e
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
tdom
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
texlive-bin
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
trusty
ignored
thunderbird
noble
ignored
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
ignored
focal
ignored
bionic
ignored
xenial
ignored
trusty
ignored
vnc4
jammy
dne
focal
dne
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
vtk
jammy
dne
focal
dne
bionic
dne
xenial
needs-triage
trusty
needs-triage
wbxml2
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
ignored
xmlrpc-c
noble
needs-triage
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needs-triage
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2023/12/28/5
http://www.openwall.com/lists/oss-security/2024/01/03/5
https://github.com/libexpat/libexpat/issues/649
https://github.com/libexpat/libexpat/pull/616
https://github.com/libexpat/libexpat/pull/650
https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/
https://security.gentoo.org/glsa/202210-38
https://security.netapp.com/advisory/ntap-20221118-0007/
https://www.debian.org/security/2022/dsa-5266
http://www.openwall.com/lists/oss-security/2023/12/28/5
http://www.openwall.com/lists/oss-security/2024/01/03/5
https://github.com/libexpat/libexpat/issues/649
https://github.com/libexpat/libexpat/pull/616
https://github.com/libexpat/libexpat/pull/650
https://lists.debian.org/debian-lts-announce/2022/10/msg00033.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AJ5VY2VYXE4WTRGQ6LMGLF6FV3SY37YE/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BY4OPSIB33ETNUXZY2UPZ4NGQ3OKDY4D/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DPQVIF6TOJNY2T3ZZETFKR4G34FFREBQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FFCOMBSOJKLIKCGCJWHLJXO4EVYBG7AR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IUJ2BULJTZ2BMSKQHB6US674P55UCWWS/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5XOOB7CD55CEE6OJYKSACSIMQ4RWQ6/
https://security.gentoo.org/glsa/202210-38
https://security.netapp.com/advisory/ntap-20221118-0007/
https://www.debian.org/security/2022/dsa-5266