Vulnerability CVE-2016-4658: Information
Description
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and memory corruption) via a crafted XML document.
Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| libxml2 | sisyphus | 2.9.4.0.12.e905-alt1 | 2.12.7-alt1 | ALT-PU-2017-1240-1 | 179126 | Fixed |
| libxml2 | p10 | 2.9.4.0.12.e905-alt1 | 2.9.12-alt1.p10.1 | ALT-PU-2017-1240-1 | 179126 | Fixed |
| libxml2 | p9 | 2.9.10-alt2 | 2.9.10-alt6.p9.1 | ALT-PU-2019-3079-1 | 240157 | Fixed |
| libxml2 | p8 | 2.9.4.0.12.e905-alt1 | 2.9.4.0.12.e905-alt1 | ALT-PU-2017-1252-1 | 179256 | Fixed |
| libxml2 | c10f1 | 2.9.4.0.12.e905-alt1 | 2.9.12-alt1.p10.1 | ALT-PU-2017-1240-1 | 179126 | Fixed |
| libxml2 | c9f2 | 2.9.10-alt2 | 2.9.12-alt1.c9f2.1 | ALT-PU-2019-3079-1 | 240157 | Fixed |
| libxml2 | p11 | 2.9.4.0.12.e905-alt1 | 2.12.7-alt1 | ALT-PU-2017-1240-1 | 179126 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| APPLE-SA-2016-09-20-3 |
|
| https://support.apple.com/HT207170 |
|
| https://support.apple.com/HT207143 |
|
| APPLE-SA-2016-09-20-5 |
|
| https://support.apple.com/HT207141 |
|
| https://support.apple.com/HT207142 |
|
| APPLE-SA-2016-09-20-6 |
|
| APPLE-SA-2016-09-20 |
|
| 93054 |
|
| GLSA-201701-37 |
|
| 1038623 |
|
| 1036858 |
|
| https://git.gnome.org/browse/libxml2/commit/?id=c1d1f7121194036608bf555f08d3062a36fd344b |
|