CVE-2009-2414
published 2009-08-11CVE-2009-2414: Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
3.12%
86.2th percentile
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libxml2 | < libxml2 2.7.3.dfsg-2.1 (bookworm) | libxml2 2.7.3.dfsg-2.1 (bookworm) |
| vmware | esxi | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_vcenter_server | — | — |
| vmware | vmware_vsphere | — | — |
| vmware | vmware_workstation | — | — |
| xmlsoft | libxml | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | — | — |
| xmlsoft | libxml2 | >= 0 < 2.7.3.dfsg-2.1 | 2.7.3.dfsg-2.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.3.dfsg-2.1 | 2.7.3.dfsg-2.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.3.dfsg-2.1 | 2.7.3.dfsg-2.1 |
| xmlsoft | libxml2 | >= 0 < 2.7.3.dfsg-2.1 | 2.7.3.dfsg-2.1 |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_ubuntu10.0CRITICAL
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pxj8-hpwc-88mp: Stack consumption vulnerability in libxml2 2
ghsa_unreviewed·2022-05-02
CVE-2009-2414 [MEDIUM] CWE-119 GHSA-pxj8-hpwc-88mp: Stack consumption vulnerability in libxml2 2
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
OSV
CVE-2009-2414: Stack consumption vulnerability in libxml2 2
osv·2009-08-11·CVSS 4.3
CVE-2009-2414 [MEDIUM] CVE-2009-2414: Stack consumption vulnerability in libxml2 2
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
VMware
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
vendor_vmware·2009-11-20·CVSS 5.0
CVE-2007-2052 [MEDIUM] VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
VMSA-2009-0016: VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
a. JRE Security Update JRE update to version 1.5.0_20, which addresses multiple security issues that existed in earlier releases of JRE. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_18: CVE-2009-1093, CVE-2009-1094, CVE-2009-1095, CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100, CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106, and CVE-2009-1107. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the following names to the security issues fixed in JRE 1.5.0_20: CVE-2009-
Ubuntu
libxml2 vulnerabilities
vendor_ubuntu·2009-08-11·CVSS 10.0
CVE-2009-2414 [CRITICAL] libxml2 vulnerabilities
Title: libxml2 vulnerabilities
Summary: libxml2 vulnerabilities
It was discovered that libxml2 did not correctly handle root XML document
element DTD definitions. If a user were tricked into processing a specially
crafted XML document, a remote attacker could cause the application linked
against libxml2 to crash, leading to a denial of service. (CVE-2009-2414)
It was discovered that libxml2 did not correctly parse Notation and
Enumeration attribute types. If a user were tricked into processing a
specially crafted XML document, a remote attacker could cause the
application linked against libxml2 to crash, leading to a denial of
service. (CVE-2009-2416)
USN-644-1 fixed a vulnerability in libxml2. This advisory provides the
corresponding update for Ubuntu 9.04.
Original advisory details:
Red Hat
mingw32-libxml2: Stack overflow by parsing root XML element DTD definition
vendor_redhat·2009-08-10·CVSS 4.3
CVE-2009-2414 [MEDIUM] mingw32-libxml2: Stack overflow by parsing root XML element DTD definition
mingw32-libxml2: Stack overflow by parsing root XML element DTD definition
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
Debian
CVE-2009-2414: libxml2 - Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2...
vendor_debian·2009·CVSS 4.3
CVE-2009-2414 [MEDIUM] CVE-2009-2414: libxml2 - Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2...
Stack consumption vulnerability in libxml2 2.5.10, 2.6.16, 2.6.26, 2.6.27, and 2.6.32, and libxml 1.8.17, allows context-dependent attackers to cause a denial of service (application crash) via a large depth of element declarations in a DTD, related to a function recursion, as demonstrated by the Codenomicon XML fuzzing framework.
Scope: local
bookworm: resolved (fixed in 2.7.3.dfsg-2.1)
bullseye: resolved (fixed in 2.7.3.dfsg-2.1)
forky: resolved (fixed in 2.7.3.dfsg-2.1)
sid: resolved (fixed in 2.7.3.dfsg-2.1)
trixie: resolved (fixed in 2.7.3.dfsg-2.1)
No detection rules found.
No public exploits indexed.
http://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.htmlhttp://lists.apple.com/archives/security-announce/2009/Nov/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2009/Nov/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.htmlhttp://secunia.com/advisories/35036http://secunia.com/advisories/36207http://secunia.com/advisories/36338http://secunia.com/advisories/36417http://secunia.com/advisories/36631http://secunia.com/advisories/37346http://secunia.com/advisories/37471http://support.apple.com/kb/HT3937http://support.apple.com/kb/HT3949http://support.apple.com/kb/HT4225http://www.cert.fi/en/reports/2009/vulnerability2009085.htmlhttp://www.codenomicon.com/labs/xml/http://www.debian.org/security/2009/dsa-1859http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.htmlhttp://www.networkworld.com/columnists/2009/080509-xml-flaw.htmlhttp://www.openoffice.org/security/cves/CVE-2009-2414-2416.htmlhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/36010http://www.ubuntu.com/usn/USN-815-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/2420http://www.vupen.com/english/advisories/2009/3184http://www.vupen.com/english/advisories/2009/3217http://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=515195https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10129https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8639https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.htmlhttp://googlechromereleases.blogspot.com/2009/08/stable-update-security-fixes.htmlhttp://lists.apple.com/archives/security-announce/2009/Nov/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2009/Nov/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2010/Jun/msg00003.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.htmlhttp://secunia.com/advisories/35036http://secunia.com/advisories/36207http://secunia.com/advisories/36338http://secunia.com/advisories/36417http://secunia.com/advisories/36631http://secunia.com/advisories/37346http://secunia.com/advisories/37471http://support.apple.com/kb/HT3937http://support.apple.com/kb/HT3949http://support.apple.com/kb/HT4225http://www.cert.fi/en/reports/2009/vulnerability2009085.htmlhttp://www.codenomicon.com/labs/xml/http://www.debian.org/security/2009/dsa-1859http://www.mail-archive.com/debian-bugs-dist%40lists.debian.org/msg678527.htmlhttp://www.networkworld.com/columnists/2009/080509-xml-flaw.htmlhttp://www.openoffice.org/security/cves/CVE-2009-2414-2416.htmlhttp://www.securityfocus.com/archive/1/507985/100/0/threadedhttp://www.securityfocus.com/bid/36010http://www.ubuntu.com/usn/USN-815-1http://www.vmware.com/security/advisories/VMSA-2009-0016.htmlhttp://www.vupen.com/english/advisories/2009/2420http://www.vupen.com/english/advisories/2009/3184http://www.vupen.com/english/advisories/2009/3217http://www.vupen.com/english/advisories/2009/3316https://bugzilla.redhat.com/show_bug.cgi?id=515195https://git.gnome.org/browse/libxml2/commit/?id=489f9671e71cc44a97b23111b3126ac8a1e21a59https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10129https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8639https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00537.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00547.htmlhttps://www.redhat.com/archives/fedora-package-announce/2009-August/msg00642.html
2009-08-11
Published