CVE-2019-15903Out-of-bounds Read in Project Libexpat

CWE-125Out-of-bounds ReadCWE-776XML Entity ExpansionCWE-122Heap-based Buffer Overflow33 documents13 sources
Severity
7.5HIGHNVD
OSV6.8OSV5.0
EPSS
0.2%
top 58.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mozilla ThunderbirdLibexpat Project LibexpatPython
Timeline
PublishedSep 4
Latest updateJan 13

Description

In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDpython/python2.7.02.7.17+3
Debianmozilla/thunderbird< 1:68.2.1-1+3

Patches

Patch: github.comPatch: github.comPatch: github.com

🔴Vulnerability Details

5
OSV
libxmltok vulnerabilities2025-01-13
OSV
libxmltok vulnerabilities2022-07-19
GHSA
GHSA-w829-6hpw-frjf: In libexpat before 22022-05-24
CVEList
CVE-2019-15903: In libexpat before 22019-09-04
OSV
CVE-2019-15903: In libexpat before 22019-09-04

📋Vendor Advisories

22
Ubuntu
xmltok library vulnerabilities2025-01-13
Ubuntu
xmltok library vulnerabilities2022-07-19
Ubuntu
VTK vulnerabilities2021-03-15
Ubuntu
Thunderbird vulnerabilities2020-04-21
Oracle
Oracle Oracle Fusion Middleware Risk Matrix: DC-Specific Component (LibExpat) — CVE-2019-159032020-04-15

💬Community

4
Bugzilla
CVE-2019-15903 mingw-expat: expat: heap-based buffer over-read via crafted XML input [fedora-all]2019-09-16
Bugzilla
CVE-2019-15903 mingw-expat: expat: heap-based buffer over-read via crafted XML input [epel-7]2019-09-16
Bugzilla
CVE-2019-15903 expat: heap-based buffer over-read via crafted XML input [fedora-all]2019-09-16
Bugzilla
CVE-2019-15903 expat: heap-based buffer over-read via crafted XML input2019-09-16
CVE-2019-15903 — Out-of-bounds Read in Project Libexpat | cvebase