CVE-2022-2309NULL Pointer Dereference in Lxml

CWE-476NULL Pointer Dereference13 documents8 sources
Severity
7.5HIGHNVD
EPSS
0.9%
top 24.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Lxml LxmlXmlsoft Libxml2Lxml+2 more
Timeline
PublishedJul 5
Latest updateJun 7

Description

NULL Pointer Dereference allows attackers to cause a denial of service (or application crash). This only applies when lxml is used together with libxml2 2.9.10 through 2.9.14. libxml2 2.9.9 and earlier are not affected. It allows triggering crashes through forged input data, given a vulnerable code sequence in the application. The vulnerability is caused by the iterwalk function (also used by the canonicalize function). Such code shouldn't be in wide-spread use, given that parsing + iterwalk wou

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages7 packages

Debianxmlsoft/libxml2< 2.9.10+dfsg-6.7+deb11u5+3
Ubuntuxmlsoft/libxml2< 2.9.4+dfsg1-6.1ubuntu1.8+2
NVDlxml/lxml< 4.9.1
PyPIlxml/lxml< 4.9.1
CVEListV5lxml/lxml_lxmlunspecified4.9.1

Also affects: Fedora 36, 37

Patches

Patch: github.comPatch: huntr.devPatch: github.com

🔴Vulnerability Details

7
OSV
libxml2 vulnerabilities2022-12-05
OSV
Update bundled libxml2 to v2.10.3 to resolve multiple CVEs2022-10-18
GHSA
Update bundled libxml2 to v2.10.3 to resolve multiple CVEs2022-10-18
OSV
lxml NULL Pointer Dereference allows attackers to cause a denial of service2022-07-06
GHSA
lxml NULL Pointer Dereference allows attackers to cause a denial of service2022-07-06

📋Vendor Advisories

5
Ubuntu
libxml2 vulnerabilities2023-06-07
Ubuntu
libxml2 vulnerabilities2022-12-05
Microsoft
NULL Pointer Dereference in lxml/lxml2022-07-12
Red Hat
lxml: NULL Pointer Dereference in lxml2022-07-05
Debian
CVE-2022-2309: libxml2 - NULL Pointer Dereference allows attackers to cause a denial of service (or appli...2022