CVE-2022-43680

CWE-416 — Use After Free20 documents11 sources

Severity

7.5HIGH

EPSS

0.6%

top 31.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Platform External/expat Libexpat Project Libexpat Debian Debian Linux +1 more

Timeline

PublishedOct 24

Latest updateOct 15

Description

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶NVDlibexpat_project/libexpat2.4.9

▶Androidplatform/external/expat10:0 — 10:2023-02-01+4

▶Debianexpat< 2.2.10-2+deb11u5+3

▶Ubuntuexpat< 2.2.5-3ubuntu0.8+6

Also affects: Debian Linux 10.0, 11.0, Fedora 35, 36, 37

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

OSV

CVE-2022-43680: In parserCreate of xmlparse↗2023-02-01

▶

OSV

expat vulnerability↗2022-11-23

▶

OSV

expat vulnerabilities↗2022-11-17

▶

OSV

CVE-2022-43680: In libexpat through 2↗2022-10-24

▶

CVEList

CVE-2022-43680: In libexpat through 2↗2022-10-24

▶

📋Vendor Advisories

Oracle

Oracle Oracle Enterprise Manager Risk Matrix: Enterprise Manager Install (LibExpat) — CVE-2022-43680↗2023-10-15

▶

Oracle

Oracle Oracle Database Server Risk Matrix: Oracle Text (LibExpat) — CVE-2022-43680↗2023-07-15

▶

Oracle

Oracle Oracle Financial Services Applications Risk Matrix: Third Party (LibExpat) — CVE-2022-43680↗2023-04-15

▶

Ubuntu

Expat vulnerabilities↗2023-02-28

▶

Android

CVE-2022-43680: Android Security Bulletin 2023-02-01 CVE: CVE-2022-43680 Severity: HIGH Type: EoP Affected AOSP versions: 10, 11, 12, 12L, 13 References: A-255449293↗2023-02-01

▶