FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libxml2 stack buffer overflow in URI parsing

Affected packages
libxml2 < 2.6.6

Details

VuXML ID 847ade05-6717-11d8-b321-000a95bc6fae
Discovery 2004-02-08
Entry 2004-02-25

Yuuichi Teranishi reported a crash in libxml2's URI handling when a long URL is supplied. The implementation in nanohttp.c and nanoftp.c uses a 4K stack buffer, and longer URLs will overwrite the stack. This could result in denial-of-service or arbitrary code execution in applications using libxml2 to parse documents.

References

CVE Name CVE-2004-0110
URL http://mail.gnome.org/archives/xml/2004-February/msg00070.html
URL http://www.xmlsoft.org/news.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.