logo

Database

Lack of data validation - Type confusion In libxslt

Description

libxslt Type Confusion vulnerability that affects Nokogiri In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data.

Nokogiri prior to version 1.10.5 used a vulnerable version of libxslt. Nokogiri 1.10.5 updated libxslt to version 1.1.34 to address this and other vulnerabilities in libxslt.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

1-10 of 25

10

Aliases

1. CVE-2019-131182. NVD-2019-131183. OSV-ALPINE-2019-131184. OSV-2019-131185. OSV-DEBIAN-2019-131186. GCVE-2019-131187. SECURITY-CVE-2019-131188. SECURITY-TRACKER-CVE-2019-131189. lists.debian.org

References

1. https://github.com/sparklemotion/nokogiri/issues/19432. https://github.com/sparklemotion/nokogiri/commit/43a175339b47b8c604508813fc75b83f13cd173e3. https://seclists.org/bugtraq/2019/Jul/374. https://seclists.org/bugtraq/2019/Jul/405. https://seclists.org/bugtraq/2019/Jul/416. https://seclists.org/bugtraq/2019/Jul/427. https://security.netapp.com/advisory/ntap-20190806-00048. https://security.netapp.com/advisory/ntap-20200122-00039. https://support.apple.com/kb/HT21034610. https://support.apple.com/kb/HT21034811. https://support.apple.com/kb/HT21035112. https://support.apple.com/kb/HT21035313. https://support.apple.com/kb/HT21035614. https://support.apple.com/kb/HT21035715. https://support.apple.com/kb/HT21035816. https://usn.ubuntu.com/4164-117. https://www.oracle.com/security-alerts/cpujan2020.html18. https://seclists.org/bugtraq/2019/Jul/3619. https://seclists.org/bugtraq/2019/Jul/3520. https://seclists.org/bugtraq/2019/Aug/2521. https://seclists.org/bugtraq/2019/Aug/2322. https://seclists.org/bugtraq/2019/Aug/2223. https://seclists.org/bugtraq/2019/Aug/2124. https://oss-fuzz.com/testcase-detail/519737147182284825. https://lists.fedoraproject.org/archives/list/[email protected]/message/IOYJKXPQCUNBMMQJWYXOR6QRUJZHEDRZ26. https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E27. https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E28. https://gitlab.gnome.org/GNOME/libxslt/commit/6ce8de69330783977dd14f6569419489875fb71b29. https://github.com/sparklemotion/nokogiri/releases/tag/v1.10.530. https://github.com/sparklemotion/nokogiri/blob/f7aa3b0b29d6fe5fafe93dacd9b96b6b3d16b7ec/CHANGELOG.md?plain=1#L79631. https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1506932. http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00062.html33. http://seclists.org/fulldisclosure/2019/Aug/1134. http://seclists.org/fulldisclosure/2019/Aug/1335. http://seclists.org/fulldisclosure/2019/Aug/1436. http://seclists.org/fulldisclosure/2019/Aug/1537. http://seclists.org/fulldisclosure/2019/Jul/2238. http://seclists.org/fulldisclosure/2019/Jul/2339. http://seclists.org/fulldisclosure/2019/Jul/2440. http://seclists.org/fulldisclosure/2019/Jul/2641. http://seclists.org/fulldisclosure/2019/Jul/3142. http://seclists.org/fulldisclosure/2019/Jul/3743. http://seclists.org/fulldisclosure/2019/Jul/3844. http://www.openwall.com/lists/oss-security/2019/11/17/2

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.