CVE-2016-0718: expat 2.2, bug #537¶
The Expat XML parser mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. The bugs allow for a denial of service attack in many applications by an unauthenticated attacker, and could conceivably result in remote code execution.
- Disclosure date: 2017-02-17 (Python issue #29591 reported)
- Reported by: 2016-05-27 (expat bug #537 reported)
- Python 2.7
- Python 3.3
- Python 3.4
- Python 3.5
- Python 3.6
Various security vulnerabilities in bundled expat (CVE-2016-0718 and CVE-2016-4472).
- Python issue: issue #29591
- Creation date: 2017-02-17
- Reporter: Natanael Copa
Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.