QID 354627
Date Published: 2023-01-02
QID 354627: Amazon Linux Security Advisory for expat : AL2012-2022-359
Package updates are available for Amazon Linux that fix the following vulnerabilities:
CVE-2022-25315:
2056363: CVE-2022-25315 expat: Integer overflow in storeRawNames()
An integer overflow was found in expat. The issue occurs in storeRawNames() by abusing the m_buffer expansion logic to allow allocations very close to INT_MAX and out-of-bounds heap writes. This flaw can cause a denial of service or potentially arbitrary code execution.
CVE-2022-25236:
A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns[:prefix]" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML processor.
2056370: CVE-2022-25236 expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution
CVE-2022-25235:
A flaw was found in expat. Passing malformed 2- and 3-byte UTF-8 sequences (for example, from start tag names) to the XML processing application on top of expat can lead to arbitrary code execution. This issue is dependent on how invalid UTF-8 is handled inside the XML processor.
2056366: CVE-2022-25235 expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
CVEs related to QID 354627
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| AL2012-2022-359 | Amazon Linux Bare Metal |
docs.aws.amazon.com/AWSEC2/latest/UserGuide/install-updates.html |