CVE-2008-2935

Related Files

Gentoo Linux Security Advisory 200808-6

Posted Aug 6, 2008

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200808-06 - Chris Evans (Google Security) reported that the libexslt library that is part of libxslt is affected by a heap-based buffer overflow in the RC4 encryption/decryption functions. Versions less than 1.1.24-r1 are affected.

tags | advisory, overflow

systems | linux, gentoo

advisories | CVE-2008-2935

SHA-256 | ef6c4548eeaf2c38dd381d020b7846dcabda70f114e2b51587199cf82d3654bf

Download | Favorite | View

Mandriva Linux Security Advisory 2008-160

Posted Aug 1, 2008

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Chris Evans of the Google Security Team found a vulnerability in the RC4 processing code in libxslt that did not properly handle corrupted key information. A remote attacker able to make an application linked against libxslt process malicious XML input could cause the application to crash or possibly execute arbitrary code with the privileges of the application in question. The updated packages have been patched to correct this issue.

tags | advisory, remote, arbitrary

systems | linux, mandriva

advisories | CVE-2008-2935

SHA-256 | 9089398cc45e671c7ec770f0a3763c42365ff672d9dcb1251f16997f946ef7ce

Download | Favorite | View

Ubuntu Security Notice 633-1

Posted Aug 1, 2008

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 633-1 - It was discovered that long transformation matches in libxslt could overflow. If an attacker were able to make an application linked against libxslt process malicious XSL style sheet input, they could execute arbitrary code with user privileges or cause the application to crash, leading to a denial of service. Chris Evans discovered that the RC4 processing code in libxslt did not correctly handle corrupted key information. If a remote attacker were able to make an application linked against libxslt process malicious XML input, they could crash the application, leading to a denial of service.

tags | advisory, remote, denial of service, overflow, arbitrary

systems | linux, ubuntu

advisories | CVE-2008-1767, CVE-2008-2935

SHA-256 | e71216d18a9188ff3b39ec48cf95a6d26780525826bce9c5ed7d5bb63c139134

Download | Favorite | View

Debian Linux Security Advisory 1624-1

Posted Jul 31, 2008

Authored by Debian | Site debian.org

Debian Security Advisory 1624-1 - Chris Evans discovered that a buffer overflow in the RC4 functions of libexslt may lead to the execution of arbitrary code.

tags | advisory, overflow, arbitrary

systems | linux, debian

advisories | CVE-2008-2935

SHA-256 | b29c91b76df018f464a01f3c193d583d01ad1689c8553d25facd12a8e30d941e

Download | Favorite | View

libexslt-overflow.txt

Posted Jul 31, 2008

Authored by Chris Evans

The libexslt library bundled with libxslt is affected by a heap-based buffer overflow which can lead to arbitrary code execution. The vulnerability is present in the rc4 encryption/decryption functions. Versions 1.1.8 and above and 1.1.24 and below are affected.

tags | advisory, overflow, arbitrary, code execution

advisories | CVE-2008-2935

SHA-256 | 02774ffc00a1109e47a89ae5bf7cae9109a21ab74ca69164ed59e8c5d4f33966

Download | Favorite | View