Memory corruption in libxslt (Alpine package)
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2017-5029 |
| CWE-ID | CWE-119 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
libxslt (Alpine package) Operating systems & Components / Operating system package or component |
| Vendor | Alpine Linux Development Team |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Memory corruption
EUVDB-ID: #VU11531
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2017-5029
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to write arbitrary files, cause DoS condition or execute arbitrary files on the target system.
The weakness exists in the xsltAddTextString function in transform.c due to lack of a check for integer overflow during a size calculation. A remote attacker can submit a specially crafted HTML page, trigger out-of-bounds write, write arbitrary files, cause the service to crash or execute arbitrary code.
Successful exploitation of the vulnerability may result in system compromise.
Install update from vendor's website.
Vulnerable software versionslibxslt (Alpine package): 1.1.29-r0
CPE2.3 External linkshttps://git.alpinelinux.org/aports/commit/?id=36f4bd78050ec6ce2ad65444031df6c1f3db5cc9
https://git.alpinelinux.org/aports/commit/?id=15d065f8bf5e73b1d88ca046d99933d217781aab
https://git.alpinelinux.org/aports/commit/?id=4281a184d7a2aab9a0f2352a418084cad73ee2dc
https://git.alpinelinux.org/aports/commit/?id=5f61e0e106315c69b9cec8e394286e8cf98c99e2
https://git.alpinelinux.org/aports/commit/?id=8b51ccff6e6b617759f391802b960f04ef4adf46
https://git.alpinelinux.org/aports/commit/?id=e0bf68014c8449196d77264ba2cc6a040051be9a
https://git.alpinelinux.org/aports/commit/?id=ecdefec10d847455761ae972a8fe2d7553a3b223
https://git.alpinelinux.org/aports/commit/?id=350f2ab57a98bbb9c39fab9a6cf93d24efe3e60c
https://git.alpinelinux.org/aports/commit/?id=323cb3db2be1984e7d72ad588793c3c876911d93
https://git.alpinelinux.org/aports/commit/?id=3d0d39b746da41860bae7ee73adc0905db8f15a1
https://git.alpinelinux.org/aports/commit/?id=cc932aa50f5b86563e283c3be8ce3160de5d4698
https://git.alpinelinux.org/aports/commit/?id=781d2272fd8b4eb9118c5fdf4f72495fa6dbe2d9
https://git.alpinelinux.org/aports/commit/?id=d2c16a8beb2a6f6db026a7cd340686d8a469158f
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
