Upstream has issued an advisory on March 19: http://xerces.apache.org/xerces-c/secadv/CVE-2015-0252.txt The issue is fixed upstream in 3.1.2. Mageia 4 and Mageia 5 are affected. Reproducible: Steps to Reproduce:
CC: (none) => geiger.david68210, pterjanWhiteboard: (none) => MGA5TOO, MGA4TOO
Fixed on svn for Cauldron with new fixes 3.1.2 release and freeze_push requested and also fixed for mga4. packages awaiting upload.
shibboleth-sp is one of the applications affected by this. See Bug 15556 for more information.
URL: (none) => http://lwn.net/Vulnerabilities/637571/
Debian has issued an advisory for this on March 20: https://www.debian.org/security/2015/dsa-3199
xerces-c-3.1.2-1.mga5 uploaded for Cauldron.
Version: Cauldron => 4Whiteboard: MGA5TOO, MGA4TOO => (none)
Updated package uploaded for Mageia 4. Advisory: ======================== Updated xerces-c packages fix security vulnerability: Anton Rager and Jonathan Brossard from the Salesforce.com Product Security Team and Ben Laurie of Google discovered a denial of service vulnerability in xerces-c. The parser mishandles certain kinds of malformed input documents, resulting in a segmentation fault during a parse operation. An unauthenticated attacker could use this flaw to cause an application using the xerces-c library to crash (CVE-2015-0252). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0252 http://xerces.apache.org/xerces-c/secadv/CVE-2015-0252.txt https://www.debian.org/security/2015/dsa-3199 ======================== Updated packages in core/updates_testing: ======================== xerces-c-3.1.2-1.mga4 libxerces-c3.1-3.1.2-1.mga4 libxerces-c-devel-3.1.2-1.mga4 xerces-c-doc-3.1.2-1.mga4 from xerces-c-3.1.2-1.mga4.src.rpm
Assignee: dmorganec => qa-bugs
No PoC. Some possible scripts for testing here: http://www.yolinux.com/TUTORIALS/XML-Xerces-C.html
Easy way to test.. $ urpmq --whatrequires lib64xerces-c3.1 apache-mod_shib enigma lib64cegui0.7.7 lib64digidocpp0 lib64flightcrew0.7.2 lib64gdal1 lib64kolabxml0 lib64opensaml8 lib64shibboleth-sp6 lib64xerces-c-devel lib64xerces-c3.1 lib64xmltooling6 megaglest megaglest opensaml-bin shibboleth-sp sigil xerces-c xml-security-c xsd Testing with enigma and megaglest which are both games and sigil which is an epub ebook editor..
Whiteboard: (none) => has_procedure
Testing complete mga4 64 Tested the two games and also compiled and ran the example from the link (with the -devel package installed)
Whiteboard: has_procedure => has_procedure mga4-64-ok
validating. advisory uploaded.
Keywords: (none) => validated_updateWhiteboard: has_procedure mga4-64-ok => has_procedure mga4-64-ok advisoryCC: (none) => sysadmin-bugs
An update for this issue has been pushed to Mageia Updates repository. http://advisories.mageia.org/MGASA-2015-0136.html
Status: NEW => RESOLVEDResolution: (none) => FIXED