oss-sec mailing list archives
CVE request: "billion laughs" attack against Apache APR
From: Joe Orton <jorton () redhat com>
Date: Wed, 3 Jun 2009 16:07:43 +0100
Hi, could a CVE name be allocated for this issue: The expat XML parser is vulnerable to the "billion laughs" entity expansion attack. This results in a denial of service vulnerability in any network-facing service which uses the Apache "APR-util" library's wrapper interface for expat to parse untrusted XML documents. The Apache httpd WebDAV module "mod_dav" is such a service. References: http://milw0rm.com/exploits/8842 http://marc.info/?l=apr-dev&m=124396021826125&w=2 http://svn.apache.org/viewvc?rev=781403&view=rev Affected versions: APR-util <= 1.3.4
Current thread:
- CVE request: "billion laughs" attack against Apache APR Joe Orton (Jun 03)
- Re: CVE request: "billion laughs" attack against Apache APR Eygene Ryabinkin (Jun 06)
- Re: CVE request: "billion laughs" attack against Apache APR Joe Orton (Jun 11)
- Re: CVE request: "billion laughs" attack against Apache APR Steven M. Christey (Jun 06)
- Re: CVE request: "billion laughs" attack against Apache APR Eygene Ryabinkin (Jun 06)