-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CVE-2018-1311: Apache Xerces-C use-after-free vulnerability processing external DTD

Severity: High

Vendor: The Apache Software Foundation

Versions Affected: Apache Xerces-C XML Parser library < 3.2.5

Description: The Xerces-C XML parser contains a use-after-free error
triggered during the scanning of external DTDs.

The bug allows for a denial of service attack in applications that allow
external DTD processing and do not prevent external DTD usage, and could
conceivably result in remote code execution if the heap were groomed.

Mitigation: This flaw has not been addressed in the maintained version
of the library and has no current mitigation other than to disable DTD
processing. This can be accomplished via the DOM using a standard parser
feature, or via SAX using the XERCES_DISABLE_DTD environment variable.

Applications should strongly consider blocking remote entity resolution
and/or disabling of DTD processing in light of the continued
identification of bugs in this area of the library.

Credit: This issue was reported by the UK's National Cyber Security
Centre (NCSC).

References:
http://xerces.apache.org/xerces-c/secadv/CVE-2018-1311.txt

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE3KoVAHvtneaQzZUjN4uEVAIneWIFAmRJjVUACgkQN4uEVAIn
eWJStA//aPn5uED9W8Z2ISZszq6eRtdkLIenP1ZalELW8v90bNiwLjZeXiO5vnWI
OFO/DSgSrem6zHRU2bIOYg8qZeFPc0i/1vtXo0u1qbi84qW9adWi9TVoNUH0xRys
9NY4I4nVTwQzK1gNCMGR77IC2xj6T/bUsGhfvy7Urp0Y75PWOT+MiM51ibcIb9Kh
wtuYsfrt14BVYB/GMbg2gMRMVO60ErSHXJ0w6ilwlNrtzXPOvx5HcHAayWGNWzEH
wqzGPhj866ZlynQzrCkWZ7vDtC+5fY2g0RQ9anALNYQaW/s+jDsLwlyHk+30xMR4
MKeC8XAI6uftG3/2+pUBiadv9rz+oVAMPnRvlF+A6T0yGdUiXAwchhgWPbK6Efvp
K7lrrLZsZ62BYRAN+gkM8RBieLnB4e7kzRXnfJ9IYfg+HYVxXVtu9KuZH6TkMaT2
bOweetaDEDO2JBsoeHBGzqmHaOWFzroo24zA++g4OOxYUNk44s/DoP53oTNg+ehk
sPmb6j1LSM/VbGrLYXWlW05zGwvpVzt8bfKCwUgY8RXVPQG8WrIgZi0R98Fv8jxN
qBxvKSDkUKX0TZuypgMRAxTlVPcuhsOBwfw91IdUa89N4AvXuBGYk8Z2sokFuYWz
nBB/rqD22XR0asMY6r3hVdh20jSjXJFI8Vk3x4QvRTcZhHfnT+I=
=lxZw
-----END PGP SIGNATURE-----
