Bug#1014389: mapcache: CVE-2022-30045 incorrect memory handling leading to a heap out-of-bounds read

Sebastiaan Couwenberg Tue, 05 Jul 2022 03:03:16 -0700

On 7/5/22 11:14, Neil Williams wrote:

CVE-2022-30045[0]:
| An issue was discovered in libezxml.a in ezXML 0.8.6. The function
| ezxml_decode() performs incorrect memory handling while parsing
| crafted XML files, leading to a heap out-of-bounds read.


How is this different from #989363?

It's another ezxml bug that needs to be fixed by updating the embeddedcopy of switching to something else.


I'm tempted to merge these two issues.

Kind Regards,

Bas

--
 GPG Key ID: 4096R/6750F10AE88D4AF1
Fingerprint: 8182 DE41 7056 408D 6146  50D1 6750 F10A E88D 4AF1

Bug#1014389: mapcache: CVE-2022-30045 incorrect memory handling leading to a heap out-of-bounds read

Reply via email to