CVE-2019-15903
HIGHCVSS 7.5/10EPSS 6.64%
Last modified
CVE-2019-15903 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.. EPSS estimates a 6.64% chance of exploitation in the next 30 days.
Description
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Libexpat Project | Libexpat | < 2.2.8 |
| Python | Python | >= 2.7.0, < 2.7.17 |
| Python | Python | >= 3.5.0, < 3.5.8 |
| Python | Python | >= 3.6.0, < 3.6.10 |
| Python | Python | >= 3.7.0, < 3.7.5 |
References
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.htmlThird Party Advisory, VDB Entry
- http://seclists.org/fulldisclosure/2019/Dec/23Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/26Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/27Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/30Mailing List, Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3210Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3237Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3756Third Party Advisory
- https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43Patch, Third Party Advisory
- https://github.com/libexpat/libexpat/issues/317Exploit, Issue Tracking, Third Party Advisory
- https://github.com/libexpat/libexpat/issues/342Third Party Advisory
- https://github.com/libexpat/libexpat/pull/318Issue Tracking, Patch, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2019/11/msg00006.htmlMailing List, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2019/11/msg00017.htmlMailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/17Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/21Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/23Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Nov/1Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Nov/24Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Oct/29Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Sep/30Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Sep/37Mailing List, Third Party Advisory
- https://security.gentoo.org/glsa/201911-08Third Party Advisory
- https://security.netapp.com/advisory/ntap-20190926-0004/Third Party Advisory
- https://support.apple.com/kb/HT210785Third Party Advisory
- https://support.apple.com/kb/HT210788Third Party Advisory
- https://support.apple.com/kb/HT210789Third Party Advisory
- https://support.apple.com/kb/HT210790Third Party Advisory
- https://support.apple.com/kb/HT210793Third Party Advisory
- https://support.apple.com/kb/HT210794Third Party Advisory
- https://support.apple.com/kb/HT210795Third Party Advisory
- https://usn.ubuntu.com/4132-1/Third Party Advisory
- https://usn.ubuntu.com/4132-2/Third Party Advisory
- https://usn.ubuntu.com/4165-1/Third Party Advisory
- https://usn.ubuntu.com/4202-1/Third Party Advisory
- https://usn.ubuntu.com/4335-1/Third Party Advisory
- https://www.debian.org/security/2019/dsa-4530Third Party Advisory
- https://www.debian.org/security/2019/dsa-4549Third Party Advisory
- https://www.debian.org/security/2019/dsa-4571Third Party Advisory
- https://www.oracle.com/security-alerts/cpuapr2020.htmlThird Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlThird Party Advisory
- https://www.tenable.com/security/tns-2021-11Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00080.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00081.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00000.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00013.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00016.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00017.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00018.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00019.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154927/Slackware-Security-Advisory-python-Updates.htmlThird Party Advisory, VDB Entry
- http://packetstormsecurity.com/files/154947/Slackware-Security-Advisory-mozilla-firefox-Updates.htmlThird Party Advisory, VDB Entry
- http://seclists.org/fulldisclosure/2019/Dec/23Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/26Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/27Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2019/Dec/30Mailing List, Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3210Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3237Third Party Advisory
- https://access.redhat.com/errata/RHSA-2019:3756Third Party Advisory
- https://github.com/libexpat/libexpat/commit/c20b758c332d9a13afbbb276d30db1d183a85d43Patch, Third Party Advisory
- https://github.com/libexpat/libexpat/issues/317Exploit, Issue Tracking, Third Party Advisory
- https://github.com/libexpat/libexpat/issues/342Third Party Advisory
- https://github.com/libexpat/libexpat/pull/318Issue Tracking, Patch, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2019/11/msg00006.htmlMailing List, Third Party Advisory
- https://lists.debian.org/debian-lts-announce/2019/11/msg00017.htmlMailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/17Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/21Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Dec/23Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Nov/1Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Nov/24Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Oct/29Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Sep/30Mailing List, Third Party Advisory
- https://seclists.org/bugtraq/2019/Sep/37Mailing List, Third Party Advisory
- https://security.gentoo.org/glsa/201911-08Third Party Advisory
- https://security.netapp.com/advisory/ntap-20190926-0004/Third Party Advisory
- https://support.apple.com/kb/HT210785Third Party Advisory
- https://support.apple.com/kb/HT210788Third Party Advisory
- https://support.apple.com/kb/HT210789Third Party Advisory
- https://support.apple.com/kb/HT210790Third Party Advisory
- https://support.apple.com/kb/HT210793Third Party Advisory
- https://support.apple.com/kb/HT210794Third Party Advisory
- https://support.apple.com/kb/HT210795Third Party Advisory
- https://usn.ubuntu.com/4132-1/Third Party Advisory
- https://usn.ubuntu.com/4132-2/Third Party Advisory
- https://usn.ubuntu.com/4165-1/Third Party Advisory
- https://usn.ubuntu.com/4202-1/Third Party Advisory
- https://usn.ubuntu.com/4335-1/Third Party Advisory
- https://www.debian.org/security/2019/dsa-4530Third Party Advisory
- https://www.debian.org/security/2019/dsa-4549Third Party Advisory
- https://www.debian.org/security/2019/dsa-4571Third Party Advisory
- https://www.oracle.com/security-alerts/cpuapr2020.htmlThird Party Advisory
- https://www.oracle.com/security-alerts/cpuoct2020.htmlThird Party Advisory
- https://www.tenable.com/security/tns-2021-11Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-15903?
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.
How severe is CVE-2019-15903?
CVE-2019-15903 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 6.64% probability of exploitation in the next 30 days.
How do I fix CVE-2019-15903?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2019-15903?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST