CVE-2022-25315

nvd nist

Published: Feb 18, 2022Modified: May 5, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.

Affected (9)

Products: Libexpat Project: Libexpat · Debian: Debian Linux · Fedoraproject: Fedora · +2 more

Show all products

Libexpat Project: Libexpat · Debian: Debian Linux · Fedoraproject: Fedora · Oracle: Http Server, Zfs Storage Appliance Kit · Siemens: Sinema Remote Connect Server

1 product

1 product

1 product

2 products

Zfs Storage Appliance Kit

Siemens

1 product

Sinema Remote Connect Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Libexpat Project Libexpat	Before 2.4.5

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Debian Debian Linux	Version 11.0

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 34
Fedoraproject Fedora	Version 35

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Oracle Http Server	Version 12.2.1.3.0
Oracle Http Server	Version 12.2.1.4.0
Oracle Zfs Storage Appliance Kit	Version 8.8

Configuration E

1 vulnerable

Vulnerable Software	Affected Versions
Siemens Sinema Remote Connect Server	Before 3.1

Related CWEs

CWE-190

Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (20)

http://www.openwall.com/lists/oss-security/2022/02/19/1

Source: cve@mitre.org

Mailing ListThird Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-484086.pdf

Source: cve@mitre.org

Third Party Advisory

https://github.com/libexpat/libexpat/pull/559

Source: cve@mitre.org

ExploitThird Party Advisory

https://lists.debian.org/debian-lts-announce/2022/03/msg00007.html

Source: cve@mitre.org

Third Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3UFRBA3UQVIQKXTBUQXDWQOVWNBKLERU/

Source: cve@mitre.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y27XO3JMKAOMQZVPS3B4MJGEAHCZF5OM/

Source: cve@mitre.org

https://security.gentoo.org/glsa/202209-24

Source: cve@mitre.org

Third Party Advisory

https://security.netapp.com/advisory/ntap-20220303-0008/

Source: cve@mitre.org

Third Party Advisory

https://www.debian.org/security/2022/dsa-5085

Source: cve@mitre.org

Third Party Advisory

https://www.oracle.com/security-alerts/cpuapr2022.html

Source: cve@mitre.org

PatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2022/02/19/1