An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxmlinternaldtd() performs incorrect memory handling while parsing crafted XML files, which leads to an out-of-bounds write of a one byte constant.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-cli" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-data" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-doc" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-doc-fr" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-doc-ja" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-doc-pt-br" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-full-bin" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-full-bin-dbg" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-full-bin-dbgsym" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-include" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-include-dbgsym" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-minimal-bin" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-minimal-bin-dbg" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-minimal-bin-dbgsym" }, { "binary_version": "5.5.2-2ubuntu3+esm1", "binary_name": "scilab-test" } ] }