HIGH 7.5

GHSA-6qvp-r6r3-9p7h

Nokogiri NULL Pointer Dereference

Details

A NULL pointer dereference vulnerability exists in the `xpath.c:xmlXPathCompOpEval()` function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the `XPATH_OP_AND` or `XPATH_OP_OR` case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.

Are you affected?

Enter the version of the package you're using.

Affected packages

RubyGems / nokogiri

Introduced in: 0 Fixed in: 1.8.5

Fix bundle update nokogiri

References

https://nvd.nist.gov/vuln/detail/CVE-2018-14404 [ADVISORY]
https://github.com/sparklemotion/nokogiri/issues/1785 [WEB]
https://access.redhat.com/errata/RHSA-2019:1543 [WEB]
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901817 [WEB]
https://bugzilla.redhat.com/show_bug.cgi?id=1595985 [WEB]
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/nokogiri/CVE-2018-14404.yml [WEB]
https://gitlab.gnome.org/GNOME/libxml2/issues/10 [WEB]
https://lists.debian.org/debian-lts-announce/2018/09/msg00035.html [WEB]
https://lists.debian.org/debian-lts-announce/2020/09/msg00009.html [WEB]
https://security.netapp.com/advisory/ntap-20190719-0002 [WEB]
https://usn.ubuntu.com/3739-1 [WEB]
https://usn.ubuntu.com/3739-2 [WEB]