https://bugzilla.redhat.com/show_bug.cgi?id=1709860 Bug ID: 1709860 Summary: CVE-2019-5427 c3p0: loading XML configuration leads to denial of service Product: Security Response Hardware: All OS: Linux Status: NEW Whiteboard: impact=moderate,public=20190417,reported=20190424,sour ce=cve,cvss3=7.5/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/ I:N/A:H,cwe=CWE-776,fedora-all/c3p0=affected,epel-7/c3 p0=affected,rhes-3/c3p0=new,rhpam-7/c3p0=new,fuse-6/c3 p0=new,fuse-7/c3p0=new,rhn_satellite_6/c3p0=new,jbews- 2/c3p0=new,rhn_satellite_5/c3p0=new,rhmap-4/c3p0=new,v ertx-3/c3p0=new,soap-5/c3p0=new,bpms-6/c3p0=new Component: vulnerability Keywords: Security Severity: medium Priority: medium Assignee: security-response-team(a)redhat.com Reporter: msiddiqu(a)redhat.com CC: aileenc(a)redhat.com, akoufoud(a)redhat.com, alazarot(a)redhat.com, almorale(a)redhat.com, anstephe(a)redhat.com, avibelli(a)redhat.com, bbuckingham(a)redhat.com, bcourt(a)redhat.com, bgeorges(a)redhat.com, bkearney(a)redhat.com, btotty(a)redhat.com, cbyrne(a)redhat.com, chazlett(a)redhat.com, cmacedo(a)redhat.com, csutherl(a)redhat.com, decathorpe(a)gmail.com, dffrench(a)redhat.com, dingyichen(a)gmail.com, drusso(a)redhat.com, etirelli(a)redhat.com, ggainey(a)redhat.com, gvarsami(a)redhat.com, gzaronik(a)redhat.com, hhudgeon(a)redhat.com, ibek(a)redhat.com, janstey(a)redhat.com, java-sig-commits(a)lists.fedoraproject.org, jbalunas(a)redhat.com, jclere(a)redhat.com, jcoleman(a)redhat.com, jmadigan(a)redhat.com, jochrist(a)redhat.com, jpallich(a)redhat.com, jshepherd(a)redhat.com, kconner(a)redhat.com, krathod(a)redhat.com, kverlaen(a)redhat.com, ldimaggi(a)redhat.com, lef(a)fedoraproject.org, lgao(a)redhat.com, lpetrovi(a)redhat.com, lthon(a)redhat.com, mat.booth(a)redhat.com, mbabacek(a)redhat.com, mmccune(a)redhat.com, mnovotny(a)redhat.com, mszynkie(a)redhat.com, myarboro(a)redhat.com, ngough(a)redhat.com, nwallace(a)redhat.com, paradhya(a)redhat.com, pgallagh(a)redhat.com, ppenicka(a)redhat.com, pwright(a)redhat.com, rchan(a)redhat.com, rjerrido(a)redhat.com, rrajasek(a)redhat.com, rruss(a)redhat.com, rsynek(a)redhat.com, rwagner(a)redhat.com, sdaley(a)redhat.com, sisharma(a)redhat.com, smohan(a)redhat.com, ssaha(a)redhat.com, stewardship-sig(a)lists.fedoraproject.org, tcunning(a)redhat.com, tkirby(a)redhat.com, tlestach(a)redhat.com, trepel(a)redhat.com, trogers(a)redhat.com, twalsh(a)redhat.com, vbellur(a)redhat.com, weli(a)redhat.com Target Milestone: --- Classification: Other c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration. References: https://hackerone.com/reports/509315 http://www.cvedetails.com/cve/CVE-2019-5427/ Upstream commit: https://github.com/swaldman/c3p0/commit/f38f27635c384806c2a9d6500d80183d9... -- You are receiving this mail because: You are on the CC list for the bug.