About - K19473898: Expat vulnerabilities CVE-2022-23852, CVE-2022-25235, CVE-2022-25236

Question

Hi Experts ,&nbsp;We have BigIP -LTM and ASM module . But how do I determine if we re using Expat Library ?Can someone please help me .&nbsp;&nbsp;&nbsp;Security Advisory DescriptionCVE-2022-23852Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.CVE-2022-25235xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.CVE-2022-25236xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.CVE-2022-25315In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.ImpactA remote attacker could send specially crafted XML which, when parsed by an application using the Expat library, would result in a buffer over-read and cause the application to stop responding.

jeffrey_granier · Answer

Hello,
If your running an TMOS code version thats impacted then it contains those Expat libraries:
&nbsp;

&nbsp;

Forum Discussion

About - K19473898: Expat vulnerabilities CVE-2022-23852, CVE-2022-25235, CVE-2022-25236

Security Advisory Description

1 Reply

Recent Discussions

F5Access | MacOS Sonoma

Active- Active HA setup

syslog server connection

Cannot see floating MAC address outside of ESXi

Rewrite uri translation not working

Related Content

Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server

OWASP Automated Threats - OAT-014 Vulnerability Scanning

Vulnerability CVE-2023-45648 in ApacheTomcat

Re: Mitigation of OWASP API6: 2019 Mass Assignment vulnerability using F5 Distributed Cloud Platform

Reviewing vulnerability scanner results for an APM protected Virtual Server - part two