Encoding validation missing in xmltok_impl.c #290

New Issue

Open

opened 2025-12-15 05:27:06 +00:00 by Mrcopytuo · 0 comments

Mrcopytuo commented 2025-12-15 05:27:06 +00:00

Copy Link

In the file contrib/sdk/sources/expat/lib/xmltok_impl.c of the KolibriOS SDK copy of libexpat, I observed that certain UTF-8 encoding sequences are not sufficiently validated before processing.
This corresponds to the security vulnerability CVE-2022-25235, which describes that in Expat(before version 2.4.5) xmltok_impl.c “lacks certain validation of encoding. Because KolibriOS includes its own copy of libexpat in the SDK, this missing validation could allow maliciously crafted XML input to be parsed incorrectly, potentially leading to memory corruption or code execution.

In the file contrib/sdk/sources/expat/lib/xmltok_impl.c of the KolibriOS SDK copy of libexpat, I observed that certain UTF-8 encoding sequences are not sufficiently validated before processing. This corresponds to the security vulnerability [CVE-2022-25235](https://nvd.nist.gov/vuln/detail/cve-2022-25235), which describes that in Expat(before version 2.4.5) xmltok_impl.c “lacks certain validation of encoding. Because KolibriOS includes its own copy of libexpat in the SDK, this missing validation could allow maliciously crafted XML input to be parsed incorrectly, potentially leading to memory corruption or code execution.

Mrcopytuo referenced this issue 2025-12-15 05:33:10 +00:00

Add missing UTF-8 encoding validation #291

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

reshare-tweak

rewrite-piano

add-license-file-header-to-guide

blocks-add-models

shell-improve-cpuid

rewrite_ide_drv

refactor/links

add_usbother

webview-3.91

qrcodegen

ci/update

floppybird-window-fix

laser-tank-fix-win-height

improvement/commit-and-branch-styles

docs/libs

0.7.7.0

0.7.5.0

0.7.0.0

0.6.5.0

0.6.3.0

0.6.0.0

0.5.3.0

0.5.2.1

Labels

Clear labels

C

Category/Applications

Category/Drivers

Category/General

Category/Kernel

Category/Libraries

Eolite

FASM

FS

GSoC

This issue in GSoC program

HardwareTested

HLL

Influence/Settings

Influence/Text/TYPO

IRCC

Kernel

Kind

Breaking

Breaking change that won't be backward compatible

Kind

Bug

Something is not working

Kind

Build

Kind

Documentation

Documentation changes

Kind

Enhancement

Improve existing functionality

Kind

Feature

New functionality

Kind

Security

This is security issue

Kind

Testing

Issue or pull request related to testing

Pay for the code

Paid task

PR

Conflicts

PR conflicts with main

PR

Dependent

This PR is dependent on another PR

Priority

Critical

The priority is critical

Priority

High

The priority is high

Priority

Low

The priority is low

Priority

Medium

The priority is medium

PR

Ready to merge

Pull request is ready for merge

PR

Request changes

Changes requested in pull request

PR

Review required

Reviewed

Confirmed

Issue has been confirmed

Reviewed

Duplicate

This issue or pull request already exists

Reviewed

Invalid

Invalid issue

Reviewed

Won't Fix

This issue won't be fixed

Status

Abandoned

Somebody has started to work on this but abandoned work

Status

Blocked

Something is blocking this issue or pull request

Status

Need More Info

Feedback is required to reproduce issue or to continue work

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

ace-dent Burer Doczom dunkaist IgorA Leency mxlgv ramenu rgimad sdongles Sweetbread

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: KolibriOS/kolibrios#290