Nixpkgs security tracker

Untriaged

Permalink CVE-2026-5037

3.3 LOW

CVSS version: 3.1
Attack vector (AV):
Attack complexity (AC):
Privileges required (PR):
User interaction (UI):
Scope (S):
Confidentiality impact (C):
Integrity impact (I):
Availability impact (A):

created 2 weeks, 6 days ago

mxml mxmlIndexNew mxml-index.c index_sort stack-based overflow

A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr can lead to stack-based buffer overflow. The attack is restricted to local execution. The exploit has been publicly disclosed and may be utilized. This patch is called 6e27354466092a1ac65601e01ce6708710bb9fa5. A patch should be applied to remediate this issue.

References

VDB-353963 | mxml mxmlIndexNew mxml-index.c index_sort stack-based overflow vdb-entrytechnical-description
VDB-353963 | CTI Indicators (IOB, IOC, IOA) signaturepermissions-required
Submit #778638 | michaelrsweet mxml 4.0.4 Heap-based Buffer Overflow third-party-advisory
https://github.com/michaelrsweet/mxml/issues/350 issue-tracking
https://github.com/michaelrsweet/mxml/issues/350#issuecomment-4051317229 issue-tracking
https://github.com/user-attachments/files/25934383/1.xml exploit
https://github.com/michaelrsweet/mxml/commit/6e27354466092a1ac65601e01ce6708710… patch

Affected products

mxml

==4.0.3
==4.0.4
==4.0.2
==4.0.1
==4.0.0

Matching in nixpkgs

pkgs.minixml

Small XML library

nixos-unstable 3.3.1
- nixpkgs-unstable 3.3.1
- nixos-unstable-small 3.3.1
nixos-25.11 3.3.1
- nixos-25.11-small 3.3.1
- nixpkgs-25.11-darwin 3.3.1

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.minixml