9.4 CRITICAL
- CVSS version (CVSS): 4.0
- Attack Vector (AV): Local (L)
- Attack Complexity (AC): Low (L)
- Attack Requirement (AT): None (N)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Vulnerable System Impact Confidentiality (VC): High (H)
- Vulnerable System Impact Integrity (VI): High (H)
- Vulnerable System Impact Availability (VA): High (H)
- Subsequent System Impact Confidentiality (SC): High (H)
- Subsequent System Impact Integrity (SI): High (H)
- Subsequent System Impact Availability (SA): High (H)
- Modified Attack Vector (MAV): Local (L)
- Modified Attack Complexity (MAC): Low (L)
- Modified Attack Requirement (MAT): None (N)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Vulnerable System Impact Confidentiality (MVC): High (H)
- Modified Vulnerable System Impact Integrity (MVI): High (H)
- Modified Vulnerable System Impact Availability (MVA): High (H)
- Modified Subsequent System Impact Confidentiality (MSC): High (H)
- Modified Subsequent System Impact Integrity (MSI): High (H)
- Modified Subsequent System Impact Availability (MSA): High (H)
- Safety (S): Not Defined (X)
- Automatable (AU): Not Defined (X)
- Recovery (R): Not Defined (X)
- Value Density (V): Not Defined (X)
- Vulnerability Response Effort (RE): Not Defined (X)
- Provider Urgency (U): Not Defined (X)
- Confidentiality Req. (CR): Not Defined (X)
- Integrity Req. (IR): Not Defined (X)
- Availability Req. (AR): Not Defined (X)
- Exploit Maturity (E): Not Defined (X)
Activity log
- Created suggestion
XAPI UTF-8 string handling
There are multiple issues. 1. Updates to the XAPI database sanitise input strings, but try generating the notification using the unsanitised input. This causes the database's event thread to terminate and cease further processing. 2. XAPI's UTF-8 encoder implements v3.0 of the Unicode spec, but XAPI uses libraries which conform to the stricter v3.1 of the Unicode spec. This causes some strings to be accepted as valid UTF-8 by XAPI, but rejected by other libraries in use. Notably, such strings can be entered into the database, after which the database can no longer be loaded. 3. There is no input sanitisation for Map/Set updates on objects in the XAPI database.
References
Affected products
- ==all
Matching in nixpkgs
pkgs.xapian
Search engine library
pkgs.xapian_1_4
Search engine library
pkgs.xapian-omega
Indexer and CGI search front-end built on Xapian library
pkgs.perlPackages.Xapian
Bindings allowing Xapian to be used from Perl
pkgs.perl5Packages.Xapian
Bindings allowing Xapian to be used from Perl
pkgs.python313Packages.xapian
Python Bindings for Xapian
pkgs.python314Packages.xapian
Python Bindings for Xapian
pkgs.python313Packages.plexapi
Python bindings for the Plex API
pkgs.python313Packages.pyixapi
Python API client library for IX-API
pkgs.python313Packages.xboxapi
Python XBOX One API wrapper
pkgs.python314Packages.plexapi
Python bindings for the Plex API
pkgs.python314Packages.pyixapi
Python API client library for IX-API
Package maintainers
-
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
-
@matthiasbeyer Matthias Beyer <mail@beyermatthias.de>