CVE-2015-5523 — MEDIUM (4.3)

Q: How severe is CVE-2015-5523?

CVE-2015-5523 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2015-5523?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Apple Iphone Os, Apple Mac Os X, Apple Watchos.

Vulnerability Description

The ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving multiple whitespace characters before an empty href, which triggers a large memory allocation.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Canonical	Ubuntu Linux	12.04
Debian	Debian Linux	7.0
Apple	Iphone Os	<= 8.2
Apple	Mac Os X	<= 10.6.8
Apple	Watchos	<= 1.0.1
Htacg	Tidy	<= 4.9.30

Related Weaknesses (CWE)

CWE-119

References

http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.htmlMailing ListThird Party Advisory
http://lists.apple.com/archives/security-announce/2015/Sep/msg00005.htmlMailing ListThird Party Advisory
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlMailing ListThird Party Advisory
http://www.debian.org/security/2015/dsa-3309Third Party Advisory
http://www.openwall.com/lists/oss-security/2015/06/04/2Exploit
http://www.openwall.com/lists/oss-security/2015/07/13/7Exploit
http://www.openwall.com/lists/oss-security/2015/07/15/3
http://www.securityfocus.com/bid/75037
http://www.securitytracker.com/id/1033703
http://www.ubuntu.com/usn/USN-2695-1Third Party Advisory
https://github.com/htacg/tidy-html5/issues/217#issuecomment-108565501Exploit
https://support.apple.com/HT205212Third Party Advisory
https://support.apple.com/HT205213Third Party Advisory
https://support.apple.com/HT205267Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.htmlMailing ListThird Party Advisory

FAQ

What is CVE-2015-5523?

CVE-2015-5523 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving multiple whitespace characters before an empty href, which t...

How severe is CVE-2015-5523?

CVE-2015-5523 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2015-5523?

Check the references section above for vendor advisories and patch information. Affected products include: Canonical Ubuntu Linux, Debian Debian Linux, Apple Iphone Os, Apple Mac Os X, Apple Watchos.