CVE-2021-26222

Name	CVE-2021-26222
Description	The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs	989360, 989361, 989363, 989364

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
mapcache (PTS)	buster	1.6.1-3	vulnerable
	bullseye	1.10.0-2	vulnerable
	bookworm	1.14.0-1	vulnerable
	trixie	1.14.0-2	vulnerable
	sid	1.14.0-4	vulnerable
netcdf (PTS)	buster	1:4.6.2-1	vulnerable
	bullseye	1:4.7.4-1	vulnerable
	bookworm	1:4.9.0-3	fixed
	trixie	1:4.9.2-4	fixed
	sid	1:4.9.2-5	fixed
netcdf-parallel (PTS)	buster	1:4.6.2-1	vulnerable
	bullseye	1:4.7.4-1	vulnerable
	bookworm, sid, trixie	1:4.9.0-1	fixed
scilab (PTS)	buster	6.0.1-10+deb10u1	vulnerable
	bullseye	6.1.0+dfsg1-7	vulnerable
	bookworm	6.1.1+dfsg2-6	vulnerable
	trixie	2024.0.0+dfsg-5	vulnerable
	sid	2024.0.0+dfsg-6	vulnerable

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Debian Bugs
mapcache	source	(unstable)	(unfixed)	unimportant	989363
netcdf	source	stretch	(not affected)
netcdf	source	(unstable)	1:4.9.0-1		989360
netcdf-parallel	source	(unstable)	1:4.9.0-1		989361
scilab	source	(unstable)	(unfixed)	unimportant	989364

Notes

[bullseye] - netcdf <ignored> (Minor issue)
[buster] - netcdf <ignored> (Minor issue)
[stretch] - netcdf <not-affected> (vulnerable code not present)
[bullseye] - netcdf-parallel <ignored> (Minor issue)
[buster] - netcdf-parallel <ignored> (Minor issue)
https://sourceforge.net/p/ezxml/bugs/22/
mapcache only uses ezxml to parse config files which are trusted