VDB

GCVE-110-MAGEIA-2017-119

GCVE-110-MAGEIA-2017-119
Advisory Published
Vulnetix · Advisory published April 30, 2017
A vulnerability was found in XStream. Parsing a maliciously crafted file could cause the application to crash. The processed stream at unmarshalling type contains type information to recreate the formerly written objects. XStream creates therefore new instances based on these type information. The crash occurrs if this information advices XStream to create an instance of the primitive type 'void'. This situation can only happen if an attacker was able to manipulate the incoming data, since such an instance does not exist (rhbz#1441538).

Affected Products

VendorProductVersionsPlatforms
Mageiaxstream0 (affected), 0 (affected), 1.4.9-1.1.mga5 (unaffected), 1.4.9-1.1.mga5 (unaffected)
Mageiaget_iplayer3.07-1.mga6 (unaffected), 0 (affected)

Browse GCVE Records

73,442 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›