CVE-2018-14567
Description
libxml2 2.9.8 with LZMA support can enter an infinite loop via a crafted XML file triggering LZMA_MEMLIMIT_ERROR, enabling remote denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
libxml2 2.9.8 with LZMA support can enter an infinite loop via a crafted XML file triggering LZMA_MEMLIMIT_ERROR, enabling remote denial of service.
Vulnerability
libxml2 versions up to and including 2.9.8, when compiled with --with-lzma, contain an infinite loop vulnerability triggered by a crafted XML file that causes an LZMA_MEMLIMIT_ERROR during decompression. The bug is demonstrated with the xmllint utility and affects the library itself, not only the command-line tool. This issue is distinct from CVE-2015-8035 and CVE-2018-9251 [1].
Exploitation
An attacker requires no authentication or special network position; they only need to deliver a specially crafted XML file that, when processed by an application using libxml2's LZMA decompression path, causes an LZMA_MEMLIMIT_ERROR leading to an infinite loop. This can be achieved remotely by submitting a malicious XML document to a service that parses user-supplied XML, such as a web application or document parser [1].
Impact
Successful exploitation results in an infinite loop condition, causing the affected application or service to hang indefinitely. This constitutes a denial of service (DoS) as the resource becomes unresponsive, consuming CPU time until manually terminated. No code execution or data disclosure is associated with this vulnerability [1].
Mitigation
Ubuntu published security update USN-3739-1 on August 16, 2018, which upgrades libxml2 to version 2.9.8+dfsg2-5ubuntu1.2 for Ubuntu 18.04 LTS and corresponding versions for other releases [1]. Users should apply the update or rebuild libxml2 without --with-lzma as a workaround. The fix commit is available in the upstream repository [2]. No public KEV listing exists.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
10- Range: =2.9.8
- osv-coords9 versionspkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/libxml2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/python-libxml2&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/python-libxml2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/python-libxml2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/python-libxml2-python&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
< 2.9.4-46.15.1+ 8 more
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.7-3.3.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.4-46.15.1
- (no CPE)range: < 2.9.7-3.3.1
Patches
12240fbf59120Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
5- usn.ubuntu.com/3739-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.securityfocus.com/bid/105198mitrevdb-entryx_refsource_BID
- gitlab.gnome.org/GNOME/libxml2/commit/2240fbf5912054af025fb6e01e26375100275e74mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2018/09/msg00035.htmlmitremailing-listx_refsource_MLIST
- lists.debian.org/debian-lts-announce/2020/09/msg00009.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.