CVE-2013-2154

Name of the Vulnerable Software and Affected Versions Apache Santuario XML Security for C++ versions prior to 1.7.1

Description The issue is related to a stack-based buffer overflow in the XML Signature Reference functionality, specifically in the xsec/dsig/DSIGReference.cpp file. This allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via malformed XPointer expressions, likely related to the getURIBaseTXFM function.

Recommendations For versions prior to 1.7.1, update to version 1.7.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of the XML Signature Reference functionality until a patch is applied.