=====================================================================

                             CERT-Renater

                 Note d'Information No. 2021/VULN489
_____________________________________________________________________

DATE                : 17/09/2021

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Apache Santuario versions prior to
                                       2.2.3, 2.1.7.

=====================================================================
https://santuario.apache.org/secadv.data/CVE-2021-40690.txt.asc
_____________________________________________________________________

Bypass of the secureValidation property (CVE-2021-40690)


PRODUCT AFFECTED:

This issue affects Apache Santuario XML Security for Java.


PROBLEM:

All versions of Apache Santuario - XML Security for Java prior to 2.2.3
and 2.1.7 are vulnerable to an issue where the "secureValidation"
property is not passed correctly when creating a KeyInfo from a
KeyInfoReference element. This allows an attacker to abuse an XPath
Transform to extract any local .xml files in a RetrievalMethod element.


This issue has been assigned CVE-2021-40690.


ACKNOWLEDGEMENTS:

An Trinh, Calif.

=========================================================
+ CERT-RENATER       |    tel : 01-53-94-20-44          +
+ 23/25 Rue Daviel   |    fax : 01-53-94-20-41          +
+ 75013 Paris        |    email:cert@support.renater.fr +
=========================================================