I keep getting an unclosed token error when I'm parsing the CVE XML database. The XML looks find to me and it seems to always error on the same line number even if the XML changes. It seems like it is not reading all of the data in the file.
Here is the error
[root@localhost cve_code]# perl cve_parse.pl
unclosed token at line 512955, column 0, byte 30326756: <desc>Buffer overflow in OpenBase 10.0.5 and earlier might allow remote authenticated users to execute arbitrary code or cause a denial of service (daemon crash) by creating a stored procedure with a long name and invoking this procedure, which triggers heap corruption.</desc> <refs> <ref source="MISC" url="http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt">http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt</ref> <ref source="BID" url="http: ^ at /usr/lib/perl5/vendor_perl/5.8.8/i386-linux-thread-multi/XML/Parser.pm line 187
and here is the full XML where it errors.
<item type="CAN" name="CVE-2007-5929" seq="2007-5929"> <status>Candidate</status> <phase date="20071109">Assigned</phase> <desc>Buffer overflow in OpenBase 10.0.5 and earlier might allow remote authenticated users to execute arbitrary code or cause a denial of service (daemon crash) by creating a stored procedure with a long name and invoking this procedure, which triggers heap corruption.</desc> <refs> <ref source="MISC" url="http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt">http://www.netragard.com/pdfs/research/NETRAGARD-20070313-OPENBASE.txt</ref> <ref source="BID" url="http://www.securityfocus.com/bid/26347">26347</ref> <ref source="SECUNIA" url="http://secunia.com/advisories/27525">27525</ref> <ref source="XF" url="http://xforce.iss.net/xforce/xfdb/38289">openbasesql-stored-procedures-bo(38289)</ref> </refs> <votes> </votes> <comments> </comments> </item>