Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-1?distro=trixie
purl pkg:deb/debian/libxml2@2.12.7%2Bdfsg%2Breally2.9.14-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-aasn-u7fd-8bhy Improper Restriction of Operations within the Bounds of a Memory Buffer Xmlsoft Libxml2 v2.11.0 was discovered to contain a global buffer overflow via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via supplying a crafted XML file. CVE-2023-39615
VCID-d68t-f8j1-h3am Use After Free When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free. CVE-2024-25062
VCID-drkd-yykc-ayge libxml2: Out-of-Bounds Read in libxml2 CVE-2025-32414
VCID-pdv9-xrh8-d3fz Use After Free This advisory has been marked as False Positive and removed. CVE-2023-45322
VCID-qp6y-dt1j-97df libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables CVE-2025-32415

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T12:27:57.887713+00:00 Debian Importer Fixing VCID-d68t-f8j1-h3am https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:49:09.002719+00:00 Debian Importer Fixing VCID-qp6y-dt1j-97df https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:59:46.223910+00:00 Debian Importer Fixing VCID-pdv9-xrh8-d3fz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:47:33.680425+00:00 Debian Importer Fixing VCID-drkd-yykc-ayge https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:41:50.192007+00:00 Debian Importer Fixing VCID-aasn-u7fd-8bhy https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:32:01.872601+00:00 Debian Importer Fixing VCID-d68t-f8j1-h3am https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:03:51.622167+00:00 Debian Importer Fixing VCID-qp6y-dt1j-97df https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:01:57.471454+00:00 Debian Importer Fixing VCID-pdv9-xrh8-d3fz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:54:26.287712+00:00 Debian Importer Fixing VCID-drkd-yykc-ayge https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:50:41.181444+00:00 Debian Importer Fixing VCID-aasn-u7fd-8bhy https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:30:08.569927+00:00 Debian Importer Fixing VCID-qp6y-dt1j-97df https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:30:08.502783+00:00 Debian Importer Fixing VCID-drkd-yykc-ayge https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:30:08.082228+00:00 Debian Importer Fixing VCID-d68t-f8j1-h3am https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:30:08.016534+00:00 Debian Importer Fixing VCID-pdv9-xrh8-d3fz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:30:07.950130+00:00 Debian Importer Fixing VCID-aasn-u7fd-8bhy https://security-tracker.debian.org/tracker/data/json 38.1.0