VulnerableCode Package Details - pkg:deb/debian/expat@2.2.6-2%2Bdeb10u4

Search for packages

Package details: pkg:deb/debian/expat@2.2.6-2%2Bdeb10u4

Essentials
History (248)

purl	pkg:deb/debian/expat@2.2.6-2%2Bdeb10u4

Next non-vulnerable version	2.5.0-1+deb12u2
Latest non-vulnerable version	2.7.1-1
Risk	4.5

Vulnerabilities affecting this package (27)

Vulnerability	Summary	Fixed by
VCID-2esh-sm4z-aaag Aliases: CVE-2022-43680	In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-2gdb-x4eu-aaap Aliases: CVE-2022-25236	xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-6y74-4uqv-dka3 Aliases: CVE-2024-50602	An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.	2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u2 Affected by 0 other vulnerabilities. 2.6.3-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.6.4-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.7.1-1 Affected by 0 other vulnerabilities.
VCID-7tx1-vzak-aaaj Aliases: CVE-2022-22822	addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-8e29-n224-fqdm Aliases: CVE-2024-45492	An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an integer overflow for m_groupSize on 32-bit platforms (where UINT_MAX equals SIZE_MAX).	2.5.0-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-a2tw-zeqx-aaam Aliases: CVE-2022-22826	nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-a7ry-4dn3-aaan Aliases: CVE-2023-52426	libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time.	2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u2 Affected by 0 other vulnerabilities. 2.6.2-1 Affected by 0 other vulnerabilities. 2.6.3-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.6.4-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-bmaw-jhc8-aaar Aliases: CVE-2022-25313	In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-bmun-mv6e-aaar Aliases: CVE-2023-52425	libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u2 Affected by 0 other vulnerabilities. 2.6.2-1 Affected by 0 other vulnerabilities. 2.6.3-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.6.4-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-dd5k-98hq-aaan Aliases: DSA-5085-2 expat	regression update	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-e4rm-mp7j-aaaa Aliases: CVE-2021-46143	In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f8y2-ehk4-aaaq Aliases: CVE-2022-22823	build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-g7hb-j2mg-aaad Aliases: CVE-2022-25235	xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-gkg1-z48a-aaaf Aliases: CVE-2022-40674	libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-gw1j-ww9f-aaas Aliases: CVE-2022-22824	defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jnbc-rb8g-aaaq Aliases: CVE-2019-15903	In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-jyvz-jmez-aaac Aliases: CVE-2022-25315	In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-k28v-d66c-aaah Aliases: CVE-2021-45960	In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-k2gb-tg9w-aaac Aliases: CVE-2022-23852	Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-k2w7-g7cv-2bhs Aliases: CVE-2024-45490	An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length for XML_ParseBuffer.	2.5.0-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kv44-5u3t-aaan Aliases: CVE-2022-22825	lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-m3u3-h1z5-aaam Aliases: CVE-2013-0340	expat 2.1.0 and earlier does not properly handle entities expansion unless an application developer uses the XML_SetEntityDeclHandler function, which allows remote attackers to cause a denial of service (resource consumption), send HTTP requests to intranet servers, or read arbitrary files via a crafted XML document, aka an XML External Entity (XXE) issue. NOTE: it could be argued that because expat already provides the ability to disable external entity expansion, the responsibility for resolving this issue lies with application developers; according to this argument, this entry should be REJECTed, and each affected application would need its own CVE.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-mr2r-p1cb-aaam Aliases: CVE-2024-28757	libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).	2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u2 Affected by 0 other vulnerabilities. 2.6.3-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.6.4-1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-pyk8-pv5u-aaar Aliases: CVE-2022-23990	Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-s2ze-avjx-q7av Aliases: CVE-2024-45491	An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer overflow for nDefaultAtts on 32-bit platforms (where UINT_MAX equals SIZE_MAX).	2.5.0-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.5.0-1+deb12u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-sfwu-mj99-aaah Aliases: CVE-2022-22827	storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-uurc-zubg-aaar Aliases: CVE-2022-25314	In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.	2.2.10-2+deb11u5 Affected by 9 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (20)

Vulnerability	Summary	Aliases
VCID-2gdb-x4eu-aaap	xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.	CVE-2022-25236
VCID-4bzd-xbmz-aaaj	In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).	CVE-2018-20843
VCID-7tx1-vzak-aaaj	addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22822
VCID-a2tw-zeqx-aaam	nextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22826
VCID-bmaw-jhc8-aaar	In Expat (aka libexpat) before 2.4.5, an attacker can trigger stack exhaustion in build_model via a large nesting depth in the DTD element.	CVE-2022-25313
VCID-dd5k-98hq-aaan	regression update	DSA-5085-2 expat
VCID-e4rm-mp7j-aaaa	In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.	CVE-2021-46143
VCID-f8y2-ehk4-aaaq	build_model in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22823
VCID-g7hb-j2mg-aaad	xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as checks for whether a UTF-8 character is valid in a certain context.	CVE-2022-25235
VCID-gnd3-sds3-aaam	XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.	CVE-2017-9233
VCID-gw1j-ww9f-aaas	defineAttribute in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22824
VCID-jnbc-rb8g-aaaq	In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read.	CVE-2019-15903
VCID-jyvz-jmez-aaac	In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.	CVE-2022-25315
VCID-k28v-d66c-aaah	In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).	CVE-2021-45960
VCID-k2gb-tg9w-aaac	Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.	CVE-2022-23852
VCID-kv44-5u3t-aaan	lookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22825
VCID-pyk8-pv5u-aaar	Expat (aka libexpat) before 2.4.4 has an integer overflow in the doProlog function.	CVE-2022-23990
VCID-pzqb-xywp-aaaf	An integer overflow during the parsing of XML using the Expat library. This vulnerability affects Firefox < 50.	CVE-2016-9063
VCID-sfwu-mj99-aaah	storeAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.	CVE-2022-22827
VCID-uurc-zubg-aaar	In Expat (aka libexpat) before 2.4.5, there is an integer overflow in copyString.	CVE-2022-25314

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-22T06:06:04.917028+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T19:17:15.076070+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T19:11:53.399791+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T19:03:02.518860+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T18:11:42.010709+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T18:09:52.700257+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T17:55:09.643422+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	36.1.3
2025-06-21T16:44:37.313510+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T16:28:58.539144+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T16:20:53.792623+00:00	Debian Oval Importer	Fixing	VCID-dd5k-98hq-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T15:13:44.176215+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:52:16.932117+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:44:58.011576+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:08:49.189345+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:06:57.197834+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:59:16.961613+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:42:28.337783+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:27:04.582584+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:26:38.246066+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:07:53.422668+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:06:28.492264+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:58:26.828924+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:55:50.451585+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:52:51.573662+00:00	Debian Importer	Affected by	VCID-bmun-mv6e-aaar	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T12:32:52.744703+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:10:03.716614+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T11:48:12.567606+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T11:19:51.466185+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T11:12:17.538132+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T08:40:27.705726+00:00	Debian Importer	Affected by	VCID-mr2r-p1cb-aaam	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T06:34:38.413262+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	None	36.1.3
2025-06-21T06:30:36.718152+00:00	Debian Oval Importer	Affected by	VCID-gw1j-ww9f-aaas	None	36.1.3
2025-06-21T05:59:34.146120+00:00	Debian Oval Importer	Affected by	VCID-f8y2-ehk4-aaaq	None	36.1.3
2025-06-21T05:29:52.696516+00:00	Debian Oval Importer	Affected by	VCID-uurc-zubg-aaar	None	36.1.3
2025-06-21T05:12:29.791070+00:00	Debian Oval Importer	Affected by	VCID-kv44-5u3t-aaan	None	36.1.3
2025-06-21T05:08:56.900613+00:00	Debian Oval Importer	Affected by	VCID-2gdb-x4eu-aaap	None	36.1.3
2025-06-21T05:00:33.578433+00:00	Debian Oval Importer	Affected by	VCID-sfwu-mj99-aaah	None	36.1.3
2025-06-21T04:56:35.465816+00:00	Debian Oval Importer	Affected by	VCID-bmaw-jhc8-aaar	None	36.1.3
2025-06-21T04:53:41.056261+00:00	Debian Oval Importer	Affected by	VCID-jnbc-rb8g-aaaq	None	36.1.3
2025-06-21T04:52:16.113690+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	None	36.1.3
2025-06-21T04:37:33.401429+00:00	Debian Importer	Affected by	VCID-a7ry-4dn3-aaan	https://security-tracker.debian.org/tracker/data/json	36.1.3
2025-06-21T04:04:13.722417+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	None	36.1.3
2025-06-21T04:01:51.541240+00:00	Debian Oval Importer	Affected by	VCID-7tx1-vzak-aaaj	None	36.1.3
2025-06-21T03:31:14.195763+00:00	Debian Oval Importer	Affected by	VCID-g7hb-j2mg-aaad	None	36.1.3
2025-06-21T03:10:35.931761+00:00	Debian Oval Importer	Affected by	VCID-e4rm-mp7j-aaaa	None	36.1.3
2025-06-21T02:53:33.231170+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	36.1.3
2025-06-21T02:34:10.686759+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	None	36.1.3
2025-06-21T01:57:42.842232+00:00	Debian Oval Importer	Affected by	VCID-pyk8-pv5u-aaar	None	36.1.3
2025-06-21T01:36:30.886313+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	None	36.1.3
2025-06-21T01:22:58.568612+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	None	36.1.3
2025-06-21T00:48:20.814905+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	None	36.1.3
2025-06-21T00:00:36.529884+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	None	36.1.3
2025-06-20T23:46:19.617306+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	None	36.1.3
2025-06-20T23:42:08.449212+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	None	36.1.3
2025-06-20T23:35:11.624658+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	None	36.1.3
2025-06-20T23:10:33.578790+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	None	36.1.3
2025-06-20T23:03:58.857923+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	None	36.1.3
2025-06-20T22:52:42.514753+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	None	36.1.3
2025-06-20T22:51:45.309622+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	None	36.1.3
2025-06-20T22:37:23.153288+00:00	Debian Oval Importer	Fixing	VCID-pzqb-xywp-aaaf	None	36.1.3
2025-06-20T22:25:39.289815+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	None	36.1.3
2025-06-20T22:07:19.637911+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	None	36.1.3
2025-06-20T22:01:46.192271+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	None	36.1.3
2025-06-20T21:55:57.415306+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	None	36.1.3
2025-06-20T21:51:58.432168+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	None	36.1.3
2025-06-20T21:49:15.392534+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	None	36.1.3
2025-06-20T21:48:24.019191+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	None	36.1.3
2025-06-20T21:28:11.546638+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	None	36.1.3
2025-06-20T21:15:08.593857+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	None	36.1.3
2025-06-08T13:05:23.665963+00:00	Debian Oval Importer	Affected by	VCID-bmaw-jhc8-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T13:02:09.921143+00:00	Debian Oval Importer	Affected by	VCID-2gdb-x4eu-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:32:48.533561+00:00	Debian Oval Importer	Affected by	VCID-f8y2-ehk4-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:27:10.215824+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:26:07.795883+00:00	Debian Oval Importer	Affected by	VCID-dd5k-98hq-aaan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:16:58.896658+00:00	Debian Oval Importer	Affected by	VCID-e4rm-mp7j-aaaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:55:08.745463+00:00	Debian Oval Importer	Affected by	VCID-uurc-zubg-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:54:15.913419+00:00	Debian Oval Importer	Affected by	VCID-pyk8-pv5u-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:46:02.974467+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:40:45.919713+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:32:16.049391+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T10:43:03.543515+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T10:41:18.123029+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T09:29:52.190812+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T09:14:51.522695+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T09:07:03.100622+00:00	Debian Oval Importer	Fixing	VCID-dd5k-98hq-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T08:07:28.195843+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:45:37.355201+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:38:16.748656+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:34:23.858997+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:02:13.113096+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:00:35.186912+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:36:41.160745+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:21:07.786586+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:20:38.187890+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:02:45.114145+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:01:21.637749+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:53:24.746748+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:50:48.788733+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:31:37.207628+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:16:16.544684+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:02:44.117485+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:43:49.015069+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:38:56.380319+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T00:13:49.694413+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	None	36.1.0
2025-06-08T00:09:50.500823+00:00	Debian Oval Importer	Affected by	VCID-gw1j-ww9f-aaas	None	36.1.0
2025-06-07T23:38:08.806615+00:00	Debian Oval Importer	Affected by	VCID-f8y2-ehk4-aaaq	None	36.1.0
2025-06-07T23:07:41.396603+00:00	Debian Oval Importer	Affected by	VCID-uurc-zubg-aaar	None	36.1.0
2025-06-07T22:50:00.182370+00:00	Debian Oval Importer	Affected by	VCID-kv44-5u3t-aaan	None	36.1.0
2025-06-07T22:46:25.940625+00:00	Debian Oval Importer	Affected by	VCID-2gdb-x4eu-aaap	None	36.1.0
2025-06-07T22:37:57.605675+00:00	Debian Oval Importer	Affected by	VCID-sfwu-mj99-aaah	None	36.1.0
2025-06-07T22:33:57.066795+00:00	Debian Oval Importer	Affected by	VCID-bmaw-jhc8-aaar	None	36.1.0
2025-06-07T22:30:59.025044+00:00	Debian Oval Importer	Affected by	VCID-jnbc-rb8g-aaaq	None	36.1.0
2025-06-07T22:29:29.395364+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	None	36.1.0
2025-06-07T21:39:38.910448+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	None	36.1.0
2025-06-07T21:37:12.009345+00:00	Debian Oval Importer	Affected by	VCID-7tx1-vzak-aaaj	None	36.1.0
2025-06-07T21:04:54.079753+00:00	Debian Oval Importer	Affected by	VCID-g7hb-j2mg-aaad	None	36.1.0
2025-06-07T20:43:29.525371+00:00	Debian Oval Importer	Affected by	VCID-e4rm-mp7j-aaaa	None	36.1.0
2025-06-07T19:58:20.812295+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	None	36.1.0
2025-06-07T19:21:10.182675+00:00	Debian Oval Importer	Affected by	VCID-pyk8-pv5u-aaar	None	36.1.0
2025-06-07T18:59:33.588175+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	None	36.1.0
2025-06-07T18:45:47.407191+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	None	36.1.0
2025-06-07T18:10:51.556810+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	None	36.1.0
2025-06-07T17:23:26.505492+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	None	36.1.0
2025-06-07T17:09:12.838853+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	None	36.1.0
2025-06-07T17:05:03.516109+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	None	36.1.0
2025-06-07T16:58:08.835848+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	None	36.1.0
2025-06-07T16:33:41.426178+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	None	36.1.0
2025-06-07T16:27:13.654523+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	None	36.1.0
2025-06-07T16:16:02.815907+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	None	36.1.0
2025-06-07T16:15:10.352847+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	None	36.1.0
2025-06-07T16:01:21.161712+00:00	Debian Oval Importer	Fixing	VCID-pzqb-xywp-aaaf	None	36.1.0
2025-06-07T15:49:54.218691+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	None	36.1.0
2025-06-07T15:31:15.172130+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	None	36.1.0
2025-06-07T15:25:24.346448+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	None	36.1.0
2025-06-07T15:19:17.814904+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	None	36.1.0
2025-06-07T15:15:15.477004+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	None	36.1.0
2025-06-07T15:12:21.786396+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	None	36.1.0
2025-06-07T15:11:28.527734+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	None	36.1.0
2025-06-07T14:50:51.611918+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	None	36.1.0
2025-06-07T14:39:15.980545+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	None	36.1.0
2025-05-06T18:45:27.296851+00:00	Debian Oval Importer	Affected by	VCID-6y74-4uqv-dka3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T02:02:54.218640+00:00	Debian Oval Importer	Affected by	VCID-bmun-mv6e-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T02:02:51.284746+00:00	Debian Oval Importer	Affected by	VCID-k2w7-g7cv-2bhs	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T02:02:44.200182+00:00	Debian Oval Importer	Affected by	VCID-8e29-n224-fqdm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-13T02:02:33.807609+00:00	Debian Oval Importer	Affected by	VCID-s2ze-avjx-q7av	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T23:06:09.057112+00:00	Debian Oval Importer	Affected by	VCID-bmun-mv6e-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-12T22:36:36.942614+00:00	Debian Oval Importer	Affected by	VCID-jnbc-rb8g-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T22:25:19.600161+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T21:27:08.920987+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T20:54:39.718129+00:00	Debian Oval Importer	Affected by	VCID-7tx1-vzak-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T20:29:51.078058+00:00	Debian Oval Importer	Affected by	VCID-sfwu-mj99-aaah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:12:10.802740+00:00	Debian Oval Importer	Affected by	VCID-gw1j-ww9f-aaas	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:11:10.181201+00:00	Debian Oval Importer	Affected by	VCID-kv44-5u3t-aaan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T19:10:49.390304+00:00	Debian Oval Importer	Affected by	VCID-g7hb-j2mg-aaad	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:52:55.150338+00:00	Debian Oval Importer	Affected by	VCID-bmaw-jhc8-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:49:37.231195+00:00	Debian Oval Importer	Affected by	VCID-2gdb-x4eu-aaap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:19:15.079864+00:00	Debian Oval Importer	Affected by	VCID-f8y2-ehk4-aaaq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:13:23.940937+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:12:18.594479+00:00	Debian Oval Importer	Affected by	VCID-dd5k-98hq-aaan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:02:46.928016+00:00	Debian Oval Importer	Affected by	VCID-e4rm-mp7j-aaaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:40:17.143990+00:00	Debian Oval Importer	Affected by	VCID-uurc-zubg-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:39:22.853584+00:00	Debian Oval Importer	Affected by	VCID-pyk8-pv5u-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:30:55.185462+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:25:28.504035+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:16:40.211290+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T16:24:55.845889+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T16:23:04.358146+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-08T08:02:17.904075+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T07:46:51.063471+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T07:38:50.968220+00:00	Debian Oval Importer	Fixing	VCID-dd5k-98hq-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:39:30.415934+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:18:10.802576+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:10:49.260646+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:34:56.370718+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:33:13.937892+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:25:55.455813+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:09:02.250364+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:53:22.811668+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:52:55.742450+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:34:43.035023+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:33:17.483693+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:25:15.430628+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:22:37.347335+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T04:02:58.527609+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:47:19.405834+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:33:38.168011+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:14:53.053724+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:09:56.524106+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-07T22:46:12.544579+00:00	Debian Oval Importer	Affected by	VCID-2esh-sm4z-aaag	None	36.0.0
2025-04-07T22:42:12.946420+00:00	Debian Oval Importer	Affected by	VCID-gw1j-ww9f-aaas	None	36.0.0
2025-04-07T22:10:15.796049+00:00	Debian Oval Importer	Affected by	VCID-f8y2-ehk4-aaaq	None	36.0.0
2025-04-07T21:39:46.047080+00:00	Debian Oval Importer	Affected by	VCID-uurc-zubg-aaar	None	36.0.0
2025-04-07T21:21:55.897195+00:00	Debian Oval Importer	Affected by	VCID-kv44-5u3t-aaan	None	36.0.0
2025-04-07T21:18:17.847191+00:00	Debian Oval Importer	Affected by	VCID-2gdb-x4eu-aaap	None	36.0.0
2025-04-07T21:09:39.091178+00:00	Debian Oval Importer	Affected by	VCID-sfwu-mj99-aaah	None	36.0.0
2025-04-07T21:05:35.648043+00:00	Debian Oval Importer	Affected by	VCID-bmaw-jhc8-aaar	None	36.0.0
2025-04-07T21:02:33.736415+00:00	Debian Oval Importer	Affected by	VCID-jnbc-rb8g-aaaq	None	36.0.0
2025-04-07T21:01:05.793206+00:00	Debian Oval Importer	Affected by	VCID-k2gb-tg9w-aaac	None	36.0.0
2025-04-07T20:09:14.461310+00:00	Debian Oval Importer	Affected by	VCID-jyvz-jmez-aaac	None	36.0.0
2025-04-07T20:06:41.613969+00:00	Debian Oval Importer	Affected by	VCID-7tx1-vzak-aaaj	None	36.0.0
2025-04-07T19:35:06.480025+00:00	Debian Oval Importer	Affected by	VCID-g7hb-j2mg-aaad	None	36.0.0
2025-04-07T19:13:56.218998+00:00	Debian Oval Importer	Affected by	VCID-e4rm-mp7j-aaaa	None	36.0.0
2025-04-07T18:36:12.817191+00:00	Debian Oval Importer	Affected by	VCID-a2tw-zeqx-aaam	None	36.0.0
2025-04-07T17:58:59.689920+00:00	Debian Oval Importer	Affected by	VCID-pyk8-pv5u-aaar	None	36.0.0
2025-04-07T17:37:25.842745+00:00	Debian Oval Importer	Affected by	VCID-k28v-d66c-aaah	None	36.0.0
2025-04-07T17:23:37.747582+00:00	Debian Oval Importer	Fixing	VCID-gnd3-sds3-aaam	None	36.0.0
2025-04-07T16:48:09.722871+00:00	Debian Oval Importer	Fixing	VCID-g7hb-j2mg-aaad	None	36.0.0
2025-04-07T15:57:35.867795+00:00	Debian Oval Importer	Fixing	VCID-a2tw-zeqx-aaam	None	36.0.0
2025-04-07T15:42:48.057468+00:00	Debian Oval Importer	Fixing	VCID-kv44-5u3t-aaan	None	36.0.0
2025-04-07T15:38:27.166644+00:00	Debian Oval Importer	Fixing	VCID-bmaw-jhc8-aaar	None	36.0.0
2025-04-07T15:31:15.593804+00:00	Debian Oval Importer	Fixing	VCID-7tx1-vzak-aaaj	None	36.0.0
2025-04-07T15:05:47.544867+00:00	Debian Oval Importer	Fixing	VCID-f8y2-ehk4-aaaq	None	36.0.0
2025-04-07T14:59:03.900405+00:00	Debian Oval Importer	Fixing	VCID-sfwu-mj99-aaah	None	36.0.0
2025-04-07T14:47:33.354804+00:00	Debian Oval Importer	Affected by	VCID-gkg1-z48a-aaaf	None	36.0.0
2025-04-07T14:46:39.868157+00:00	Debian Oval Importer	Fixing	VCID-2gdb-x4eu-aaap	None	36.0.0
2025-04-07T14:32:30.285099+00:00	Debian Oval Importer	Fixing	VCID-pzqb-xywp-aaaf	None	36.0.0
2025-04-07T14:20:42.922812+00:00	Debian Oval Importer	Fixing	VCID-gw1j-ww9f-aaas	None	36.0.0
2025-04-07T14:02:18.790774+00:00	Debian Oval Importer	Fixing	VCID-uurc-zubg-aaar	None	36.0.0
2025-04-07T13:56:40.157761+00:00	Debian Oval Importer	Fixing	VCID-4bzd-xbmz-aaaj	None	36.0.0
2025-04-07T13:50:47.087404+00:00	Debian Oval Importer	Fixing	VCID-pyk8-pv5u-aaar	None	36.0.0
2025-04-07T13:46:51.272903+00:00	Debian Oval Importer	Fixing	VCID-e4rm-mp7j-aaaa	None	36.0.0
2025-04-07T13:44:04.759034+00:00	Debian Oval Importer	Fixing	VCID-k2gb-tg9w-aaac	None	36.0.0
2025-04-07T13:43:10.292206+00:00	Debian Oval Importer	Fixing	VCID-jnbc-rb8g-aaaq	None	36.0.0
2025-04-07T13:22:51.044981+00:00	Debian Oval Importer	Fixing	VCID-k28v-d66c-aaah	None	36.0.0
2025-04-07T13:11:21.991929+00:00	Debian Oval Importer	Fixing	VCID-jyvz-jmez-aaac	None	36.0.0
2025-04-05T23:53:08.204998+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-05T14:04:34.075354+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	36.0.0
2025-04-05T09:25:39.519025+00:00	Debian Importer	Affected by	VCID-bmun-mv6e-aaar	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-05T05:56:33.856176+00:00	Debian Importer	Affected by	VCID-mr2r-p1cb-aaam	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-04T07:26:43.336735+00:00	Debian Importer	Affected by	VCID-a7ry-4dn3-aaan	https://security-tracker.debian.org/tracker/data/json	36.0.0
2025-04-04T05:40:31.483093+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	36.0.0
2025-02-21T21:41:24.442478+00:00	Debian Importer	Affected by	VCID-mr2r-p1cb-aaam	https://security-tracker.debian.org/tracker/data/json	35.1.0
2025-02-21T15:17:46.809308+00:00	Debian Importer	Affected by	VCID-a7ry-4dn3-aaan	https://security-tracker.debian.org/tracker/data/json	35.1.0
2025-02-21T15:17:42.400059+00:00	Debian Importer	Affected by	VCID-bmun-mv6e-aaar	https://security-tracker.debian.org/tracker/data/json	35.1.0
2025-02-21T04:14:46.009478+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	35.1.0
2025-02-18T11:03:25.003403+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	35.1.0
2025-02-18T11:03:18.736037+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	35.1.0
2024-05-20T15:13:48.500317+00:00	Debian Importer	Affected by	VCID-a7ry-4dn3-aaan	https://security-tracker.debian.org/tracker/data/json	34.0.0rc4
2024-05-20T15:13:47.676741+00:00	Debian Importer	Affected by	VCID-bmun-mv6e-aaar	https://security-tracker.debian.org/tracker/data/json	34.0.0rc4
2024-04-25T21:28:01.540030+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	34.0.0rc4
2024-04-24T08:21:21.902749+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	34.0.0rc4
2024-04-24T08:21:16.993458+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	34.0.0rc4
2024-01-12T07:19:06.762477+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	34.0.0rc2
2024-01-10T10:22:36.320489+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	34.0.0rc2
2024-01-10T10:20:27.017301+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	34.0.0rc2
2024-01-05T05:38:50.393974+00:00	Debian Importer	Affected by	VCID-2esh-sm4z-aaag	None	34.0.0rc1
2024-01-04T02:49:16.263320+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	https://security-tracker.debian.org/tracker/data/json	34.0.0rc1
2024-01-04T02:49:05.582356+00:00	Debian Importer	Affected by	VCID-m3u3-h1z5-aaam	None	34.0.0rc1