Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/xml-security-c@1.6.1-5%2Bdeb7u2
purl pkg:deb/debian/xml-security-c@1.6.1-5%2Bdeb7u2
Next non-vulnerable version 1.7.3-4+deb9u3
Latest non-vulnerable version 1.7.3-4+deb9u3
Risk
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-5vfa-7ndh-ubg5
Aliases:
CVE-2013-2154
several
1.7.2-2~bpo70+1
Affected by 1 other vulnerability.
VCID-f468-uhj2-2bdv
Aliases:
CVE-2013-2210
heap overflow
1.7.2-2~bpo70+1
Affected by 1 other vulnerability.
VCID-jf41-fevz-rbcc
Aliases:
CVE-2013-2155
several
1.7.2-2~bpo70+1
Affected by 1 other vulnerability.
VCID-x1wh-fjsq-4yak
Aliases:
CVE-2013-2153
several
1.7.2-2~bpo70+1
Affected by 1 other vulnerability.
VCID-x9wc-g2hh-w7dc
Aliases:
CVE-2013-2156
several
1.7.2-2~bpo70+1
Affected by 1 other vulnerability.
VCID-yab9-4unt-nfbj
Aliases:
DSA-4265-1 xml-security-c
security update
1.7.3-4+deb9u3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (6)
Vulnerability Summary Aliases
VCID-5vfa-7ndh-ubg5 several CVE-2013-2154
VCID-9tws-us7w-yfhq Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibboleth before 2.4.3 and possibly other products, allows remote attackers to cause a denial of service (crash) via a signature using a large RSA key, which triggers a buffer overflow. CVE-2011-2516
VCID-f468-uhj2-2bdv heap overflow CVE-2013-2210
VCID-jf41-fevz-rbcc several CVE-2013-2155
VCID-x1wh-fjsq-4yak several CVE-2013-2153
VCID-x9wc-g2hh-w7dc several CVE-2013-2156

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T22:12:40.920044+00:00 Debian Oval Importer Affected by VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:09:34.650246+00:00 Debian Oval Importer Affected by VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:47:34.500227+00:00 Debian Oval Importer Fixing VCID-9tws-us7w-yfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:57:07.386705+00:00 Debian Oval Importer Affected by VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:35:15.429225+00:00 Debian Oval Importer Affected by VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:33:22.035349+00:00 Debian Oval Importer Affected by VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T14:27:17.141311+00:00 Debian Oval Importer Affected by VCID-yab9-4unt-nfbj https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T13:15:59.207510+00:00 Debian Oval Importer Fixing VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T13:14:16.410749+00:00 Debian Oval Importer Fixing VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T13:01:44.684009+00:00 Debian Oval Importer Fixing VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T12:54:59.404660+00:00 Debian Oval Importer Fixing VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T12:54:01.582483+00:00 Debian Oval Importer Fixing VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-11T21:50:23.738318+00:00 Debian Oval Importer Affected by VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:49:30.698698+00:00 Debian Oval Importer Affected by VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:32:16.367364+00:00 Debian Oval Importer Fixing VCID-9tws-us7w-yfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:43:46.992554+00:00 Debian Oval Importer Affected by VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:22:15.294571+00:00 Debian Oval Importer Affected by VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:20:24.335535+00:00 Debian Oval Importer Affected by VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:15:37.007610+00:00 Debian Oval Importer Affected by VCID-yab9-4unt-nfbj https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:04:43.347771+00:00 Debian Oval Importer Fixing VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T13:03:01.874080+00:00 Debian Oval Importer Fixing VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:51:05.457575+00:00 Debian Oval Importer Fixing VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:43:33.043822+00:00 Debian Oval Importer Fixing VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:42:34.382819+00:00 Debian Oval Importer Fixing VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-08T21:27:57.015005+00:00 Debian Oval Importer Affected by VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:29:09.252273+00:00 Debian Oval Importer Affected by VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:17:24.811286+00:00 Debian Oval Importer Fixing VCID-9tws-us7w-yfhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:34:12.697816+00:00 Debian Oval Importer Affected by VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:14:03.980484+00:00 Debian Oval Importer Affected by VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:12:20.418047+00:00 Debian Oval Importer Affected by VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T22:49:24.468129+00:00 Debian Oval Importer Affected by VCID-yab9-4unt-nfbj https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T21:39:47.445343+00:00 Debian Oval Importer Fixing VCID-jf41-fevz-rbcc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-07T21:38:02.041548+00:00 Debian Oval Importer Fixing VCID-x9wc-g2hh-w7dc https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-03T22:06:42.365930+00:00 Debian Oval Importer Fixing VCID-x1wh-fjsq-4yak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-03T21:53:31.142597+00:00 Debian Oval Importer Fixing VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-03T21:52:31.588690+00:00 Debian Oval Importer Fixing VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-02T12:59:43.599360+00:00 Debian Oval Importer Fixing VCID-f468-uhj2-2bdv https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.0.0
2026-04-02T12:58:43.118848+00:00 Debian Oval Importer Fixing VCID-5vfa-7ndh-ubg5 https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.0.0