Search for packages
Package details: pkg:deb/debian/xmlrpc-c@1.06.27-1.1
purl pkg:deb/debian/xmlrpc-c@1.06.27-1.1
Next non-vulnerable version 1.16.33-3.2
Latest non-vulnerable version 1.16.33-3.2
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-58hc-uzqc-aaas
Aliases:
CVE-2012-1148
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities.
1.16.33-3.2
Affected by 0 other vulnerabilities.
VCID-gx4q-9nac-aaab
Aliases:
CVE-2012-0876
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file with many identifiers with the same value.
1.16.33-3.2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-8dyd-depr-aaam The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. CVE-2009-3560
VCID-c7e7-cdc7-aaam The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. CVE-2009-3720

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:15:23.673834+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:30:42.705623+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:10:30.226844+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:18:31.806872+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:48:56.865988+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:15:36.499642+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:33:47.435846+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T00:00:20.416632+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas None 36.1.3
2025-06-20T23:32:04.349985+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam None 36.1.3
2025-06-20T23:31:36.973968+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab None 36.1.3
2025-06-20T20:39:42.655812+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam None 36.1.3
2025-06-08T11:44:10.879837+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:01:12.828177+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:41:55.354763+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:59:38.384349+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:34:09.045549+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:08:57.832813+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:27:51.339570+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T17:23:16.058439+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas None 36.1.0
2025-06-07T16:54:59.382604+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam None 36.1.0
2025-06-07T16:54:32.362415+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab None 36.1.0
2025-06-07T14:11:46.113166+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam None 36.1.0
2025-04-12T22:11:30.040513+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:29:03.224747+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:44:05.005416+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:23:43.290315+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:31:54.876899+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:06:30.219128+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:41:32.630887+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:00:09.858309+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T15:57:25.433473+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas None 36.0.0
2025-04-07T15:27:59.192524+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam None 36.0.0
2025-04-07T15:27:30.667108+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab None 36.0.0
2025-04-07T12:44:59.919822+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam None 36.0.0
2024-11-28T21:04:58.294999+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-28T19:34:02.014080+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T09:26:12.281799+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T08:15:25.186774+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-14T06:01:18.620148+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-14T04:44:55.744504+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-13T05:02:57.533403+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-13T04:13:12.273777+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-21T06:33:31.852959+00:00 Debian Oval Importer Affected by VCID-58hc-uzqc-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-21T06:06:19.638722+00:00 Debian Oval Importer Affected by VCID-gx4q-9nac-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T20:29:47.755451+00:00 Debian Oval Importer Fixing VCID-c7e7-cdc7-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T20:12:06.942518+00:00 Debian Oval Importer Fixing VCID-8dyd-depr-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1