Search for packages
| purl | pkg:deb/debian/xmlsec1@1.2.18-2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-9zw8-dcvx-aaae
Aliases: CVE-2017-1000061 |
xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-7zat-xwhp-aaak | xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification. |
CVE-2011-1425
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T16:28:17.917645+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:23:58.464628+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-20T23:32:13.205705+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | None | 36.1.3 |
| 2025-06-20T19:30:26.588667+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | None | 36.1.3 |
| 2025-06-08T12:13:49.433614+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:57:20.547136+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:14:11.646211+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:09:59.791605+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T16:55:08.933234+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | None | 36.1.0 |
| 2025-06-07T13:27:15.895429+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | None | 36.1.0 |
| 2025-04-12T17:59:31.854492+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:42:32.084159+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:46:09.779997+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:41:51.506233+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T15:28:08.646621+00:00 | Debian Oval Importer | Affected by | VCID-9zw8-dcvx-aaae | None | 36.0.0 |
| 2025-04-07T12:02:47.183984+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | None | 36.0.0 |
| 2024-11-28T05:05:27.239582+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-13T18:25:48.255902+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T01:50:41.075188+00:00 | Debian Oval Importer | Fixing | VCID-7zat-xwhp-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |