Search for packages
Package details: pkg:deb/debian/libxml-security-java@1.4.2-1
purl pkg:deb/debian/libxml-security-java@1.4.2-1
Next non-vulnerable version 2.1.7-3
Latest non-vulnerable version 2.1.7-3
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-54af-zg2e-aaan
Aliases:
CVE-2013-2172
GHSA-r237-w2w6-jq3p
Cryptographic Issues Attackers could spoof an XML Signature by using the CanonicalizationMethod parameter to specify an arbitrary weak canonicalization algorithm to apply to the `SignedInfo` part of the Signature.
1.4.5-1+deb7u1
Affected by 3 other vulnerabilities.
1.5.6-1
Affected by 1 other vulnerability.
VCID-95nw-fscc-aaaa
Aliases:
CVE-2021-40690
GHSA-j8wc-gxx9-82hx
Exposure of Sensitive Information to an Unauthorized Actor in Apache Santuario
2.0.10-2+deb10u1
Affected by 2 other vulnerabilities.
2.0.10-2+deb11u1
Affected by 1 other vulnerability.
VCID-f3nz-xu8d-aaar
Aliases:
CVE-2013-4517
GHSA-4p4w-6h54-g885
Uncontrolled Resource Consumption When applying Transforms, remote attackers could cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), related to signatures.
1.5.6-1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T17:47:31.363964+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:11:40.287943+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:31:49.904247+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T09:08:03.682462+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T00:07:02.371189+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa None 36.1.3
2025-06-20T21:36:36.237042+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar None 36.1.3
2025-06-20T19:27:01.273813+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan None 36.1.3
2025-06-08T10:20:31.603348+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:05:00.784292+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:25:53.298630+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T02:55:17.800336+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-07T17:29:49.508209+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa None 36.1.0
2025-06-07T14:59:14.078773+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar None 36.1.0
2025-06-07T13:24:50.744768+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan None 36.1.0
2025-06-03T13:24:07.931535+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan None 36.1.2
2025-04-12T21:52:49.422143+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:57:27.199467+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:53:41.876631+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:01:31.070062+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:37:40.512085+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:58:10.744448+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T01:22:30.803404+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T16:04:20.029350+00:00 Debian Oval Importer Affected by VCID-95nw-fscc-aaaa None 36.0.0
2025-04-07T13:31:06.940189+00:00 Debian Oval Importer Affected by VCID-f3nz-xu8d-aaar None 36.0.0
2025-04-07T12:00:21.339788+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan None 36.0.0
2024-12-31T11:36:14.058766+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-12-31T11:36:13.359768+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 35.0.0
2024-10-15T07:45:27.168801+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-15T07:45:26.477972+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.2
2024-10-05T05:36:35.667306+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-10-05T05:36:34.973043+00:00 Debian Oval Importer Affected by VCID-54af-zg2e-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.1