Search for packages
| purl | pkg:deb/debian/mcabber@0.9.7-0.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8dyd-depr-aaam
Aliases: CVE-2009-3560 |
The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. |
Affected by 2 other vulnerabilities. |
|
VCID-c7e7-cdc7-aaam
Aliases: CVE-2009-3720 |
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. |
Affected by 2 other vulnerabilities. |
|
VCID-nq93-zvcm-aaag
Aliases: CVE-2017-5604 |
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for mcabber 1.0.0 - 1.0.4. |
Affected by 0 other vulnerabilities. |
|
VCID-zzxx-ws55-aaaq
Aliases: CVE-2016-9928 |
MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T18:27:28.716552+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:09:36.708114+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T15:40:18.620185+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:28:01.812861+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:04:07.376731+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:19:01.384119+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-20T23:27:15.542122+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | None | 36.1.3 |
| 2025-06-20T23:14:23.412275+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.1.3 |
| 2025-06-20T22:55:58.626987+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | None | 36.1.3 |
| 2025-06-20T22:48:31.686880+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.1.3 |
| 2025-06-08T13:17:34.893440+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:58:02.092915+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:41:02.814297+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T08:34:31.290077+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:22:35.499705+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:12:22.608898+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:42:58.288854+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T16:50:10.711960+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | None | 36.1.0 |
| 2025-06-07T16:37:29.738058+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.1.0 |
| 2025-06-07T16:19:14.683809+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | None | 36.1.0 |
| 2025-06-07T16:12:22.936273+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.1.0 |
| 2025-04-12T22:07:54.992251+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:05:35.465301+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:40:46.265985+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:22:48.078118+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:05:55.800160+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:53:56.001072+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:43:19.853138+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:14:00.244551+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T15:22:56.012857+00:00 | Debian Oval Importer | Affected by | VCID-nq93-zvcm-aaag | None | 36.0.0 |
| 2025-04-07T15:09:42.305430+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.0.0 |
| 2025-04-07T14:50:54.201866+00:00 | Debian Oval Importer | Affected by | VCID-zzxx-ws55-aaaq | None | 36.0.0 |
| 2025-04-07T14:43:47.648734+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.0.0 |
| 2024-11-27T09:26:06.088120+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T08:15:23.843729+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-13T05:02:51.201413+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T04:13:10.908063+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-20T20:29:41.478282+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T20:12:05.550085+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |