Search for packages
| purl | pkg:deb/debian/xmlrpc-c@1.06.27-1 |
| Next non-vulnerable version | 1.16.33-3.2 |
| Latest non-vulnerable version | 1.16.33-3.2 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-58hc-uzqc-aaas
Aliases: CVE-2012-1148 |
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted XML files that cause improperly-handled reallocation failures when expanding entities. |
Affected by 0 other vulnerabilities. |
|
VCID-8dyd-depr-aaam
Aliases: CVE-2009-3560 |
The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720. |
Affected by 2 other vulnerabilities. |
|
VCID-c7e7-cdc7-aaam
Aliases: CVE-2009-3720 |
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625. |
Affected by 2 other vulnerabilities. |
|
VCID-gx4q-9nac-aaab
Aliases: CVE-2012-0876 |
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file with many identifiers with the same value. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:15:23.670944+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:30:42.703290+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:10:30.225276+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T17:18:31.804668+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:48:56.864076+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:15:36.497982+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:33:47.433162+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T00:00:20.414497+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | None | 36.1.3 |
| 2025-06-20T23:32:04.347681+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.1.3 |
| 2025-06-20T23:31:36.971843+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | None | 36.1.3 |
| 2025-06-20T20:39:42.653746+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.1.3 |
| 2025-06-08T11:44:10.878274+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:01:12.826624+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:41:55.353269+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:59:38.382827+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:34:09.043744+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:08:57.831262+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:27:51.338037+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T17:23:16.056545+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | None | 36.1.0 |
| 2025-06-07T16:54:59.381064+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.1.0 |
| 2025-06-07T16:54:32.360590+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | None | 36.1.0 |
| 2025-06-07T14:11:46.102009+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.1.0 |
| 2025-04-12T22:11:30.035037+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:29:03.219482+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:44:05.000076+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:23:43.285172+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T08:31:54.872062+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T08:06:30.214228+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:41:32.625923+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:00:09.853537+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T15:57:25.428451+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | None | 36.0.0 |
| 2025-04-07T15:27:59.187466+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | None | 36.0.0 |
| 2025-04-07T15:27:30.661623+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | None | 36.0.0 |
| 2025-04-07T12:44:59.914658+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | None | 36.0.0 |
| 2024-11-28T21:04:58.290021+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-28T19:34:02.009355+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T09:26:12.276826+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T08:15:25.181401+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T06:01:18.614770+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-14T04:44:55.739653+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T05:02:57.528270+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T04:13:12.268383+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T06:33:31.848065+00:00 | Debian Oval Importer | Affected by | VCID-58hc-uzqc-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-21T06:06:19.633524+00:00 | Debian Oval Importer | Affected by | VCID-gx4q-9nac-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T20:29:47.750177+00:00 | Debian Oval Importer | Affected by | VCID-c7e7-cdc7-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T20:12:06.936366+00:00 | Debian Oval Importer | Affected by | VCID-8dyd-depr-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |