VulnerableCode Package Details - pkg:deb/ubuntu/coin3@3.1.4~abc9f50%2Bdfsg1-2

Search for packages

Package details: pkg:deb/ubuntu/coin3@3.1.4~abc9f50%2Bdfsg1-2

Essentials
History (0)

purl	pkg:deb/ubuntu/coin3@3.1.4~abc9f50%2Bdfsg1-2

Next non-vulnerable version	4.0.0+ds-1build1
Latest non-vulnerable version	4.0.0+ds-1build1
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-8dyd-depr-aaam Aliases: CVE-2009-3560	The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed UTF-8 sequences that trigger a buffer over-read, related to the doProlog function in lib/xmlparse.c, a different vulnerability than CVE-2009-2625 and CVE-2009-3720.	4.0.0+ds-1build1 Affected by 0 other vulnerabilities.
VCID-gnd3-sds3-aaam Aliases: CVE-2017-9233	XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.	4.0.0~CMake~6f54f1602475+ds1-2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version