VulnerableCode Package Details - pkg:maven/xalan/xalan@2.7.3

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-738u-1m1q-aaaa	The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. The Apache Xalan Java project is dormant and in the process of being retired. No future releases of Apache Xalan Java to address this issue are expected. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.	CVE-2022-34169 GHSA-9339-86wc-4qgf

Vulnerability

Summary

Aliases

VCID-738u-1m1q-aaaa

The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. The Apache Xalan Java project is dormant and in the process of being retired. No future releases of Apache Xalan Java to address this issue are expected. Note: Java runtimes (such as OpenJDK) include repackaged copies of Xalan.

CVE-2022-34169
GHSA-9339-86wc-4qgf

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-20T16:00:08.398330+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	36.1.3
2025-06-20T16:00:08.347765+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	36.1.3
2025-06-03T22:40:36.017702+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	36.1.0
2025-06-03T22:40:35.972015+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	36.1.0
2025-06-02T22:29:21.926325+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	36.1.2
2025-06-02T22:29:21.881767+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	36.1.2
2025-04-03T20:09:55.155407+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	36.0.0
2025-04-03T20:09:55.030183+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	36.0.0
2025-03-29T10:48:02.589815+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	None	36.0.0
2025-02-18T05:44:58.500413+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	35.1.0
2025-02-18T05:44:58.272698+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	35.1.0
2024-11-21T02:09:53.706803+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	35.0.0
2024-11-19T01:53:04.026946+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.3.2
2024-10-15T18:56:48.442806+00:00	GithubOSV Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/07/GHSA-9339-86wc-4qgf/GHSA-9339-86wc-4qgf.json	34.0.2
2024-10-08T02:26:48.444111+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.0.2
2024-10-07T20:37:54.807321+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/advisories/GHSA-9339-86wc-4qgf	34.0.2
2024-09-23T02:25:02.564988+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.0.1
2024-09-18T09:15:34.499530+00:00	GithubOSV Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/07/GHSA-9339-86wc-4qgf/GHSA-9339-86wc-4qgf.json	34.0.1
2024-09-17T22:03:31.443725+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/advisories/GHSA-9339-86wc-4qgf	34.0.1
2024-04-24T04:53:49.235276+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	34.0.0rc4
2024-04-24T04:53:49.078678+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.0.0rc4
2024-04-23T23:13:53.722149+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/advisories/GHSA-9339-86wc-4qgf	34.0.0rc4
2024-04-23T23:13:53.183229+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	None	34.0.0rc4
2024-04-23T23:09:59.766396+00:00	GithubOSV Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/07/GHSA-9339-86wc-4qgf/GHSA-9339-86wc-4qgf.json	34.0.0rc4
2024-01-10T07:27:28.243769+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	34.0.0rc2
2024-01-10T07:27:28.091247+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.0.0rc2
2024-01-10T01:09:55.309945+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/advisories/GHSA-9339-86wc-4qgf	34.0.0rc2
2024-01-10T01:09:54.787476+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	None	34.0.0rc2
2024-01-04T00:13:05.301858+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	None	34.0.0rc1
2024-01-04T00:13:05.142114+00:00	GitLab Importer	Fixing	VCID-738u-1m1q-aaaa	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/xalan/xalan/CVE-2022-34169.yml	34.0.0rc1
2024-01-03T17:38:19.036603+00:00	GHSA Importer	Fixing	VCID-738u-1m1q-aaaa	https://github.com/advisories/GHSA-9339-86wc-4qgf	34.0.0rc1

2025-06-20T16:00:08.398330+00:00

GitLab Importer

Fixing