CVE-2009-3720

NameCVE-2009-3720
SourceCVE (at NVD; RH)
DescriptionThe updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.
ReferencesDSA-1921-1, DSA-1977-1
NVD severitymedium
Debian Bugs551936, 551938, 560912, 560913, 560914, 560915, 560916, 560917, 560919, 560920, 560921, 560922, 560924, 560925, 560926, 560927, 560928, 560929, 560930, 560931, 560932, 560933, 560935, 560936, 560937, 560940, 560942, 560944, 560945, 560946, 560949, 560950, 560951, 560953
Debian/oldstablepackages ayttm, expat, python-4suite, python-xml, python2.4, python2.5, smart, tdom, vnc4, w3c-libwww, xmlrpc-c are vulnerable.
Debian/stablepackages ayttm, python-4suite, python2.4, python2.5, vnc4, xmlrpc-c, xotcl are vulnerable.
Debian/testingpackages python-4suite, vnc4, xmlrpc-c are vulnerable.
Debian/unstablepackages python-4suite, python2.4, vnc4, xmlrpc-c are vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
audacity (PTS)etch1.2.4b-2.1vulnerable
lenny, lenny (security)1.3.5-2+lenny1fixed
squeeze1.3.10-1fixed
sid1.3.11-2fixed
ayttm (PTS)etch0.4.6+34-3vulnerable
lenny0.5.0+45-1vulnerable
squeeze, sid0.6.1-2fixed
cableswig (PTS)etch0.1.0+cvs20060311-1vulnerable
lenny0.1.0+cvs20080508-1vulnerable
squeeze, sid0.1.0+cvs20090916-1vulnerable
cadaver (PTS)etch0.22.3+debian-1vulnerable
lenny0.23.2-1vulnerable
squeeze, sid0.23.3-1vulnerable
cmake (PTS)etch2.4.5-1vulnerable
etch-backports2.6.0-5~bpo40+1vulnerable
lenny2.6.0-6fixed
squeeze, sid2.8.0-5fixed
coin3 (PTS)squeeze, sid3.1.2-1vulnerable
expat (PTS)etch1.95.8-3.4vulnerable
etch (security)1.95.8-3.4+etch3fixed
lenny, lenny (security)2.0.1-4+lenny3fixed
squeeze, sid2.0.1-7fixed
gdcm (PTS)squeeze2.0.14-2fixed
sid2.0.14-3fixed
ghostscript (PTS)etch-backports8.62.dfsg.1-3.1~bpo40+1vulnerable
lenny, lenny (security)8.62.dfsg.1-3.2lenny1vulnerable
squeeze (security)8.64~dfsg-1+squeeze1vulnerable
squeeze, sid8.70~dfsg-2.1vulnerable
grmonitor (PTS)etch0.81-4.1vulnerable
lenny0.81-4.2vulnerable
gs-gpl (PTS)etch, etch (security)8.54.dfsg.1-5etch2vulnerable
iceape (PTS)etch, etch (security)1.0.13~pre080614i-0etch1vulnerable
lenny1.1.14-1.1vulnerable
squeeze, sid2.0.1-1vulnerable
iceweasel (PTS)etch, etch (security)2.0.0.19-0etch1fixed
lenny, lenny (security)3.0.6-3fixed
squeeze3.5.6-1fixed
lenny-backports3.5.6-1~bpo50+1fixed
sid3.5.6-2fixed
insighttoolkit (PTS)lenny3.6.0-3vulnerable
squeeze, sid3.16.0-1fixed
kompozer (PTS)squeeze, sid1:0.8~b1-2fixed
lenny-backports1:0.8~b1-2~bpo50+1fixed
matanza (PTS)etch0.13-3.3vulnerable
lenny0.13-3.4vulnerable
squeeze, sid0.13+ds1-1vulnerable
paraview (PTS)lenny3.2.2-1vulnerable
sid3.6.2-1fixed
poco (PTS)lenny1.3.2+dfsg1-3vulnerable
squeeze, sid1.3.6p1-1fixed
python-4suite (PTS)etch0.99cvs20060405-1.1vulnerable
lenny1.0.2-5vulnerable
squeeze1.0.2-7vulnerable
sid1.0.2-7.1vulnerable
python-xml (PTS)etch0.8.4-6vulnerable
lenny0.8.4-10.1+lenny1fixed
python2.4 (PTS)etch2.4.4-3+etch2vulnerable
etch (security)2.4.4-3+etch3fixed
lenny2.4.6-1vulnerable
lenny (security)2.4.6-1+lenny1fixed
sid2.4.6-2.2vulnerable
python2.5 (PTS)etch2.5-5+etch1vulnerable
etch (security)2.5-5+etch2fixed
lenny2.5.2-15vulnerable
lenny (security)2.5.2-15+lenny1fixed
squeeze, sid2.5.5-2fixed
simgear (PTS)etch0.3.10-2vulnerable
lenny, squeeze1.0.0-4vulnerable
sid1.9.1-2vulnerable
smart (PTS)etch0.41+svn727-1.1vulnerable
squeeze, sid1.2-5fixed
tdom (PTS)etch0.7.8-5vulnerable
lenny0.8.3~20080525-2fixed
squeeze, sid0.8.3~20080525-3fixed
texlive-bin (PTS)etch2005.dfsg.2-12fixed
etch-backports2007.dfsg.2-3~bpo40+1fixed
lenny2007.dfsg.2-4+lenny2fixed
squeeze, sid2009-5fixed
tla (PTS)etch1.3.5+dfsg-9vulnerable
lenny1.3.5+dfsg-14vulnerable
squeeze, sid1.3.5+dfsg-15fixed
udunits (PTS)squeeze, sid2.1.8-4fixed
vnc4 (PTS)etch, etch (security)4.1.1+X4.3.0-21+etch1vulnerable
lenny4.1.1+X4.3.0-31vulnerable
squeeze4.1.1+X4.3.0-34vulnerable
sid4.1.1+X4.3.0-35vulnerable
vxl (PTS)squeeze, sid1.13.0-2fixed
w3c-libwww (PTS)etch5.4.0-11vulnerable
wxwidgets2.6 (PTS)etch2.6.3.2.1.5vulnerable
etch (security)2.6.3.2.1.5+etch1vulnerable
lenny, lenny (security)2.6.3.2.2-3+lenny1vulnerable
squeeze, sid2.6.3.2.2-5fixed
wxwidgets2.8 (PTS)lenny, lenny (security)2.8.7.1-1.1+lenny1vulnerable
squeeze2.8.10.1-2fixed
sid2.8.10.1-3fixed
wxwindows2.4 (PTS)etch2.4.5.1.1vulnerable
etch (security)2.4.5.1.1+etch1vulnerable
xmlrpc-c (PTS)etch0.9.10-4vulnerable
lenny, squeeze, sid1.06.27-1vulnerable
experimental1.16.07-1vulnerable
xotcl (PTS)lenny1.6.1-1vulnerable
squeeze, sid1.6.5-1.1fixed
xulrunner (PTS)etch, etch (security)1.8.0.15~pre080614i-0etch1vulnerable
lenny, lenny (security)1.9.0.16-1vulnerable
squeeze1.9.1.6-1vulnerable
lenny-backports1.9.1.6-1~bpo50+2vulnerable
sid1.9.1.6-2vulnerable

The next table lists affected binary packages.

Binary PackageReleaseVersionStatusArchitecures
aolserver4-xotcl, xotcl-doclenny1.6.1-1vulnerableall
squeeze1.6.3-2vulnerableall
sid, squeeze1.6.5-1.1fixedall
audacityetch1.2.4b-2.1vulnerablealpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch1.2.4b-2.1+b1vulnerablehppa
lenny1.3.5-2+lenny1fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny (security)1.3.5-2+lenny1fixedalpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
audacity, audacity-dbgsid1.3.10-1fixedmips
squeeze1.3.10-1fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.3.11-1fixedmipsel
sid1.3.11-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, powerpc, s390, sparc
audacity-datasqueeze1.3.9-4fixedall
sid, squeeze1.3.10-1fixedall
sid1.3.11-1fixedall
sid1.3.11-2fixedall
ayttmetch0.4.6+34-3vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny0.5.0+45-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid0.6.1-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze0.6.1-2fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cableswigetch0.1.0+cvs20060311-1vulnerablealpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch0.1.0+cvs20060311-1+b1vulnerablehppa
lenny0.1.0+cvs20080508-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid0.1.0+cvs20090916-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze0.1.0+cvs20090916-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cadaveretch0.22.3+debian-1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny0.23.2-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid0.23.3-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze0.23.3-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cmakeetch2.4.5-1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch-backports2.6.0-5~bpo40+1vulnerablealpha, amd64, arm, hppa, i386, ia64, mipsel, powerpc, s390, sparc
lenny2.6.0-6fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cmake, cmake-curses-gui, cmake-qt-guisid2.8.0-5fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.8.0-5fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
cmake-datasqueeze2.6.4-3fixedall
sid, squeeze2.8.0-5fixedall
expat, libexpat1, libexpat1-devetch1.95.8-3.4vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)1.95.8-3.4+etch3fixedalpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny, lenny (security)2.0.1-4+lenny3fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid2.0.1-7fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.0.1-7fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
firefox, firefox-dom-inspector, firefox-gnome-support, iceweasel-dom-inspector, mozilla-firefox, mozilla-firefox-dom-inspector, mozilla-firefox-gnome-supportetch, etch (security)2.0.0.19-0etch1fixedall
ghostscript, ghostscript-cups, ghostscript-x, libgs-dev, libgs8sid8.70~dfsg-2.1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze8.70~dfsg-2.1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
ghostscript, ghostscript-x, libgs-dev, libgs8etch-backports8.62.dfsg.1-3.1~bpo40+1vulnerableamd64, i386, powerpc, s390
lenny, lenny (security)8.62.dfsg.1-3.2lenny1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze (security)8.64~dfsg-1+squeeze1vulnerablealpha, amd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
ghostscript-doc, gs, gs-aladdin, gs-common, gs-esp, gs-gpletch-backports8.62.dfsg.1-3.1~bpo40+1vulnerableall
lenny, lenny (security)8.62.dfsg.1-3.2lenny1vulnerableall
squeeze (security)8.64~dfsg-1+squeeze1vulnerableall
ghostscript-doc, gs-common, gs-esp, gs-gplsqueeze8.70~dfsg-2vulnerableall
sid, squeeze8.70~dfsg-2.1vulnerableall
grmonitoretch0.81-4.1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny0.81-4.2vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
gsetch, etch (security)8.54.dfsg.1-5etch2vulnerableall
gs-gpletch, etch (security)8.54.dfsg.1-5etch2vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
iceape, iceape-chatzilla, iceape-devetch, etch (security)1.0.13~pre080614i-0etch1vulnerableall
sid, squeeze2.0.1-1vulnerableall
iceape-browser, iceape-calendar, iceape-dbg, iceape-dom-inspector, iceape-gnome-support, iceape-mailnewsetch, etch (security)1.0.13~pre080614i-0etch1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
iceape-browser, iceape-dbg, iceape-mailnewssid2.0.1-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.0.1-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
iceape-devlenny, squeeze1.1.14-1.1vulnerableall
iceape-dev-binlenny1.1.14-1.1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
iceweasel, iceweasel-dbglenny, lenny (security)3.0.6-3fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny-backports3.5.6-1~bpo50+1fixedamd64, i386, powerpc, s390
squeeze3.5.6-1fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid3.5.6-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
iceweasel, iceweasel-dbg, iceweasel-gnome-supportetch, etch (security)2.0.0.19-0etch1fixedalpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
iceweasel-gnome-supportlenny, lenny (security)3.0.6-3fixedall
squeeze3.0.14-1fixedall
lenny-backports3.5.6-1~bpo50+1fixedall
squeeze3.5.6-1fixedall
idle-python2.4, python2.4-examplesetch2.4.4-3+etch2vulnerableall
etch (security)2.4.4-3+etch3fixedall
lenny2.4.6-1vulnerableall
lenny (security)2.4.6-1+lenny1fixedall
sid, squeeze2.4.6-2.2vulnerableall
idle-python2.5, python2.5-examplesetch2.5-5+etch1vulnerableall
etch (security)2.5-5+etch2fixedall
lenny2.5.2-15vulnerableall
lenny (security)2.5.2-15+lenny1fixedall
squeeze2.5.4-2vulnerableall
sid, squeeze2.5.5-2fixedall
insighttoolkit3-exampleslenny3.6.0-3vulnerableall
sid, squeeze3.16.0-1fixedall
kompozerlenny-backports1:0.8~b1-2~bpo50+1fixedalpha, hppa, i386, ia64, powerpc, s390, sparc
sid1:0.8~b1-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze1:0.8~b1-2fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
kompozer-data, kompozer-devsqueeze1:0.8~alpha4+dfsg+svn163-2vulnerableall
lenny-backports1:0.8~b1-2~bpo50+1fixedall
sid, squeeze1:0.8~b1-2fixedall
lib64expat1, lib64expat1-devlenny, lenny (security)2.0.1-4+lenny3fixedi386, powerpc, s390, sparc
sid, squeeze2.0.1-7fixedi386, powerpc, s390, sparc
libcoin60, libcoin60-devsid3.1.2-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze3.1.2-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libcoin60-doc, libcoin60-runtimesqueeze3.1.0-2vulnerableall
sid, squeeze3.1.2-1vulnerableall
libgdcm-cil, libvtkgdcm-cilsid2.0.14-2fixedia64
squeeze2.0.14-2fixedamd64, armel, i386, ia64, powerpc, s390, sparc
sid2.0.14-3fixedamd64, armel, i386, kfreebsd-amd64, kfreebsd-i386, powerpc, s390, sparc
libgdcm-java, libgdcm-tools, libgdcm2-dev, libgdcm2.0, libgdcm2.0-dbg, libvtkgdcm-java, libvtkgdcm-tools, libvtkgdcm2-dev, libvtkgdcm2.0, python-gdcm, python-vtkgdcmsid2.0.14-2fixedia64, mips, mipsel
squeeze2.0.14-2fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid2.0.14-3fixedalpha, amd64, armel, hppa, i386, kfreebsd-amd64, kfreebsd-i386, powerpc, s390, sparc
libinsighttoolkit3-dev, libinsighttoolkit3.16, python-insighttoolkit3, tcl8.4-insighttoolkit3sid3.16.0-1fixedalpha, amd64, armel, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze3.16.0-1fixedamd64, armel, i386, ia64, mips, mipsel, powerpc, s390, sparc
libinsighttoolkit3-dev, libinsighttoolkit3.6, python-insighttoolkit3, tcl8.4-insighttoolkit3lenny3.6.0-3vulnerablealpha, amd64, arm, armel, i386, ia64, mips, mipsel, powerpc, s390, sparc
libkpathsea-dev, libkpathsea4, texlive-base-bin, texlive-base-bin-doc, texlive-extra-utils, texlive-font-utils, texlive-lang-indic, texlive-metapost, texlive-metapost-doc, texlive-music, texlive-omega, texlive-xetexetch-backports2007.dfsg.2-3~bpo40+1fixedamd64, hppa, i386, ia64, mipsel, powerpc, s390, sparc
lenny2007.dfsg.2-4+lenny2fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libkpathsea-dev, libkpathsea5, texlive-binariessid2009-5fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2009-5fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libmozillainterfaces-javasqueeze1.9.0.14-1vulnerableall
lenny, lenny (security)1.9.0.16-1vulnerableall
lenny-backports1.9.1.6-1~bpo50+2vulnerableall
sid, squeeze1.9.1.6-1vulnerableall
sid1.9.1.6-2vulnerableall
libmozillainterfaces-java, libmozjs-dev, libnspr4-dev, libnss3-dev, libsmjs-dev, libsmjs1, libxul-common, libxul-devetch, etch (security)1.8.0.15~pre080614i-0etch1vulnerableall
libmozjs-dev, libmozjs1d, libmozjs1d-dbg, python-xpcom, spidermonkey-bin, xulrunner-1.9, xulrunner-1.9-dbg, xulrunner-1.9-gnome-support, xulrunner-devlenny, lenny (security)1.9.0.16-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libmozjs-dev, libmozjs2d, libmozjs2d-dbg, python-xpcom, spidermonkey-bin, xulrunner-1.9.1, xulrunner-1.9.1-dbg, xulrunner-1.9.1-gnome-support, xulrunner-devlenny-backports1.9.1.6-1~bpo50+2vulnerablealpha, amd64, arm, armel, hppa, i386, powerpc, s390, sparc
sid1.9.1.6-1vulnerablealpha, armel, mips, powerpc, sparc
squeeze1.9.1.6-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libmozjs-dev, libmozjs2d, libmozjs2d-dbg, python-xpcom, spidermonkey-bin, xulrunner-1.9.1, xulrunner-1.9.1-dbg, xulrunner-devsid1.9.1.6-2vulnerableamd64, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mipsel, s390
libmozjs0d, libmozjs0d-dbg, libnspr4-0d, libnspr4-0d-dbg, libnss3-0d, libnss3-0d-dbg, libnss3-tools, libxul0d, libxul0d-dbg, python-xpcom, spidermonkey-bin, xulrunner, xulrunner-gnome-supportetch, etch (security)1.8.0.15~pre080614i-0etch1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libpoco-dev, libpococrypto9, libpococrypto9-dbg, libpocodata9, libpocodata9-dbg, libpocofoundation9, libpocofoundation9-dbg, libpocomysql9, libpocomysql9-dbg, libpoconet9, libpoconet9-dbg, libpoconetssl9, libpoconetssl9-dbg, libpocoodbc9, libpocoodbc9-dbg, libpocosqlite9, libpocosqlite9-dbg, libpocoutil9, libpocoutil9-dbg, libpocoxml9, libpocoxml9-dbg, libpocozip9, libpocozip9-dbgsid1.3.6p1-1fixedalpha, amd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze1.3.6p1-1fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libpoco5-dev, libpocodata5, libpocodata5-dbg, libpocofoundation5, libpocofoundation5-dbg, libpoconet5, libpoconet5-dbg, libpoconetssl5, libpoconetssl5-dbg, libpocoodbc5, libpocoodbc5-dbg, libpocosqlite5, libpocosqlite5-dbg, libpocoutil5, libpocoutil5-dbg, libpocoxml5, libpocoxml5-dbglenny1.3.2+dfsg1-3vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libudunits2-0, libudunits2-dev, udunits-binsid2.1.8-4fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.1.8-4fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libvxl1-dev, libvxl1.13sid1.13.0-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze1.13.0-2fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwww-dev, libwww-ssl-dev, libwww-ssl0, libwww0etch5.4.0-11vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwxbase2.4-1, libwxbase2.4-dbg, libwxbase2.4-dev, libwxgtk2.4-1, libwxgtk2.4-1-contrib, libwxgtk2.4-contrib-dev, libwxgtk2.4-dbg, libwxgtk2.4-dev, python-wxgtk2.4, wx2.4-headersetch2.4.5.1.1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)2.4.5.1.1+etch1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwxbase2.6-0, libwxbase2.6-dbg, libwxbase2.6-dev, libwxgtk2.6-0, libwxgtk2.6-dbg, libwxgtk2.6-dev, python-wxgtk2.6, python-wxgtk2.6-dbg, wx-common, wx2.6-headerslenny, lenny (security)2.6.3.2.2-3+lenny1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwxbase2.6-0, libwxbase2.6-dbg, libwxbase2.6-dev, libwxgtk2.6-0, libwxgtk2.6-dbg, libwxgtk2.6-dev, python-wxgtk2.6, python-wxgtk2.6-dbg, wx2.6-headerssid2.6.3.2.2-5fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.6.3.2.2-5fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwxbase2.6-0, libwxbase2.6-dbg, libwxbase2.6-dev, libwxgtk2.6-0, libwxgtk2.6-dbg, libwxgtk2.6-dev, python-wxgtk2.6, wx-common, wx2.6-headersetch2.6.3.2.1.5vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)2.6.3.2.1.5+etch1vulnerablealpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
libwxbase2.8-0, libwxbase2.8-dbg, libwxbase2.8-dev, libwxgtk2.8-0, libwxgtk2.8-dbg, libwxgtk2.8-dev, python-wxgtk2.8, python-wxgtk2.8-dbg, wx-common, wx2.8-headerssid2.8.10.1-2fixedmips
squeeze2.8.10.1-2fixedia64, mips, mipsel
squeeze2.8.10.1-2+b1fixedamd64, armel, hppa, i386, powerpc, s390, sparc
sid2.8.10.1-3fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mipsel, powerpc, s390, sparc
libwxbase2.8-0, libwxbase2.8-dbg, libwxbase2.8-dev, libwxgtk2.8-0, libwxgtk2.8-dbg, libwxgtk2.8-dev, python-wxgtk2.8, python-wxgtk2.8-dbg, wx2.8-headerslenny, lenny (security)2.8.7.1-1.1+lenny1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
libxmlrpc-c3, libxmlrpc-c3-dev, xml-rpc-api2cpp, xml-rpc-api2txtetch0.9.10-4vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny1.06.27-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.06.27-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze1.06.27-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
experimental1.16.07-1vulnerablealpha, amd64, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
matanzaetch0.13-3.3vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny0.13-3.4vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid0.13+ds1-1vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze0.13+ds1-1vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
mozilla, mozilla-browser, mozilla-calendar, mozilla-chatzilla, mozilla-dev, mozilla-dom-inspector, mozilla-js-debugger, mozilla-mailnews, mozilla-psmetch, etch (security)2:1.8+1.0.13~pre080614i-0etch1vulnerableall
paraviewlenny3.2.2-1vulnerableamd64, i386, powerpc
sid3.4.0-5vulnerablearmel
sid3.6.2-1fixedmips, mipsel, sparc
sid3.6.2-1+b1fixedalpha, amd64, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, powerpc, s390
python-4suiteetch0.99cvs20060405-1.1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
python-4suite-common, python-4suite-doc, python-4suite-serveretch0.99cvs20060405-1.1vulnerableall
python-4suite-doclenny1.0.2-5vulnerableall
sid, squeeze1.0.2-7vulnerableall
sid1.0.2-7.1vulnerableall
python-4suite-xmllenny1.0.2-5vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.0.2-7vulnerablemips
squeeze1.0.2-7vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.0.2-7.1vulnerablealpha, amd64, armel, hppa, i386, ia64, mipsel, powerpc, s390, sparc
python-smartpm, smartpm-coresid1.2-5fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze1.2-5fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
python-wxtools, python-wxversion, wx2.6-doc, wx2.6-examples, wx2.6-i18netch2.6.3.2.1.5vulnerableall
etch (security)2.6.3.2.1.5+etch1vulnerableall
lenny, lenny (security)2.6.3.2.2-3+lenny1vulnerableall
squeeze2.6.3.2.2-3.1vulnerableall
python-wxtools, python-wxversion, wx2.8-doc, wx2.8-examples, wx2.8-i18nsid, squeeze2.8.10.1-2fixedall
sid2.8.10.1-3fixedall
python-xmletch0.8.4-6vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
python-xml, python-xml-dbglenny0.8.4-10.1+lenny1fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
python-xml-doc, xbel, xbel-utilssqueeze0.8.4-10.1vulnerableall
lenny0.8.4-10.1+lenny1fixedall
python2.4, python2.4-dbg, python2.4-dev, python2.4-minimaletch2.4.4-3+etch2vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)2.4.4-3+etch2vulnerablehppa
etch (security)2.4.4-3+etch3fixedalpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny2.4.6-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny (security)2.4.6-1+lenny1fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390
sid2.4.6-2.2vulnerablealpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
python2.5, python2.5-dbg, python2.5-dev, python2.5-minimaletch2.5-5+etch1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch (security)2.5-5+etch1vulnerablehppa
etch (security)2.5-5+etch2fixedalpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny2.5.2-15vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
lenny (security)2.5.2-15+lenny1fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390
sid2.5.5-2fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze2.5.5-2fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
simgear-dev, simgear0etch0.3.10-2vulnerablealpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, s390, sparc
etch0.3.10-2+b1vulnerablehppa
simgear-dev, simgear1.0.0lenny1.0.0-4vulnerablealpha
lenny1.0.0-4+b1vulnerableamd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze1.0.0-4+b3vulnerableamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
simgear-dev, simgear1.9.1sid1.9.1-2vulnerablealpha, amd64, i386, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, s390, sparc
sid1.9.1-2+b1vulnerablearmel, hppa, ia64, powerpc
smartpmetch0.41+svn727-1.1vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze1.2-4vulnerableall
sid, squeeze1.2-5fixedall
tdometch0.7.8-5vulnerablealpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
tdom, tdom-devlenny0.8.3~20080525-2fixedalpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid0.8.3~20080525-3fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze0.8.3~20080525-3fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
texlive-base-bin, texlive-extra-utils, texlive-font-utils, texlive-lang-indic, texlive-metapost, texlive-music, texlive-omega, texlive-pdfetexetch2005.dfsg.2-12fixedalpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
tlaetch1.3.5+dfsg-9vulnerablealpha, amd64, arm, hppa, ia64, mips, mipsel, powerpc, s390, sparc
etch1.3.5+dfsg-9+b1vulnerablei386
lenny1.3.5+dfsg-14vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.3.5+dfsg-15fixedalpha, amd64, armel, hppa, i386, ia64, kfreebsd-amd64, kfreebsd-i386, mips, mipsel, powerpc, s390, sparc
squeeze1.3.5+dfsg-15fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
tla-docetch1.3.5+dfsg-9vulnerableall
lenny, squeeze1.3.5+dfsg-14vulnerableall
sid, squeeze1.3.5+dfsg-15fixedall
vnc4-common, vnc4server, xvnc4vieweretch, etch (security)4.1.1+X4.3.0-21+etch1vulnerablealpha, amd64, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
vnc4server, xvnc4viewerlenny4.1.1+X4.3.0-31vulnerableamd64, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze4.1.1+X4.3.0-34vulnerableamd64, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid4.1.1+X4.3.0-35vulnerableamd64, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
wx2.4-doc, wx2.4-examples, wx2.4-i18netch2.4.5.1.1vulnerableall
etch (security)2.4.5.1.1+etch1vulnerableall
wx2.6-doc, wx2.6-examples, wx2.6-i18nsid, squeeze2.6.3.2.2-5fixedall
wx2.8-doc, wx2.8-examples, wx2.8-i18nsqueeze2.8.7.1-1.1vulnerableall
lenny, lenny (security)2.8.7.1-1.1+lenny1vulnerableall
xbel, xbel-utilsetch0.8.4-6vulnerableall
xotcl, xotcl-dev, xotcl-shellslenny1.6.1-1vulnerablealpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
sid1.6.5-1.1fixedalpha, amd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
squeeze1.6.5-1.1fixedamd64, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc

The information above is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
audacitysource(unstable)1.3.2-1unimportant560919
ayttmsource(unstable)0.6.1-2low560924
cableswigsource(unstable)(unfixed)unimportant560925
cadaversource(unstable)(unfixed)unimportant560926
cmakesource(unstable)2.6.0-6unimportant560927
coin3source(unstable)(unfixed)unimportant560928
expatsource(unstable)2.0.1-5low551936
expatsourceetch1.95.8-3.4+etch1unknownDSA-1921-1
expatsourcelenny2.0.1-4+lenny1unknownDSA-1921-1
gdcmsource(unstable)2.0.14-2low560929
ghostscriptsource(unstable)(unfixed)unimportant560930
grmonitorsource(unstable)(unfixed)unimportant560931
gs-gplsource(unstable)(unfixed)unimportant
iceapesource(unstable)(unfixed)unimportant560932
iceweaselsource(unstable)(not affected)
insighttoolkitsource(unstable)3.16.0-1unimportant560933
kompozersource(unstable)1:0.8~b1-2unimportant560944
matanzasource(unstable)(unfixed)unimportant560920
paraviewsource(unstable)3.6.2-1unimportant560935
pocosource(unstable)1.3.6p1-1unimportant560936
python-4suitesource(unstable)(unfixed)low560914
python-xmlsource(unstable)(unfixed)low560951
python-xmlsourcelenny0.8.4-10.1+lenny1unknown
python2.4source(unstable)(unfixed)low560913
python2.4sourceetch2.4.4-3+etch3unknownDSA-1977-1
python2.4sourcelenny2.4.6-1+lenny1unknownDSA-1977-1
python2.5source(unstable)2.5.4-3.1low560912
python2.5sourceetch2.5-5+etch2unknownDSA-1977-1
python2.5sourcelenny2.5.2-15+lenny1unknownDSA-1977-1
simgearsource(unstable)(unfixed)unimportant560937
smartsource(unstable)1.2-5low560953
tdomsource(unstable)0.8.3~20080525-1low560921
texlive-binsource(unstable)(not affected)
tlasource(unstable)1.3.5+dfsg-15unimportant560940
udunitssource(unstable)2.1.8-4unimportant560922
vnc4source(unstable)(unfixed)low560949
vxlsource(unstable)1.13.0-2low560945
w3c-libwwwsource(unstable)(unfixed)low551938
wxwidgets2.6source(unstable)2.6.3.2.2-4unimportant560916
wxwidgets2.8source(unstable)2.8.10.1-2unimportant560917
wxwindows2.4source(unstable)(unfixed)unimportant560915
xmlrpc-csource(unstable)(unfixed)low560942
xotclsource(unstable)1.6.5-1.1low560950
xulrunnersource(unstable)(unfixed)unimportant560946

Notes

[etch] - w3c-libwww <no-dsa> (Minor issue, only used by fringe apps)
[etch] - python-xml <no-dsa> (minor issue)
[etch] - python-4suite <no-dsa> (Minor issue)
[lenny] - python-4suite <no-dsa> (Minor issue)
[etch] - tdom <no-dsa> (minor issue)
[etch] - ayttm <no-dsa> (minor issue)
[lenny] - ayttm <no-dsa> (minor issue)
[etch] - smart <no-dsa> (minor issue)
[lenny] - smart <no-dsa> (minor issue)
[etch] - xmlrpc-c <no-dsa> (minor issue)
[lenny] - xmlrpc-c <no-dsa> (minor issue)
- iceweasel <not-affected> (uses xulrunner; bug #560943)
- texlive-bin <not-affected> (Files are not compiled in, see #560948)
[etch] - vnc4 <no-dsa> (minor issue)
[lenny] - vnc4 <no-dsa> (minor issue)
[lenny] - xotcl <no-dsa> (minor issue)
Search for package or bug name: Reporting problems

Home - Testing Security Team - Debian Security - Imprint