Information on source package xerces-c

Available versions

ReleaseVersion
stretch3.1.4+debian-2+deb9u1
stretch (security)3.1.4+debian-2+deb9u2
buster3.2.2+debian-1+deb10u1
bullseye3.2.3+debian-3
sid3.2.3+debian-3

Open issues

BugstretchbusterbullseyesidDescription
CVE-2018-1311vulnerable (no DSA, postponed)fixedfixedfixedThe Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-fre ...

Open unimportant issues

BugstretchbusterbullseyesidDescription
CVE-2012-0880vulnerablevulnerablevulnerablevulnerableApache Xerces-C++ allows remote attackers to cause a denial of service ...

Resolved issues

BugDescription
CVE-2017-12627In Apache Xerces-C XML Parser library before 3.2.1, processing of exte ...
CVE-2016-4463Stack-based buffer overflow in Apache Xerces-C++ before 3.1.4 allows c ...
CVE-2016-2099Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apach ...
CVE-2016-0729Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLU ...
CVE-2015-0252internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote a ...
CVE-2009-1885Stack consumption vulnerability in validators/DTD/DTDScanner.cpp in Ap ...

Security announcements

DSA / DLADescription
DSA-4814-1xerces-c - security update
DLA-2498-1xerces-c - security update
DLA-1328-1xerces-c - security update
DSA-3610-1xerces-c - security update
DLA-535-1xerces-c - security update
DSA-3579-1xerces-c - security update
DLA-467-1xerces-c - security update
DSA-3493-1xerces-c - security update
DLA-433-1xerces-c - security update
DLA-181-1xerces-c - security update
DSA-3199-1xerces-c - security update

Search for package or bug name: Reporting problems