Information on source package xmlsec1

Available versions

ReleaseVersion
jessie1.2.20-2
stretch1.2.23-0.1
buster1.2.27-2
bullseye1.2.28-2
sid1.2.28-2

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2017-1000061vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedxmlsec 1.2.23 and before is vulnerable to XML External Entity Expansio ...

Resolved issues

BugDescription
CVE-2011-1425xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in ...
CVE-2009-3736ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as us ...
CVE-2009-0217The design of the W3C XML Signature Syntax and Processing (XMLDsig) re ...

Security announcements

DSA / DLADescription
DSA-2219-1xmlsec1 - file overwrite
DSA-2219-1xmlsec1 - file overwrite

Search for package or bug name: Reporting problems