Important: xmlrpc-c

🗓️ 27 Oct 2025 00:00:00Reported by AmazonType

amazon

amazon🔗 alas.aws.amazon.com

Update xmlrpc-c to patch Expat vulnerabilities and DoS risks.

Reporter	Title	Published	Views	Family All 1308
IBM Security Bulletins	Security Bulletin: AIX/VIOS is affected by multiple vulnerabilities due to Python	19 Nov 202515:04	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with IBM WebSphere Remote Server (CVE-2023-52425)	14 Mar 202413:49	–	ibm
IBM Security Bulletins	Security Bulletin: Oracle Outside In Technology (OIT) Security Vulnerabilities - July 2024	5 Mar 202517:20	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Tivoli Monitoring included WebSphere Application Server	27 Jun 202419:55	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Automation Decision Services for October 2025 - Multiple CVEs addressed	3 Dec 202506:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues	7 May 202417:05	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Open Source affect Cloud Pak System	28 Oct 202417:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	27 May 202523:25	–	ibm
IBM Security Bulletins	Security Bulletin: Denial of Service vulnerability in IBM HTTP Server used by WebSphere Application Server affects IBM Business Automation Workflow (CVE-2023-52425)	27 Mar 202415:46	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a stack overflow vulnerability in libexpat library [CVE-2024-8176]	13 Jun 202516:26	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	2	aarch64	xmlrpc-c	1.51.08-2.amzn2023.0.2	xmlrpc-c-1.51.08-2.amzn2023.0.2.aarch64.rpm
Amazon Linux	2	x86_64	xmlrpc-c	1.51.08-2.amzn2023.0.2	xmlrpc-c-1.51.08-2.amzn2023.0.2.x86_64.rpm
Amazon Linux	2	aarch64	xmlrpc-c-apps	1.51.08-2.amzn2023.0.2	xmlrpc-c-apps-1.51.08-2.amzn2023.0.2.aarch64.rpm
Amazon Linux	2	x86_64	xmlrpc-c-apps	1.51.08-2.amzn2023.0.2	xmlrpc-c-apps-1.51.08-2.amzn2023.0.2.x86_64.rpm
Amazon Linux	2	aarch64	xmlrpc-c-apps-debuginfo	1.51.08-2.amzn2023.0.2	xmlrpc-c-apps-debuginfo-1.51.08-2.amzn2023.0.2.aarch64.rpm
Amazon Linux	2	x86_64	xmlrpc-c-apps-debuginfo	1.51.08-2.amzn2023.0.2	xmlrpc-c-apps-debuginfo-1.51.08-2.amzn2023.0.2.x86_64.rpm
Amazon Linux	2	aarch64	xmlrpc-c-c++	1.51.08-2.amzn2023.0.2	xmlrpc-c-c++-1.51.08-2.amzn2023.0.2.aarch64.rpm
Amazon Linux	2	x86_64	xmlrpc-c-c++	1.51.08-2.amzn2023.0.2	xmlrpc-c-c++-1.51.08-2.amzn2023.0.2.x86_64.rpm
Amazon Linux	2	aarch64	xmlrpc-c-c++-debuginfo	1.51.08-2.amzn2023.0.2	xmlrpc-c-c++-debuginfo-1.51.08-2.amzn2023.0.2.aarch64.rpm
Amazon Linux	2	x86_64	xmlrpc-c-c++-debuginfo	1.51.08-2.amzn2023.0.2	xmlrpc-c-c++-debuginfo-1.51.08-2.amzn2023.0.2.x86_64.rpm

27 Oct 2025 00:00Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.5

EPSS0.01552

SSVC

xmlrpc client libexpat CVE 2023 52425 CVE 2023 52426 CVE 2024 28757 CVE 2024 8176 CVE 2025 59375 amazon linux