A specially-crafted XML input could fool the parser into changing
from DTD parsing to document parsing too early; a consecutive call to
XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then
resulted in a heap-based buffer overread.

For Debian 8 "Jessie", this issue has been fixed in expat version
2.1.0-6+deb8u6.

We recommend that you upgrade your expat packages.

Regards,

  ,&#x27;&#x27;`.
 : :&#x27;  :     Chris Lamb
 `. `&#x27;`      [email protected] / chris-lamb.co.uk
   `-

OSVersionArchitecturePackageVersionFilename
Debian8amd64libexpat1-dev< 2.1.0-6+deb8u6libexpat1-dev_2.1.0-6+deb8u6_amd64.deb
Debian8i386expat< 2.1.0-6+deb8u6expat_2.1.0-6+deb8u6_i386.deb
Debian8amd64libexpat1-udeb< 2.1.0-6+deb8u6libexpat1-udeb_2.1.0-6+deb8u6_amd64.deb
Debian8amd64expat< 2.1.0-6+deb8u6expat_2.1.0-6+deb8u6_amd64.deb
Debian8armelexpat< 2.1.0-6+deb8u6expat_2.1.0-6+deb8u6_armel.deb
Debian8i386libexpat1-udeb< 2.1.0-6+deb8u6libexpat1-udeb_2.1.0-6+deb8u6_i386.deb
Debian8allexpat< 2.1.0-6+deb8u6expat_2.1.0-6+deb8u6_all.deb
Debian8amd64libexpat1< 2.1.0-6+deb8u6libexpat1_2.1.0-6+deb8u6_amd64.deb
Debian8armhfexpat< 2.1.0-6+deb8u6expat_2.1.0-6+deb8u6_armhf.deb
Debian8i386lib64expat1< 2.1.0-6+deb8u6lib64expat1_2.1.0-6+deb8u6_i386.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	amd64	libexpat1-dev	< 2.1.0-6+deb8u6	libexpat1-dev_2.1.0-6+deb8u6_amd64.deb
Debian	8	i386	expat	< 2.1.0-6+deb8u6	expat_2.1.0-6+deb8u6_i386.deb
Debian	8	amd64	libexpat1-udeb	< 2.1.0-6+deb8u6	libexpat1-udeb_2.1.0-6+deb8u6_amd64.deb
Debian	8	amd64	expat	< 2.1.0-6+deb8u6	expat_2.1.0-6+deb8u6_amd64.deb
Debian	8	armel	expat	< 2.1.0-6+deb8u6	expat_2.1.0-6+deb8u6_armel.deb
Debian	8	i386	libexpat1-udeb	< 2.1.0-6+deb8u6	libexpat1-udeb_2.1.0-6+deb8u6_i386.deb
Debian	8	all	expat	< 2.1.0-6+deb8u6	expat_2.1.0-6+deb8u6_all.deb
Debian	8	amd64	libexpat1	< 2.1.0-6+deb8u6	libexpat1_2.1.0-6+deb8u6_amd64.deb
Debian	8	armhf	expat	< 2.1.0-6+deb8u6	expat_2.1.0-6+deb8u6_armhf.deb
Debian	8	i386	lib64expat1	< 2.1.0-6+deb8u6	lib64expat1_2.1.0-6+deb8u6_i386.deb

Rows per page:

1-10 of 191

openvas 35

nessus 70

fedora 3

suse 5

redhatcve 1

ibm 10

freebsd 1

f5 2

osv 9

cve 1

slackware 3

mageia 2

symantec 1

prion 1

veracode 1

ubuntucve 1

debiancve 1

ubuntu 3

alpinelinux 1

cloudfoundry 1

debian 6

cbl_mariner 1

oraclelinux 4

almalinux 1

centos 4

amazon 4

altlinux 3

rocky 1

redhat 7

gentoo 1

apple 6

photon 2

kaspersky 4

archlinux 1

mozilla 2

openvas

Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2020-1075)

2020-01-23 00:00:00

Fedora Update for expat FEDORA-2019-672ae0f060

2019-10-04 00:00:00

Ubuntu: Security Advisory (USN-4132-2)

2022-08-26 00:00:00

nessus

Debian DSA-4530-1 : expat - security update

2019-09-23 00:00:00

Photon OS 2.0: Expat PHSA-2020-2.0-0254

2020-06-22 00:00:00

Ubuntu 16.04 LTS / 18.04 LTS : Expat vulnerability (USN-4132-1)

2019-09-16 00:00:00

fedora

[SECURITY] Fedora 30 Update: expat-2.2.8-1.fc30

2019-09-25 01:08:45

[SECURITY] Fedora 31 Update: expat-2.2.8-1.fc31

2019-09-21 00:04:26

[SECURITY] Fedora 29 Update: expat-2.2.8-1.fc29

2019-10-02 01:41:36

suse

Security update for expat (moderate)

2019-09-28 00:00:00

Security update for expat (moderate)

2019-09-28 00:00:00

Security update for MozillaFirefox, MozillaFirefox-branding-SLE (important)

2019-11-09 00:00:00

redhatcve

CVE-2019-15903

2019-12-28 03:54:22

ibm

Security Bulletin: A security vulnerability has been disclosed in Expat, which is installed as part of IBM Tivoli Network Manager (CVE-2019-15903).

2020-03-23 12:37:53

Security Bulletin: IBM Prospect is affected by Expat XML Parser vulnerability (CVE-2019-15903)

2020-06-02 16:38:19

Security Bulletin: Vulnerabilities in Expat component shipped with IBM Rational ClearCase (CVE-2019-15903)

2020-03-27 14:17:53

freebsd

python 3.7 -- multiple vulnerabilities

2019-09-14 00:00:00

K34239812 : Libexpat vulnerability CVE-2019-15903

2022-08-05 00:00:00

K05295469 : Expat vulnerability CVE-2019-15903

2022-02-03 00:00:00

osv

CVE-2019-15903

2019-09-04 06:15:10

expat - security update

2019-09-22 00:00:00

expat - security update

2019-09-06 00:00:00

cve

CVE-2019-15903

2019-09-04 06:15:00

slackware

[slackware-security] expat

2019-09-16 21:54:40

[slackware-security] python

2019-10-20 20:16:04

[slackware-security] mozilla-firefox

2019-10-22 19:35:11

mageia

Updated expat packages fix security vulnerability

2019-11-08 02:36:48

Updated thunderbird packages fix security vulnerabilities

2019-11-08 02:36:48

symantec

Libexpat Expat CVE-2019-15903 Heap Buffer Overflow Vulnerability

2019-09-04 00:00:00

prion

Heap overflow

2019-09-04 06:15:00

veracode

Denial Of Service (Dos)

2019-09-05 06:48:20

ubuntucve

CVE-2019-15903

2019-09-04 00:00:00

debiancve

CVE-2019-15903

2019-09-04 06:15:00

ubuntu

Expat vulnerability

2019-09-12 00:00:00

Expat vulnerability

2019-09-12 00:00:00

VTK vulnerabilities

2021-03-15 00:00:00

alpinelinux

CVE-2019-15903

2019-09-04 06:15:00

cloudfoundry

USN-4132-1: Expat vulnerability | Cloud Foundry

2019-09-30 00:00:00

debian

[SECURITY] [DSA 4530-1] expat security update

2019-09-22 07:41:45

[SECURITY] [DSA 4530-1] expat security update

2019-09-22 07:41:45

[SECURITY] [DLA 1987-1] firefox-esr security update

2019-11-10 09:50:09

cbl_mariner

CVE-2019-15903 affecting package expat 2.2.6-4

2022-01-10 03:59:19

oraclelinux

expat security update

2020-11-10 00:00:00

expat security update

2020-10-06 00:00:00

thunderbird security update

2019-10-30 00:00:00

almalinux

Moderate: expat security update

2020-11-03 12:09:00

centos

expat security update

2020-10-20 17:58:03

thunderbird security update

2019-11-14 01:20:42

thunderbird security update

2019-10-31 14:48:49

amazon

Medium: expat

2020-12-16 20:31:00

Medium: expat

2020-10-22 17:32:00

Medium: expat

2021-01-12 22:51:00

altlinux

Security fix for the ALT Linux 9 package expat version 2.2.9-alt1

2020-05-31 00:00:00

Security fix for the ALT Linux 10 package thunderbird version 68.2.2-alt1

2019-11-09 00:00:00

Security fix for the ALT Linux 10 package firefox-esr version 68.2.0-alt1

2019-10-27 00:00:00

rocky

expat security update

2020-11-03 12:09:00

redhat

(RHSA-2020:4484) Moderate: expat security update

2020-11-03 12:09:00

(RHSA-2020:3952) Moderate: expat security update

2020-09-29 07:46:19

(RHSA-2019:3756) Important: thunderbird security update

2019-11-06 16:10:14

gentoo

Expat: Multiple vulnerabilities

2019-11-25 00:00:00

apple

About the security content of iCloud for Windows 10.9 - Apple Support

2020-04-05 05:12:53

About the security content of iCloud for Windows 7.16

2019-12-11 00:00:00

About the security content of iCloud for Windows 10.9

2019-12-11 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0254

2020-06-18 00:00:00

Important Photon OS Security Update - PHSA-2020-0254

2020-06-18 00:00:00

kaspersky

KLA11624 Multiple vulnerabilities in Apple iCloud

2019-12-11 00:00:00

KLA11623 Multiple vulnerabilities in Apple iTunes

2019-12-11 00:00:00

KLA11591 Multiple vulnerabilities in Mozilla Thunderbird

2019-09-22 00:00:00

archlinux

[ASA-201910-15] thunderbird: multiple issues

2019-10-26 00:00:00

mozilla

Security vulnerabilities fixed in - Firefox ESR 68.2 — Mozilla

2019-10-22 00:00:00

Security vulnerabilities fixed in - Thunderbird 68.2 — Mozilla

2019-10-22 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for DEBIAN:DLA-1912-1:CAAA9