Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3318-1:6F723
HistoryJul 26, 2015 - 5:54 p.m.

[SECURITY] [DSA 3318-1] expat security update

2015-07-2617:54:13
lists.debian.org
16

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON

Debian Security Advisory DSA-3318-1 [email protected]
https://www.debian.org/security/ Laszlo Boszormenyi (GCS)
July 26, 2015 https://www.debian.org/security/faq

Package : expat
CVE ID : CVE-2015-1283
Debian Bug : 793484

Multiple integer overflows have been discovered in Expat, an XML parsing
C library, which may result in denial of service or the execution of
arbitrary code if a malformed XML file is processed.

For the oldstable distribution (wheezy), this problem has been fixed
in version 2.1.0-1+deb7u2.

For the stable distribution (jessie), this problem has been fixed in
version 2.1.0-6+deb8u1.

For the unstable distribution (sid), this problem has been fixed in
version 2.1.0-7.

We recommend that you upgrade your expat packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8armhflibexpat1-udeb< 2.1.0-6+deb8u1libexpat1-udeb_2.1.0-6+deb8u1_armhf.deb
Debian7mipselexpat< 2.1.0-1+deb7u2expat_2.1.0-1+deb7u2_mipsel.deb
Debian8s390xlibexpat1-dev< 2.1.0-6+deb8u1libexpat1-dev_2.1.0-6+deb8u1_s390x.deb
Debian8kfreebsd-i386libexpat1-dev< 2.1.0-6+deb8u1libexpat1-dev_2.1.0-6+deb8u1_kfreebsd-i386.deb
Debian8powerpclibexpat1< 2.1.0-6+deb8u1libexpat1_2.1.0-6+deb8u1_powerpc.deb
Debian8arm64libexpat1-dev< 2.1.0-6+deb8u1libexpat1-dev_2.1.0-6+deb8u1_arm64.deb
Debian7amd64libexpat1-dev< 2.1.0-1+deb7u2libexpat1-dev_2.1.0-1+deb7u2_amd64.deb
Debian7s390libexpat1< 2.1.0-1+deb7u2libexpat1_2.1.0-1+deb7u2_s390.deb
Debian8ppc64ellibexpat1-udeb< 2.1.0-6+deb8u1libexpat1-udeb_2.1.0-6+deb8u1_ppc64el.deb
Debian7s390xlibexpat1-dev< 2.1.0-1+deb7u2libexpat1-dev_2.1.0-1+deb7u2_s390x.deb
Rows per page:
1-10 of 1341

Related

osv 6
ibm 40
nessus 50
mageia 1
openvas 36
securityvulns 4
freebsd_advisory 1
freebsd 3
ubuntu 5
prion 3
debiancve 2
ubuntucve 3
f5 4
veracode 2
suse 7
cve 3
archlinux 4
debian 5
amazon 1
alpinelinux 1
redhatcve 1
slackware 1
gentoo 2
apple 4
threatpost 1
redhat 1
chrome 1
kaspersky 1
androidsecurity 1
osv
osv
expat - security update
2015-07-26 00:00:00
expat - security update
2016-05-18 00:00:00
vnc4 vulnerabilities
2021-03-15 20:16:26
ibm
ibm
Security Bulletin:A security vulnerability has been identified in IBM HTTP Server used by IBM WebSphere Application Server shipped with Tivoli Network Manager IP Edition (CVE-2015-1283)
2018-06-17 15:10:40
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server used by IBM WebSphere Application Server which is shipped with IBM Workload Deployer (CVE-2015-1283)
2018-06-15 07:04:29
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server shipped with Intelligent Operations Center and related products (CVE-2015-1283)
2022-08-19 21:04:31
nessus
nessus
Debian DSA-3318-1 : expat - security update
2015-07-28 00:00:00
Juniper JSA10904
2019-05-29 00:00:00
Ubuntu 14.04 LTS : Expat vulnerability (USN-2726-1)
2015-09-01 00:00:00
mageia
mageia
Updated expat package fixes security vulnerability
2015-07-27 20:18:02
openvas
openvas
Debian Security Advisory DSA 3318-1 (expat - security update)
2015-07-26 00:00:00
Mageia: Security Advisory (MGASA-2015-0285)
2015-10-15 00:00:00
Ubuntu: Security Advisory (USN-2726-1)
2015-09-01 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3318-1] expat security update
2015-08-03 00:00:00
expat library integer overflow
2015-08-03 00:00:00
Google Chrome / Chromium multiple security vulnerabilities
2015-07-26 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:20.expat
2015-08-18 00:00:00
freebsd
freebsd
FreeBSD -- Multiple integer overflows in expat (libbsdxml) XML parser
2015-08-18 00:00:00
expat2 -- denial of service
2016-06-09 00:00:00
chromium -- multiple vulnerabilities
2015-07-21 00:00:00
ubuntu
ubuntu
Expat vulnerability
2015-08-31 00:00:00
VNC4 vulnerabilities
2021-03-15 00:00:00
XML-RPC for C and C++ vulnerabilities
2016-06-20 00:00:00
prion
prion
Buffer overflow
2015-05-14 10:59:00
Integer overflow
2015-07-23 00:59:00
Buffer overflow
2016-06-30 17:59:00
debiancve
debiancve
CVE-2015-1283
2015-07-23 00:59:00
CVE-2016-4472
2016-06-30 17:59:00
ubuntucve
ubuntucve
CVE-2015-2716
2015-05-13 00:00:00
CVE-2015-1283
2015-07-22 00:00:00
CVE-2016-4472
2016-05-18 00:00:00
f5
f5
K50459349 : Expat XML library vulnerability CVE-2015-2716
2017-02-10 00:00:00
K15104541 : Expat XML library vulnerability CVE-2015-1283
2016-10-11 00:00:00
SOL22232964 - Expat XML library vulnerability CVE-2016-4472
2016-10-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2017-02-01 05:26:42
Denial Of Service (DoS)
2017-03-27 05:30:04
suse
suse
Security update for expat (important)
2016-06-08 12:07:50
Security update for expat (important)
2016-06-07 13:08:02
Security update for expat (important)
2016-05-30 14:09:21
cve
cve
CVE-2015-2716
2015-05-14 10:59:00
CVE-2015-1283
2015-07-23 00:59:00
CVE-2016-4472
2016-06-30 17:59:00
archlinux
archlinux
expat: arbitrary code execution
2016-05-18 00:00:00
expat: arbitrary code execution
2016-03-24 00:00:00
lib32-expat: arbitrary code execution
2016-05-18 00:00:00
debian
debian
[SECURITY] [DSA 3582-1] expat security update
2016-05-18 05:18:57
[SECURITY] [DLA 281-1] expat security update
2015-07-25 14:17:27
[SECURITY] [DSA 3582-1] expat security update
2016-05-18 05:18:57
amazon
amazon
Medium: expat
2020-05-11 20:41:00
alpinelinux
alpinelinux
CVE-2016-4472
2016-06-30 17:59:00
redhatcve
redhatcve
CVE-2016-4472
2016-06-09 09:48:44
slackware
slackware
[slackware-security] expat
2016-12-24 19:24:21
gentoo
gentoo
Expat: Multiple vulnerabilities
2017-01-11 00:00:00
Chromium: Multiple vulnerabilities
2016-03-12 00:00:00
apple
apple
About the security content of iTunes 12.6 - Apple Support
2017-03-22 07:40:40
About the security content of iTunes 12.6
2017-03-21 00:00:00
About the security content of iTunes 12.6 for Windows
2017-03-21 00:00:00
threatpost
threatpost
Google Patches 43 Bugs in Chrome
2015-07-22 09:23:06
redhat
redhat
(RHSA-2015:1499) Important: chromium-browser security update
2015-07-27 00:00:00
chrome
chrome
Stable Channel Update
2015-07-21 00:00:00
kaspersky
kaspersky
KLA10636 Multiple vulnerabilities in Google Chrome
2015-07-21 00:00:00
androidsecurity
androidsecurity
Android Security Bulletin—November 2016
2016-11-07 00:00:00

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.1%

JSON
Related for DEBIAN:DSA-3318-1:6F723
osv6ibm40nessus50mageia1openvas36securityvulns4freebsd_advisory1freebsd3ubuntu5prion3debiancve2ubuntucve3f54veracode2suse7cve3archlinux4debian5amazon1alpinelinux1redhatcve1slackware1gentoo2apple4threatpost1redhat1chrome1kaspersky1androidsecurity1