Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-2156HistoryAug 20, 2013 - 10:55 p.m.
CVE-2013-2156
2013-08-2022:55:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.051 Low
EPSS
Percentile
93.0%
Heap-based buffer overflow in the Exclusive Canonicalization functionality (xsec/canon/XSECC14n20010315.cpp) in Apache Santuario XML Security for C++ (aka xml-security-c) before 1.7.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PrefixList attribute.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xml-security-c | < 1.6.1-6 | xml-security-c_1.6.1-6_all.deb |
| Debian | 11 | all | xml-security-c | < 1.6.1-6 | xml-security-c_1.6.1-6_all.deb |
| Debian | 10 | all | xml-security-c | < 1.6.1-6 | xml-security-c_1.6.1-6_all.deb |
| Debian | 999 | all | xml-security-c | < 1.6.1-6 | xml-security-c_1.6.1-6_all.deb |
| Debian | 13 | all | xml-security-c | < 1.6.1-6 | xml-security-c_1.6.1-6_all.deb |
Related
securityvulns
securityvulns
Re: CVE-2013-2156: Apache Santuario C++ heap overflow vulnerability
2013-07-01 00:00:00
[SECURITY] [DSA 2710-1] xml-security-c security update
2013-07-01 00:00:00
xml-security-c security vulnerabilities
2013-07-01 00:00:00
cve
cve
CVE-2013-2156
2013-08-20 22:55:00
freebsd
freebsd
apache-xml-security-c -- heap overflow
2013-06-18 00:00:00
nessus
nessus
FreeBSD : apache-xml-security-c -- heap overflow (279e5f4b-d823-11e2-928e-08002798f6ff)
2013-06-19 00:00:00
Debian DSA-2710-1 : xml-security-c - several vulnerabilities
2013-06-19 00:00:00
Tenable SecurityCenter < 5.8.0 Multiple Vulnerabilities (TNS-2018-15)
2018-11-27 00:00:00
cvelist
cvelist
CVE-2013-2156
2013-08-20 22:00:00
prion
prion
Heap overflow
2013-08-20 22:55:00
ubuntucve
ubuntucve
CVE-2013-2156
2013-08-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2710-1)
2013-06-17 00:00:00
Mageia: Security Advisory (MGASA-2013-0193)
2022-01-28 00:00:00
osv
osv
xml-security-c - several
2013-06-18 00:00:00
debian
debian
[SECURITY] [DSA 2710-1] xml-security-c security update
2013-06-18 15:44:22
[SECURITY] [DSA 2710-1] xml-security-c security update
2013-06-18 15:44:43
mageia
mageia
Updated xml-security-c package fixes multiple security vulnerabilities
2013-07-01 23:12:07