Lucene search
UbuntuUSN-4852-1HistoryMar 15, 2021 - 12:00 a.m.
VTK vulnerabilities
2021-03-1500:00:00
ubuntu.com
21
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8.7 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.609 Medium
EPSS
Percentile
97.7%
Releases
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- vtk - Visualization Toolkit - A high level 3D visualization library - j
Details
It was discovered that VTK incorrectly handled certain XML files in the
embedded Expat library. An attacker could possibly use this issue to cause
a denial of service or expose sensitive information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 16.04 | noarch | libvtk5.10 | < 5.10.1+dfsg-2.1ubuntu0.1~esm1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk-java | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk-java-dbgsym | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5-dev | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5-dev-dbgsym | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5-qt4-dev | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5-qt4-dev-dbgsym | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5.10 | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5.10-dbgsym | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
| Ubuntu | 16.04 | noarch | libvtk5.10-qt4 | < 5.10.1+dfsg-2.1build1 | UNKNOWN |
Related
almalinux
almalinux
Moderate: expat security update
2020-11-03 12:09:00
Moderate: mingw-expat security update
2020-11-03 12:41:03
nessus
nessus
Oracle Linux 7 : expat (ELSA-2020-3952)
2020-10-07 00:00:00
AlmaLinux 8 : expat (ALSA-2020:4484)
2022-02-09 00:00:00
NewStart CGSL MAIN 6.02 : expat Multiple Vulnerabilities (NS-SA-2021-0083)
2021-03-10 00:00:00
osv
osv
vtk vulnerabilities
2021-03-15 22:38:15
Moderate: expat security update
2020-11-03 12:09:00
Moderate: mingw-expat security update
2020-11-03 12:41:03
centos
centos
expat security update
2020-10-20 17:58:03
gentoo
gentoo
Expat: Multiple vulnerabilities
2019-11-25 00:00:00
amazon
amazon
oraclelinux
oraclelinux
expat security update
2020-10-06 00:00:00
expat security update
2020-11-10 00:00:00
ibm
ibm
altlinux
altlinux
Security fix for the ALT Linux 9 package expat version 2.2.9-alt1
2020-05-31 00:00:00
rocky
rocky
expat security update
2020-11-03 12:09:00
mingw-expat security update
2020-11-03 00:00:00
redhat
redhat
(RHSA-2020:4484) Moderate: expat security update
2020-11-03 12:09:00
(RHSA-2020:3952) Moderate: expat security update
2020-09-29 07:46:19
(RHSA-2020:4846) Moderate: mingw-expat security update
2020-11-03 12:41:03
openvas
openvas
Debian Security Advisory DSA 4472-1 (expat - security update)
2019-06-29 00:00:00
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2019-1783)
2020-01-23 00:00:00
openSUSE: Security Advisory for expat (openSUSE-SU-2019:1777-1)
2019-07-22 00:00:00
debian
debian
[SECURITY] [DSA 4472-1] expat security update
2019-06-28 09:30:19
[SECURITY] [DLA 1839-1] expat security update
2019-06-29 18:59:53
[SECURITY] [DSA 4472-1] expat security update
2019-06-28 09:30:19
ubuntu
ubuntu
Expat vulnerability
2019-06-26 00:00:00
Expat vulnerability
2019-06-26 00:00:00
Expat vulnerability
2019-09-12 00:00:00
ubuntucve
ubuntucve
CVE-2018-20843
2019-06-24 00:00:00
CVE-2019-15903
2019-09-04 00:00:00
debiancve
debiancve
CVE-2018-20843
2019-06-24 17:15:00
CVE-2019-15903
2019-09-04 06:15:00
mageia
mageia
Updated expat packages fix security vulnerability
2019-09-15 15:11:55
Updated expat packages fix security vulnerability
2019-11-08 02:36:48
fedora
fedora
[SECURITY] Fedora 30 Update: expat-2.2.7-1.fc30
2019-07-10 00:51:48
[SECURITY] Fedora 29 Update: expat-2.2.7-1.fc29
2019-07-16 03:22:19
[SECURITY] Fedora 31 Update: expat-2.2.8-1.fc31
2019-09-21 00:04:26
veracode
veracode
Denial Of Service (DoS)
2019-07-01 08:36:31
Denial Of Service (Dos)
2019-09-05 06:48:20
redhatcve
redhatcve
CVE-2018-20843
2020-04-04 05:18:28
CVE-2019-15903
2019-12-28 03:54:22
cve
cve
CVE-2018-20843
2019-06-24 17:15:00
CVE-2019-15903
2019-09-04 06:15:00
f5
f5
K51011533 : Expat XML parser vulnerability CVE-2018-20843
2019-07-18 00:00:00
K34239812 : Libexpat vulnerability CVE-2019-15903
2022-08-05 00:00:00
K05295469 : Expat vulnerability CVE-2019-15903
2022-02-03 00:00:00
cbl_mariner
cbl_mariner
CVE-2018-20843 affecting package expat 2.2.6-4
2020-09-09 06:09:14
CVE-2019-15903 affecting package expat 2.2.6-4
2022-01-10 03:59:19
suse
suse
Security update for expat (moderate)
2019-07-21 00:00:00
Security update for expat (moderate)
2019-09-28 00:00:00
Security update for expat (moderate)
2019-09-28 00:00:00
prion
prion
Input validation
2019-06-24 17:15:00
Heap overflow
2019-09-04 06:15:00
cloudfoundry
cloudfoundry
USN-4040-1: Expat vulnerability | Cloud Foundry
2019-08-28 00:00:00
USN-4132-1: Expat vulnerability | Cloud Foundry
2019-09-30 00:00:00
alpinelinux
alpinelinux
CVE-2018-20843
2019-06-24 17:15:00
CVE-2019-15903
2019-09-04 06:15:00
slackware
slackware
[slackware-security] expat
2019-09-16 21:54:40
[slackware-security] python
2019-10-20 20:16:04
freebsd
freebsd
python 3.7 -- multiple vulnerabilities
2019-09-14 00:00:00
symantec
symantec
Libexpat Expat CVE-2019-15903 Heap Buffer Overflow Vulnerability
2019-09-04 00:00:00
photon
photon
kaspersky
kaspersky
KLA11624 Multiple vulnerabilities in Apple iCloud
2019-12-11 00:00:00
KLA11623 Multiple vulnerabilities in Apple iTunes
2019-12-11 00:00:00
apple
apple
About the security content of iCloud for Windows 7.16 - Apple Support
2020-04-05 05:57:56
About the security content of iCloud for Windows 10.9 - Apple Support
2020-04-05 05:12:53
About the security content of iCloud for Windows 10.9
2019-12-11 00:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
8.7 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.609 Medium
EPSS
Percentile
97.7%
Related for USN-4852-1