xerces-c

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A validating XML parser written in a portable subset of C++
Version 3.2.1-2 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-644 3.2.0-2 3.2.1-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2017-12627 AVG-644 High Yes Arbitrary code execution
The Xerces-C XML parser mishandles certain kinds of external DTD references, resulting in dereference of a NULL pointer while processing the path to the...

Advisories

Date Advisory Group Severity Description
25 Mar 2018 ASA-201803-23 AVG-644 High arbitrary code execution