rpm package
suse/perl-XML-Parser&distro=SUSE Linux Enterprise Server 15 SP4-LTSS
pkg:rpm/suse/perl-XML-Parser&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-10003 | Cri | 9.8 | < 2.44-150000.3.3.1 | 2.44-150000.3.3.1 | Mar 19, 2026 | XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack. In the case (stackptr == stacksize - 1), the stack will NOT be expanded. Then the new value will be written at location (++stackptr), which equals stacksize and therefore falls | |
| CVE-2006-10002 | — | < 2.44-150000.3.3.1 | 2.44-150000.3.3.1 | Mar 19, 2026 | XML::Parser versions through 2.45 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes. A :utf8 PerlIO layer, parse_stream() in Expat.xs could overflow the XML input buffer because Perl's read() returns decoded cha |
- affected < 2.44-150000.3.3.1fixed 2.44-150000.3.3.1
XML::Parser versions through 2.47 for Perl has an off-by-one heap buffer overflow in st_serial_stack. In the case (stackptr == stacksize - 1), the stack will NOT be expanded. Then the new value will be written at location (++stackptr), which equals stacksize and therefore falls
- CVE-2006-10002Mar 19, 2026affected < 2.44-150000.3.3.1fixed 2.44-150000.3.3.1
XML::Parser versions through 2.45 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) and crashes. A :utf8 PerlIO layer, parse_stream() in Expat.xs could overflow the XML input buffer because Perl's read() returns decoded cha