VYPR

rpm package

suse/python3-base&distro=SUSE Linux Enterprise Server 12 SP3-BCL

pkg:rpm/suse/python3-base&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL

Vulnerabilities (24)

  • CVE-2017-9233HigJul 25, 2017
    affected < 3.4.10-25.39.2fixed 3.4.10-25.39.2

    XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.

  • CVE-2016-4472HigJun 30, 2016
    affected < 3.4.10-25.39.2fixed 3.4.10-25.39.2

    The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted XML data. NOTE: this vulnerability exists because of an incomplete fix f

  • CVE-2016-0718CriMay 26, 2016
    affected < 3.4.10-25.39.2fixed 3.4.10-25.39.2

    Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.

  • CVE-2012-0876Jul 3, 2012
    affected < 3.4.10-25.39.2fixed 3.4.10-25.39.2

    The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file with many identifiers with the sa

Page 2 of 2