CVE-2009-3720
Published: 3 November 2009
The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with crafted UTF-8 sequences that trigger a buffer over-read, a different vulnerability than CVE-2009-2625.
Notes
| Author | Note |
|---|---|
| jdstrand | both this and CVE-2009-2625 refer to the same expat bug: #1990430. See http://www.openwall.com/lists/oss-security/2009/09/06/1 This CVE was later assigned to the same issue, since CVE-2009-2625 was worded as a Java vulnerability. Our USN references CVE-2009-2625 and this CVE will be ignored (for expat). jdstrand provided updates in supported releases for expat, xmlrpc-c, cmake, python-xml, python2.4, and python2.5 |
| ebarretto | this is not an issue for vnc4, for more information see: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560949 |
| ccdm94 | cmake 3.20.5 and forward uses expat 2.2.10+. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
expat Launchpad, Ubuntu, Debian |
upstream |
Released
(2.0.1-5)
|
| dapper |
Released
(1.95.8-3ubuntu0.1)
|
|
| hardy |
Released
(2.0.1-0ubuntu1.1)
|
|
| intrepid |
Released
(2.0.1-4ubuntu0.8.10.1)
|
|
| jaunty |
Released
(2.0.1-4ubuntu0.9.04.1)
|
|
| karmic |
Released
(2.0.1-4ubuntu1.1)
|
|
| lucid |
Released
(2.0.1-7ubuntu1)
|
|
| maverick |
Released
(2.0.1-7ubuntu1)
|
|
| natty |
Released
(2.0.1-7ubuntu1)
|
|
| oneiric |
Released
(2.0.1-7ubuntu1)
|
|
| precise |
Released
(2.0.1-7ubuntu1)
|
|
| quantal |
Released
(2.0.1-7ubuntu1)
|
|
| raring |
Released
(2.0.1-7ubuntu1)
|
|
| saucy |
Released
(2.0.1-7ubuntu1)
|
|
| trusty |
Released
(2.0.1-7ubuntu1)
|
|
| utopic |
Released
(2.0.1-7ubuntu1)
|
|
| vivid |
Released
(2.0.1-7ubuntu1)
|
|
| wily |
Released
(2.0.1-7ubuntu1)
|
|
| xenial |
Released
(2.0.1-7ubuntu1)
|
|
| yakkety |
Released
(2.0.1-7ubuntu1)
|
|
| zesty |
Released
(2.0.1-7ubuntu1)
|
|
| artful |
Released
(2.0.1-7ubuntu1)
|
|
| bionic |
Released
(2.0.1-7ubuntu1)
|
|
| cosmic |
Released
(2.0.1-7ubuntu1)
|
|
| disco |
Released
(2.0.1-7ubuntu1)
|
|
| eoan |
Released
(2.0.1-7ubuntu1)
|
|
| focal |
Released
(2.0.1-7ubuntu1)
|
|
| groovy |
Released
(2.0.1-7ubuntu1)
|
|
| jammy |
Released
(2.0.1-7ubuntu1)
|
|
| lunar |
Released
(2.0.1-7ubuntu1)
|
|
| hirsute |
Released
(2.0.1-7ubuntu1)
|
|
| impish |
Released
(2.0.1-7ubuntu1)
|
|
| kinetic |
Released
(2.0.1-7ubuntu1)
|
|
|
Patches: upstream: http://expat.cvs.sourceforge.net/viewvc/expat/expat/lib/xmltok_impl.c?r1=1.13&r2=1.15&view=patch |
||
|
apache2 Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
| impish |
Not vulnerable
(code-not-compiled)
|
|
| hirsute |
Not vulnerable
(code-not-compiled)
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| jammy |
Not vulnerable
(code-not-compiled)
|
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(code-not-compiled)
|
|
| dapper |
Not vulnerable
(code-not-compiled)
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Not vulnerable
(code-not-compiled)
|
|
| groovy |
Not vulnerable
(code-not-compiled)
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Not vulnerable
(code-not-compiled)
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
apr-util Launchpad, Ubuntu, Debian |
upstream |
Needs triage
|
| dapper |
Does not exist
|
|
| impish |
Not vulnerable
(code-not-compiled)
|
|
| hirsute |
Not vulnerable
(code-not-compiled)
|
|
| jammy |
Not vulnerable
(code-not-compiled)
|
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(code-not-compiled)
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Not vulnerable
(code-not-compiled)
|
|
| groovy |
Not vulnerable
(code-not-compiled)
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Not vulnerable
(code-not-compiled)
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
cmake Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| hardy |
Released
(2.4.7-1ubuntu0.1)
|
|
| jammy |
Not vulnerable
(code-not-compiled)
|
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Not vulnerable
(code-not-compiled)
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(code-not-compiled)
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Not vulnerable
(code-not-compiled)
|
|
| groovy |
Not vulnerable
(code-not-compiled)
|
|
| hirsute |
Not vulnerable
(code-not-compiled)
|
|
| impish |
Not vulnerable
(code-not-compiled)
|
|
| intrepid |
Released
(2.6.0-4ubuntu2.1)
|
|
| jaunty |
Released
(2.6.2-1ubuntu1.1)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Does not exist
(trusty was ignored [code-not-compiled])
|
|
| upstream |
Needs triage
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
celementtree Launchpad, Ubuntu, Debian |
artful |
Does not exist
|
| bionic |
Does not exist
|
|
| groovy |
Does not exist
|
|
| jammy |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lunar |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Not vulnerable
(code-not-compiled)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
paraview Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| artful |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| bionic |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| cosmic |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| disco |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| groovy |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| hirsute |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| vivid |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| precise |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| lunar |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| eoan |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| focal |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| hardy |
Does not exist
|
|
| impish |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [3.8.1-1ubuntu1])
|
|
| upstream |
Released
(3.6.2-1)
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| xenial |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| yakkety |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
| zesty |
Not vulnerable
(3.8.1-1ubuntu1)
|
|
|
vnc4 Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Not vulnerable
|
|
| cosmic |
Not vulnerable
|
|
| groovy |
Does not exist
|
|
| precise |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| disco |
Not vulnerable
|
|
| eoan |
Not vulnerable
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
|
|
| upstream |
Not vulnerable
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
poco Launchpad, Ubuntu, Debian |
artful |
Not vulnerable
(uses system expat)
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| hirsute |
Not vulnerable
(uses system expat)
|
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Not vulnerable
(uses system expat)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| dapper |
Does not exist
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Not vulnerable
(uses system expat) (end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
(uses system expat)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(uses system expat)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Not vulnerable
(uses system expat)
|
|
| zesty |
Not vulnerable
(uses system expat)
|
|
|
kompozer Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| hardy |
Ignored
(end of life)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| hirsute |
Does not exist
|
|
| groovy |
Does not exist
|
|
| precise |
Not vulnerable
(0.8~b3.dfsg.1)
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| impish |
Does not exist
|
|
| jammy |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(1:0.8~b1-2)
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
cadaver Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
| bionic |
Needed
|
|
| hirsute |
Ignored
(end of life)
|
|
| kinetic |
Ignored
(end of life, was needed)
|
|
| xenial |
Needed
|
|
| impish |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| focal |
Needed
|
|
| groovy |
Ignored
(end of life)
|
|
| hardy |
Ignored
(end of life)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Needed
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Needed
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needed)
|
|
| upstream |
Needed
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
ayttm Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| hirsute |
Does not exist
|
|
| groovy |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| precise |
Not vulnerable
(0.6.1-2)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Not vulnerable
(0.6.1-2) (end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [0.6.1-2])
|
|
| upstream |
Released
(0.6.1-2)
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(0.6.1-2)
|
|
| xenial |
Not vulnerable
(0.6.1-2)
|
|
| yakkety |
Not vulnerable
(0.6.1-2)
|
|
| zesty |
Does not exist
|
|
|
audacity Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| artful |
Not vulnerable
(uses system expat)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| hirsute |
Not vulnerable
(uses system expat)
|
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| kinetic |
Ignored
(end of life, was needs-triage)
|
|
| precise |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Not vulnerable
(uses system expat) (end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Needs triage
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [uses system expat])
|
|
| upstream |
Not vulnerable
(uses system expat)
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(uses system expat)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Not vulnerable
(uses system expat)
|
|
| zesty |
Not vulnerable
(uses system expat)
|
|
|
matanza Launchpad, Ubuntu, Debian |
cosmic |
Ignored
(end of life)
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| hirsute |
Ignored
(end of life)
|
|
| kinetic |
Ignored
(end of life, was needs-triage)
|
|
| xenial |
Needs triage
|
|
| impish |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Needs triage
|
|
| dapper |
Ignored
(end of life)
|
|
| focal |
Needs triage
|
|
| groovy |
Ignored
(end of life)
|
|
| hardy |
Ignored
(end of life)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Needs triage
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Needs triage
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
libxmltok Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Needs triage
|
|
| jammy |
Needs triage
|
|
| kinetic |
Ignored
(end of life, was needs-triage)
|
|
| trusty |
Ignored
(end of standard support)
|
|
| hirsute |
Ignored
(end of life)
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
| impish |
Ignored
(end of life)
|
|
| lunar |
Needs triage
|
|
|
smart Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Does not exist
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Does not exist
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Does not exist
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| impish |
Does not exist
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Does not exist
(trusty was ignored [code-not-compiled])
|
|
| upstream |
Needs triage
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
texlive-bin Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(code-not-compiled)
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(code-not-compiled)
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| dapper |
Does not exist
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Not vulnerable
(code-not-compiled)
|
|
| groovy |
Not vulnerable
(code-not-compiled)
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| impish |
Not vulnerable
(code-not-compiled)
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jammy |
Not vulnerable
(code-not-compiled)
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Does not exist
(trusty was ignored [code-not-compiled])
|
|
| upstream |
Needs triage
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
wxwidgets2.8 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [uses system expat])
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
tla Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(uses system expat)
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| precise |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
xulrunner Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| lunar |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
sitecopy Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(uses system expat)
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Not vulnerable
(uses system expat)
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
libparagui1.1 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
wbxml2 Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(uses system expat)
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Not vulnerable
(uses system expat)
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
insighttoolkit Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| xenial |
Needs triage
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
wxwindows2.4 Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| lunar |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
gdcm Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(uses system expat)
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Not vulnerable
(uses system expat)
|
|
| artful |
Not vulnerable
(uses system expat)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| dapper |
Does not exist
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| hardy |
Does not exist
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Does not exist
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Does not exist
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
(uses system expat)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(uses system expat)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Not vulnerable
(uses system expat)
|
|
| zesty |
Not vulnerable
(uses system expat)
|
|
|
cableswig Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| groovy |
Does not exist
|
|
| xenial |
Needs triage
|
|
| vivid |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
grmonitor Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| groovy |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| lunar |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
tdom Launchpad, Ubuntu, Debian |
hirsute |
Not vulnerable
(uses system expat)
|
| precise |
Ignored
(end of life)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| hardy |
Does not exist
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Does not exist
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
vtk Launchpad, Ubuntu, Debian |
hirsute |
Does not exist
|
| vivid |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| cosmic |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| groovy |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
(uses system expat)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
coin3 Launchpad, Ubuntu, Debian |
hirsute |
Ignored
(end of life)
|
| kinetic |
Ignored
(end of life, was needed)
|
|
| xenial |
Needed
|
|
| vivid |
Ignored
(end of life)
|
|
| impish |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Needed
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Does not exist
|
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| focal |
Needed
|
|
| groovy |
Ignored
(end of life)
|
|
| hardy |
Does not exist
|
|
| intrepid |
Does not exist
|
|
| jammy |
Needed
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Needed
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Needed
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
swish-e Launchpad, Ubuntu, Debian |
hirsute |
Ignored
(end of life)
|
| kinetic |
Ignored
(end of life, was needs-triage)
|
|
| xenial |
Needs triage
|
|
| impish |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| artful |
Ignored
(end of life)
|
|
| bionic |
Needs triage
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| focal |
Needs triage
|
|
| groovy |
Ignored
(end of life)
|
|
| hardy |
Ignored
(end of life)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Needs triage
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Needs triage
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
python2.6 Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| jammy |
Does not exist
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Does not exist
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Does not exist
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Not vulnerable
(2.6.4-4ubuntu1)
|
|
| maverick |
Not vulnerable
(2.6.4-4ubuntu1)
|
|
| natty |
Not vulnerable
(2.6.4-4ubuntu1)
|
|
| oneiric |
Not vulnerable
(2.6.4-4ubuntu1)
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Released
(2.6.4)
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
python2.5 Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| jammy |
Does not exist
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Does not exist
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Released
(2.5.2-2ubuntu6.1)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Released
(2.5.2-11.1ubuntu1.1)
|
|
| jaunty |
Released
(2.5.4-1ubuntu4.1)
|
|
| karmic |
Released
(2.5.4-1ubuntu6.1)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
python2.4 Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| jammy |
Does not exist
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Released
(2.4.3-0ubuntu6.4)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Released
(2.4.5-1ubuntu4.3)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Released
(2.4.5-5ubuntu1.2)
|
|
| jaunty |
Released
(2.4.6-1ubuntu3.2.9.04.1)
|
|
| karmic |
Released
(2.4.6-1ubuntu3.2.9.10.1)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
python-xml Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| jammy |
Does not exist
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Released
(0.8.4-1ubuntu3.1)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life, was needed)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Does not exist
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
xmlrpc-c Launchpad, Ubuntu, Debian |
groovy |
Released
(1.06.27-1ubuntu7)
|
| vivid |
Released
(1.06.27-1ubuntu7)
|
|
| artful |
Released
(1.06.27-1ubuntu7)
|
|
| bionic |
Released
(1.06.27-1ubuntu7)
|
|
| cosmic |
Released
(1.06.27-1ubuntu7)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Released
(1.06.27-1ubuntu7)
|
|
| eoan |
Released
(1.06.27-1ubuntu7)
|
|
| focal |
Released
(1.06.27-1ubuntu7)
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Released
(1.06.27-1ubuntu7)
|
|
| impish |
Released
(1.06.27-1ubuntu7)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Released
(1.06.27-1ubuntu7)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Released
(1.06.27-1ubuntu6.1)
|
|
| kinetic |
Released
(1.06.27-1ubuntu7)
|
|
| lucid |
Released
(1.06.27-1ubuntu7)
|
|
| lunar |
Released
(1.06.27-1ubuntu7)
|
|
| maverick |
Released
(1.06.27-1ubuntu7)
|
|
| natty |
Released
(1.06.27-1ubuntu7)
|
|
| oneiric |
Released
(1.06.27-1ubuntu7)
|
|
| precise |
Released
(1.06.27-1ubuntu7)
|
|
| quantal |
Released
(1.06.27-1ubuntu7)
|
|
| raring |
Released
(1.06.27-1ubuntu7)
|
|
| saucy |
Released
(1.06.27-1ubuntu7)
|
|
| trusty |
Released
(1.06.27-1ubuntu7)
|
|
| upstream |
Needs triage
|
|
| utopic |
Released
(1.06.27-1ubuntu7)
|
|
| wily |
Released
(1.06.27-1ubuntu7)
|
|
| xenial |
Released
(1.06.27-1ubuntu7)
|
|
| yakkety |
Released
(1.06.27-1ubuntu7)
|
|
| zesty |
Released
(1.06.27-1ubuntu7)
|
|
|
wxwidgets2.6 Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| precise |
Ignored
(end of life)
|
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Ignored
(end of life)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
w3c-libwww Launchpad, Ubuntu, Debian |
groovy |
Does not exist
|
| lunar |
Does not exist
|
|
| artful |
Does not exist
|
|
| bionic |
Does not exist
|
|
| cosmic |
Does not exist
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Does not exist
|
|
| eoan |
Does not exist
|
|
| focal |
Does not exist
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Does not exist
|
|
| impish |
Does not exist
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Does not exist
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Does not exist
|
|
| lucid |
Does not exist
|
|
| maverick |
Does not exist
|
|
| natty |
Does not exist
|
|
| oneiric |
Does not exist
|
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| saucy |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| utopic |
Does not exist
|
|
| vivid |
Does not exist
|
|
| wily |
Does not exist
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|
|
|
xotcl Launchpad, Ubuntu, Debian |
bionic |
Not vulnerable
(1.6.5-1.2)
|
| focal |
Not vulnerable
(1.6.5-1.2)
|
|
| hirsute |
Not vulnerable
(1.6.5-1.2)
|
|
| upstream |
Released
(1.6.5-1.2)
|
|
| artful |
Ignored
(end of life)
|
|
| cosmic |
Ignored
(end of life)
|
|
| dapper |
Does not exist
|
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| groovy |
Not vulnerable
(1.6.5-1.2)
|
|
| hardy |
Does not exist
|
|
| impish |
Not vulnerable
(1.6.5-1.2)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(1.6.5-1.2)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(1.6.5-1.2)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(1.6.5-1.2)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| precise |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was needs-triage)
|
|
| utopic |
Ignored
(end of life)
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(1.6.5-1.2)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
ghostscript Launchpad, Ubuntu, Debian |
jammy |
Not vulnerable
(code-not-compiled)
|
| vivid |
Not vulnerable
(code-not-compiled)
|
|
| precise |
Not vulnerable
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(code-not-compiled)
|
|
| artful |
Not vulnerable
(code-not-compiled)
|
|
| bionic |
Not vulnerable
(code-not-compiled)
|
|
| cosmic |
Not vulnerable
(code-not-compiled)
|
|
| dapper |
Does not exist
|
|
| disco |
Not vulnerable
(code-not-compiled)
|
|
| eoan |
Not vulnerable
(code-not-compiled)
|
|
| focal |
Not vulnerable
(code-not-compiled)
|
|
| groovy |
Not vulnerable
(code-not-compiled)
|
|
| hardy |
Not vulnerable
(code-not-compiled)
|
|
| hirsute |
Not vulnerable
(code-not-compiled)
|
|
| impish |
Not vulnerable
(code-not-compiled)
|
|
| intrepid |
Not vulnerable
(code-not-compiled)
|
|
| jaunty |
Not vulnerable
(code-not-compiled)
|
|
| karmic |
Not vulnerable
(code-not-compiled)
|
|
| kinetic |
Not vulnerable
(code-not-compiled)
|
|
| lucid |
Not vulnerable
(code-not-compiled)
|
|
| maverick |
Not vulnerable
(code-not-compiled)
|
|
| natty |
Not vulnerable
(code-not-compiled)
|
|
| oneiric |
Not vulnerable
(code-not-compiled)
|
|
| quantal |
Not vulnerable
(code-not-compiled)
|
|
| raring |
Not vulnerable
(code-not-compiled)
|
|
| saucy |
Not vulnerable
(code-not-compiled)
|
|
| trusty |
Does not exist
(trusty was ignored [code-not-compiled])
|
|
| upstream |
Needs triage
|
|
| utopic |
Not vulnerable
(code-not-compiled)
|
|
| wily |
Not vulnerable
(code-not-compiled)
|
|
| xenial |
Not vulnerable
(code-not-compiled)
|
|
| yakkety |
Not vulnerable
(code-not-compiled)
|
|
| zesty |
Not vulnerable
(code-not-compiled)
|
|
|
simgear Launchpad, Ubuntu, Debian |
vivid |
Ignored
(end of life)
|
| precise |
Ignored
(end of life)
|
|
| artful |
Not vulnerable
(uses system expat)
|
|
| bionic |
Not vulnerable
(uses system expat)
|
|
| cosmic |
Not vulnerable
(uses system expat)
|
|
| dapper |
Ignored
(end of life)
|
|
| disco |
Not vulnerable
(uses system expat)
|
|
| eoan |
Not vulnerable
(uses system expat)
|
|
| focal |
Not vulnerable
(uses system expat)
|
|
| groovy |
Not vulnerable
(uses system expat)
|
|
| hardy |
Ignored
(end of life)
|
|
| hirsute |
Not vulnerable
(uses system expat)
|
|
| impish |
Not vulnerable
(uses system expat)
|
|
| intrepid |
Ignored
(end of life)
|
|
| jammy |
Not vulnerable
(uses system expat)
|
|
| jaunty |
Ignored
(end of life)
|
|
| karmic |
Ignored
(end of life)
|
|
| kinetic |
Not vulnerable
(uses system expat)
|
|
| lucid |
Ignored
(end of life)
|
|
| lunar |
Not vulnerable
(uses system expat)
|
|
| maverick |
Ignored
(end of life)
|
|
| natty |
Ignored
(end of life)
|
|
| oneiric |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Ignored
(end of life)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Does not exist
(trusty was not-affected [uses system expat])
|
|
| upstream |
Needs triage
|
|
| utopic |
Ignored
(end of life)
|
|
| wily |
Not vulnerable
(uses system expat)
|
|
| xenial |
Not vulnerable
(uses system expat)
|
|
| yakkety |
Not vulnerable
(uses system expat)
|
|
| zesty |
Not vulnerable
(uses system expat)
|
|
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720
- https://ubuntu.com/security/notices/USN-890-1
- https://ubuntu.com/security/notices/USN-890-2
- https://ubuntu.com/security/notices/USN-890-3
- https://ubuntu.com/security/notices/USN-890-4
- https://ubuntu.com/security/notices/USN-890-5
- https://ubuntu.com/security/notices/USN-890-6
- NVD
- Launchpad
- Debian