Information on source package axis

Available versions

ReleaseVersion
jessie1.4-22
stretch1.4-25+deb9u1
buster1.4-28
buster (security)1.4-28+deb10u1
bullseye1.4-28+deb11u1
bookworm1.4-28+deb12u1
trixie1.4-29
sid1.4-29

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-51441vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerable** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerabilit ...
CVE-2023-40743vulnerablevulnerablefixedfixedfixedfixedfixed** UNSUPPORTED WHEN ASSIGNED ** When integrating Apache Axis 1.x in an ...
CVE-2018-8032vulnerable (no DSA)fixedfixedfixedfixedfixedfixedApache Axis 1.x up to and including 1.4 is vulnerable to a cross-site ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2019-0227vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA Server Side Request Forgery (SSRF) vulnerability affected the Apache ...
CVE-2007-2353vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableApache Axis 1.0 allows remote attackers to obtain sensitive informatio ...

Resolved issues

BugDescription
CVE-2014-3596The getCN function in Apache Axis 1.4 and earlier does not properly ve ...
CVE-2012-5784Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Ma ...
CVE-2010-2103Cross-site scripting (XSS) vulnerability in axis2-admin/axis2-admin/en ...

Security announcements

DSA / DLADescription
DLA-3622-1axis - security update
DLA-2821-1axis - security update
DLA-169-1axis - security update

Search for package or bug name: Reporting problems