| Release | Version |
|---|---|
| jessie | 2.11.0-7 |
| stretch | 2.11.0-7 |
| buster | 2.12.0-1 |
| bullseye | 2.12.1-1 |
| bookworm | 2.12.2-1 |
| trixie | 2.12.2-1 |
| sid | 2.12.2-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-23437 | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable | vulnerable | There's a vulnerability within the Apache Xerces Java (XercesJ) XML pa ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2012-0881 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | Apache Xerces2 Java Parser before 2.12.0 allows remote attackers to ca ... |
| Bug | Description |
|---|---|
| CVE-2009-2625 | XMLScanner.java in Apache Xerces2 Java, as used in Sun Java Runtime En ... |
| DSA / DLA | Description |
|---|---|
| DSA-1984-1 | libxerces2-java - denial of service |