| Release | Version |
|---|---|
| jessie | 2.6-2+deb8u1 |
| stretch | 2.10-1 |
| buster | 2.12-2 |
| bullseye | 3.2-1 |
| bookworm | 3.3.1-1 |
| trixie | 3.3.1-1 |
| sid | 3.3.1-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20593 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | In Mini-XML (aka mxml) v2.12, there is stack-based buffer overflow in ... |
| CVE-2018-20592 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | In Mini-XML (aka mxml) v2.12, there is a use-after-free in the mxmlAdd ... |
| CVE-2018-20004 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | An issue has been found in Mini-XML (aka mxml) 2.12. It is a stack-bas ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-20005 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | An issue has been found in Mini-XML (aka mxml) 2.12. It is a use-after ... |
| Bug | Description |
|---|---|
| CVE-2016-4571 | The mxml_write_node function in mxml-file.c in mxml 2.9, 2.7, and poss ... |
| CVE-2016-4570 | The mxmlDelete function in mxml-node.c in mxml 2.9, 2.7, and possibly ... |
| DSA / DLA | Description |
|---|---|
| DLA-1641-1 | mxml - security update |