Vulnerability Manager Plus

SUSE-SU-2016:2154-1(SUSE Linux Enterprise Desktop 12-SP1 ) xerces-c-debugsource-3.1.1-12.3.x86_64.rpm

Risk Information

Base Score

9.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

No records found

CVE Information

Source CVE
CVE-2016-4463

Associated CVE
CVE-2016-4463
CVE-2016-2099

Patch Details

No records found

References

http://lists.opensuse.org/opensuse-updates/2016-07/msg00016.html
http://lists.opensuse.org/opensuse-updates/2016-07/msg00053.html
http://lists.opensuse.org/opensuse-updates/2016-09/msg00013.html
http://packetstormsecurity.com/files/137714/Apache-Xerces-C-XML-Parser-Crash.html
http://www.debian.org/security/2016/dsa-3579
http://www.openwall.com/lists/oss-security/2016/05/09/7
http://www.securityfocus.com/archive/1/archive/1/538784/100/0/threaded
http://www.securityfocus.com/bid/90502
http://www.securityfocus.com/bid/91501
http://www.securitytracker.com/id/1036211
http://xerces.apache.org/xerces-c/secadv/CVE-2016-4463.txt
https://issues.apache.org/jira/browse/XERCESC-2066
https://issues.apache.org/jira/browse/XERCESC-2069
https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=10510&version=12336069
https://security.gentoo.org/glsa/201612-46
https://www.debian.org/security/2016/dsa-3610