Total vulnerabilities in the database
The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted identifiers in an XML document. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-0876.
| Software | From | Fixed in |
|---|---|---|
| canonical / ubuntu_linux | 12.04 | 12.04.x |
| debian / debian_linux | 8.0 | 8.0.x |
| canonical / ubuntu_linux | 16.04 | 16.04.x |
| canonical / ubuntu_linux | 15.10 | 15.10.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| libexpat_project / libexpat | - | 2.2.0 |
| google / android | 5.0.2 | 5.0.2.x |
| google / android | 6.0.1 | 6.0.1.x |
| google / android | 6.0 | 6.0.x |
| google / android | 4.4.4 | 4.4.4.x |
| google / android | 5.1.1 | 5.1.1.x |