VDB
GCVE-110-MAGEIA-2016-164
GCVE-110-MAGEIA-2016-164
Advisory Published
Updated xstream packages fix security vulnerability:
XStream (x-stream.github.io) is a Java library to marshal Java objects into XML
and back. For this purpose it supports a lot of different XML parsers. Some of
those can also process external entities which was enabled by default. An
attacker could therefore provide manipulated XML as input to access data on the
file system (CVE-2016-3674).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | javapackages-tools | 0 (affected), 4.1.0-15.1.mga5 (unaffected) | — |
| Mageia | xstream | 0 (affected), 1.4.9-1.mga5 (unaffected) | — |
Aliases
References
Browse GCVE Records
73,040 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.