Debian 11 Bullseye DLA-4522-1 libxml-parser-perl Important CVE-2006-10003
debian lts
April 4, 2026
It was discovered that libxml-parser-perl, a Perl module for parsing XML files, was prone to an off-by-one heap buffer overflow in `st_serial_stack()`
Topics Covered
Summary
This update also includes a follow-up improvement change for
CVE-2006-10002 (buffer overwrite in `parse_stream()`.)
For Debian 11 bullseye, these problems have been fixed in version
2.46-2+deb11u1.
We recommend that you upgrade your libxml-parser-perl packages.
For the detailed security status of libxml-parser-perl please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libxml-parser-perl
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Package: libxml-parser-perl
Version: 2.46-2+deb11u1
CVE ID: CVE-2006-10003
Debian Bug: 378412
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!