Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/suckless-tools@38-2

Type deb

Namespace debian

Name suckless-tools

Version 38-2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 42-2

Latest_non_vulnerable_version 42-2

Affected_by_vulnerabilities

url VCID-6qug-har7-n7bj

vulnerability_id VCID-6qug-har7-n7bj

summary

This GLSA contains notification of vulnerabilities found in several
    Gentoo packages which have been fixed prior to January 1, 2013. The worst
    of these vulnerabilities could lead to local privilege escalation and
    remote code execution. Please see the package list and CVE identifiers
    below for more information.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-1620

reference_id

reference_type

scores

value	0.00097
scoring_system	epss
scoring_elements	0.26844
published_at	2026-04-01T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26885
published_at	2026-04-02T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.2692
published_at	2026-04-04T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26706
published_at	2026-04-07T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26774
published_at	2026-04-08T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26823
published_at	2026-04-09T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26826
published_at	2026-04-11T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26781
published_at	2026-04-12T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26724
published_at	2026-04-13T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26733
published_at	2026-04-16T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26704
published_at	2026-04-18T12:55:00Z

value	0.00097
scoring_system	epss
scoring_elements	0.26669
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-1620

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1620
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1620

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667796
reference_id	667796
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=667796

reference_url	https://security.gentoo.org/glsa/201412-10
reference_id	GLSA-201412-10
reference_type
scores
url	https://security.gentoo.org/glsa/201412-10

fixed_packages

url pkg:deb/debian/suckless-tools@40-1

purl pkg:deb/debian/suckless-tools@40-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-7dfn-wk81-9yh5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/suckless-tools@40-1

aliases CVE-2012-1620

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6qug-har7-n7bj

url VCID-7dfn-wk81-9yh5

vulnerability_id VCID-7dfn-wk81-9yh5

summary slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-6866

reference_id

reference_type

scores

value	0.00473
scoring_system	epss
scoring_elements	0.64734
published_at	2026-04-21T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64622
published_at	2026-04-01T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64674
published_at	2026-04-02T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64702
published_at	2026-04-04T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64661
published_at	2026-04-07T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64708
published_at	2026-04-08T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64723
published_at	2026-04-09T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.6474
published_at	2026-04-11T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64728
published_at	2026-04-12T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.647
published_at	2026-04-13T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64737
published_at	2026-04-16T12:55:00Z

value	0.00473
scoring_system	epss
scoring_elements	0.64747
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-6866

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6866
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6866

reference_url	https://security.archlinux.org/ASA-201611-21
reference_id	ASA-201611-21
reference_type
scores
url	https://security.archlinux.org/ASA-201611-21

reference_url

https://security.archlinux.org/AVG-77

reference_id

AVG-77

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-77

fixed_packages

url	pkg:deb/debian/suckless-tools@42-2
purl	pkg:deb/debian/suckless-tools@42-2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/suckless-tools@42-2

aliases CVE-2016-6866

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7dfn-wk81-9yh5

Fixing_vulnerabilities

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/suckless-tools@38-2

Package Instance