Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/thunderbird@78.11.0-1
Typealpm
Namespacearchlinux
Namethunderbird
Version78.11.0-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version91.1.0-1
Latest_non_vulnerable_version91.10-1
Affected_by_vulnerabilities
0
url VCID-ewjv-u485-dqg9
vulnerability_id VCID-ewjv-u485-dqg9
summary If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore the injected data. This could have resulted in Thunderbird showing incorrect information, for example the attacker could have tricked Thunderbird to show folders that didn't exist on the IMAP server.
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
4
reference_url https://security.archlinux.org/ASA-202107-21
reference_id ASA-202107-21
reference_type
scores
url https://security.archlinux.org/ASA-202107-21
5
reference_url https://security.archlinux.org/AVG-2152
reference_id AVG-2152
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2152
6
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
reference_id mfsa2021-30
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
fixed_packages
0
url pkg:alpm/archlinux/thunderbird@78.12.0-1
purl pkg:alpm/archlinux/thunderbird@78.12.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cnr-28vc-sqcy
1
vulnerability VCID-5h5r-wcta-a7au
2
vulnerability VCID-918z-26zm-67hc
3
vulnerability VCID-n657-bctg-1few
4
vulnerability VCID-wqye-9ny7-e7a3
5
vulnerability VCID-yny3-7vjj-kyga
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.12.0-1
aliases CVE-2021-29969
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ewjv-u485-dqg9
1
url VCID-j7v9-pfg1-v3c7
vulnerability_id VCID-j7v9-pfg1-v3c7
summary Mozilla developers Emil Ghitta, Tyson Smith, Valentin Gosu, Olli Pettay, and Randell Jesup reported memory safety bugs present in Firefox 89 and Firefox ESR 78.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
4
reference_url https://security.archlinux.org/ASA-202107-20
reference_id ASA-202107-20
reference_type
scores
url https://security.archlinux.org/ASA-202107-20
5
reference_url https://security.archlinux.org/ASA-202107-21
reference_id ASA-202107-21
reference_type
scores
url https://security.archlinux.org/ASA-202107-21
6
reference_url https://security.archlinux.org/AVG-2148
reference_id AVG-2148
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2148
7
reference_url https://security.archlinux.org/AVG-2152
reference_id AVG-2152
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2152
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
reference_id mfsa2021-28
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
reference_id mfsa2021-29
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
reference_id mfsa2021-30
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
fixed_packages
0
url pkg:alpm/archlinux/thunderbird@78.12.0-1
purl pkg:alpm/archlinux/thunderbird@78.12.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cnr-28vc-sqcy
1
vulnerability VCID-5h5r-wcta-a7au
2
vulnerability VCID-918z-26zm-67hc
3
vulnerability VCID-n657-bctg-1few
4
vulnerability VCID-wqye-9ny7-e7a3
5
vulnerability VCID-yny3-7vjj-kyga
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.12.0-1
aliases CVE-2021-29976
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j7v9-pfg1-v3c7
2
url VCID-mv47-mh43-wfg1
vulnerability_id VCID-mv47-mh43-wfg1
summary A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. *This bug only affected Firefox when accessibility was enabled.*
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
4
reference_url https://security.archlinux.org/ASA-202107-20
reference_id ASA-202107-20
reference_type
scores
url https://security.archlinux.org/ASA-202107-20
5
reference_url https://security.archlinux.org/ASA-202107-21
reference_id ASA-202107-21
reference_type
scores
url https://security.archlinux.org/ASA-202107-21
6
reference_url https://security.archlinux.org/AVG-2148
reference_id AVG-2148
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2148
7
reference_url https://security.archlinux.org/AVG-2152
reference_id AVG-2152
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2152
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
reference_id mfsa2021-28
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
reference_id mfsa2021-29
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
10
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
reference_id mfsa2021-30
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
fixed_packages
0
url pkg:alpm/archlinux/thunderbird@78.12.0-1
purl pkg:alpm/archlinux/thunderbird@78.12.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cnr-28vc-sqcy
1
vulnerability VCID-5h5r-wcta-a7au
2
vulnerability VCID-918z-26zm-67hc
3
vulnerability VCID-n657-bctg-1few
4
vulnerability VCID-wqye-9ny7-e7a3
5
vulnerability VCID-yny3-7vjj-kyga
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.12.0-1
aliases CVE-2021-29970
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mv47-mh43-wfg1
3
url VCID-w6kt-w2ua-myfm
vulnerability_id VCID-w6kt-w2ua-myfm
summary An out of bounds write in ANGLE could have allowed an attacker to corrupt memory leading to a potentially exploitable crash.
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29969
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29970
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29976
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30547
4
reference_url https://security.archlinux.org/ASA-202106-31
reference_id ASA-202106-31
reference_type
scores
url https://security.archlinux.org/ASA-202106-31
5
reference_url https://security.archlinux.org/ASA-202106-32
reference_id ASA-202106-32
reference_type
scores
url https://security.archlinux.org/ASA-202106-32
6
reference_url https://security.archlinux.org/ASA-202107-20
reference_id ASA-202107-20
reference_type
scores
url https://security.archlinux.org/ASA-202107-20
7
reference_url https://security.archlinux.org/ASA-202107-21
reference_id ASA-202107-21
reference_type
scores
url https://security.archlinux.org/ASA-202107-21
8
reference_url https://security.archlinux.org/AVG-2057
reference_id AVG-2057
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2057
9
reference_url https://security.archlinux.org/AVG-2058
reference_id AVG-2058
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2058
10
reference_url https://security.archlinux.org/AVG-2148
reference_id AVG-2148
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2148
11
reference_url https://security.archlinux.org/AVG-2152
reference_id AVG-2152
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2152
12
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
reference_id mfsa2021-28
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-28
13
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
reference_id mfsa2021-29
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-29
14
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
reference_id mfsa2021-30
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-30
fixed_packages
0
url pkg:alpm/archlinux/thunderbird@78.12.0-1
purl pkg:alpm/archlinux/thunderbird@78.12.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cnr-28vc-sqcy
1
vulnerability VCID-5h5r-wcta-a7au
2
vulnerability VCID-918z-26zm-67hc
3
vulnerability VCID-n657-bctg-1few
4
vulnerability VCID-wqye-9ny7-e7a3
5
vulnerability VCID-yny3-7vjj-kyga
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.12.0-1
aliases CVE-2021-30547
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w6kt-w2ua-myfm
Fixing_vulnerabilities
0
url VCID-maga-jq3w-1bfk
vulnerability_id VCID-maga-jq3w-1bfk
summary Mozilla developers Gabriele Svelto, Anny Gakhokidze, Alexandru Michis, Christian Holler reported memory safety bugs present in Firefox 88 and Firefox ESR 78.10. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
references
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29956
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29956
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29957
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29957
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29967
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-29967
3
reference_url https://security.archlinux.org/ASA-202106-22
reference_id ASA-202106-22
reference_type
scores
url https://security.archlinux.org/ASA-202106-22
4
reference_url https://security.archlinux.org/ASA-202106-3
reference_id ASA-202106-3
reference_type
scores
url https://security.archlinux.org/ASA-202106-3
5
reference_url https://security.archlinux.org/AVG-2018
reference_id AVG-2018
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2018
6
reference_url https://security.archlinux.org/AVG-2035
reference_id AVG-2035
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2035
7
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-23
reference_id mfsa2021-23
reference_type
scores
0
value high
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-23
8
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-24
reference_id mfsa2021-24
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-24
9
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2021-26
reference_id mfsa2021-26
reference_type
scores
0
value none
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2021-26
fixed_packages
0
url pkg:alpm/archlinux/thunderbird@78.11.0-1
purl pkg:alpm/archlinux/thunderbird@78.11.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ewjv-u485-dqg9
1
vulnerability VCID-j7v9-pfg1-v3c7
2
vulnerability VCID-mv47-mh43-wfg1
3
vulnerability VCID-w6kt-w2ua-myfm
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.11.0-1
aliases CVE-2021-29967
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-maga-jq3w-1bfk
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@78.11.0-1