Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/libcurl-gnutls@7.56.1-1
Typealpm
Namespacearchlinux
Namelibcurl-gnutls
Version7.56.1-1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version7.58.0-1
Latest_non_vulnerable_version7.79.0-1
Affected_by_vulnerabilities
0
url VCID-7jrx-ykk8-h3gp
vulnerability_id VCID-7jrx-ykk8-h3gp
summary multiple issues
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8817.json
reference_id
reference_type
scores
0
value 3.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8817.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-8817
reference_id
reference_type
scores
0
value 0.00735
scoring_system epss
scoring_elements 0.73169
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-8817
2
reference_url https://curl.se/docs/CVE-2017-8817.html
reference_id
reference_type
scores
0
value Medium
scoring_system cvssv3.1
scoring_elements
url https://curl.se/docs/CVE-2017-8817.html
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8816
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8816
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8817
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8817
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1515760
reference_id 1515760
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1515760
6
reference_url https://security.archlinux.org/ASA-201711-33
reference_id ASA-201711-33
reference_type
scores
url https://security.archlinux.org/ASA-201711-33
7
reference_url https://security.archlinux.org/ASA-201711-34
reference_id ASA-201711-34
reference_type
scores
url https://security.archlinux.org/ASA-201711-34
8
reference_url https://security.archlinux.org/ASA-201711-35
reference_id ASA-201711-35
reference_type
scores
url https://security.archlinux.org/ASA-201711-35
9
reference_url https://security.archlinux.org/ASA-201711-36
reference_id ASA-201711-36
reference_type
scores
url https://security.archlinux.org/ASA-201711-36
10
reference_url https://security.archlinux.org/ASA-201711-37
reference_id ASA-201711-37
reference_type
scores
url https://security.archlinux.org/ASA-201711-37
11
reference_url https://security.archlinux.org/ASA-201711-38
reference_id ASA-201711-38
reference_type
scores
url https://security.archlinux.org/ASA-201711-38
12
reference_url https://security.archlinux.org/AVG-521
reference_id AVG-521
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-521
13
reference_url https://security.archlinux.org/AVG-522
reference_id AVG-522
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-522
14
reference_url https://security.archlinux.org/AVG-523
reference_id AVG-523
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-523
15
reference_url https://security.archlinux.org/AVG-524
reference_id AVG-524
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-524
16
reference_url https://security.archlinux.org/AVG-525
reference_id AVG-525
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-525
17
reference_url https://security.archlinux.org/AVG-526
reference_id AVG-526
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-526
fixed_packages
0
url pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
purl pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-raxd-4nxj-gkhp
1
vulnerability VCID-rt5e-saz2-j7c9
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
aliases CVE-2017-8817
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7jrx-ykk8-h3gp
1
url VCID-dj48-3dkt-dbdh
vulnerability_id VCID-dj48-3dkt-dbdh
summary arbitrary code execution
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8818.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8818.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-8818
reference_id
reference_type
scores
0
value 0.00825
scoring_system epss
scoring_elements 0.74821
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-8818
2
reference_url https://curl.se/docs/CVE-2017-8818.html
reference_id
reference_type
scores
0
value High
scoring_system cvssv3.1
scoring_elements
url https://curl.se/docs/CVE-2017-8818.html
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8818
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8818
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1517691
reference_id 1517691
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1517691
5
reference_url https://security.archlinux.org/ASA-201711-36
reference_id ASA-201711-36
reference_type
scores
url https://security.archlinux.org/ASA-201711-36
6
reference_url https://security.archlinux.org/ASA-201711-37
reference_id ASA-201711-37
reference_type
scores
url https://security.archlinux.org/ASA-201711-37
7
reference_url https://security.archlinux.org/ASA-201711-38
reference_id ASA-201711-38
reference_type
scores
url https://security.archlinux.org/ASA-201711-38
8
reference_url https://security.archlinux.org/AVG-521
reference_id AVG-521
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-521
9
reference_url https://security.archlinux.org/AVG-522
reference_id AVG-522
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-522
10
reference_url https://security.archlinux.org/AVG-523
reference_id AVG-523
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-523
11
reference_url https://security.archlinux.org/AVG-527
reference_id AVG-527
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-527
12
reference_url https://security.archlinux.org/AVG-528
reference_id AVG-528
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-528
13
reference_url https://security.archlinux.org/AVG-529
reference_id AVG-529
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-529
fixed_packages
0
url pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
purl pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-raxd-4nxj-gkhp
1
vulnerability VCID-rt5e-saz2-j7c9
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
aliases CVE-2017-8818
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dj48-3dkt-dbdh
2
url VCID-f8vu-23bb-5ue7
vulnerability_id VCID-f8vu-23bb-5ue7
summary arbitrary code execution
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8816.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8816.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-8816
reference_id
reference_type
scores
0
value 0.00454
scoring_system epss
scoring_elements 0.64147
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-8816
2
reference_url https://curl.se/docs/CVE-2017-8816.html
reference_id
reference_type
scores
0
value Medium
scoring_system cvssv3.1
scoring_elements
url https://curl.se/docs/CVE-2017-8816.html
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8816
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8816
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8817
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8817
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1515757
reference_id 1515757
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1515757
6
reference_url https://security.archlinux.org/ASA-201711-36
reference_id ASA-201711-36
reference_type
scores
url https://security.archlinux.org/ASA-201711-36
7
reference_url https://security.archlinux.org/ASA-201711-37
reference_id ASA-201711-37
reference_type
scores
url https://security.archlinux.org/ASA-201711-37
8
reference_url https://security.archlinux.org/ASA-201711-38
reference_id ASA-201711-38
reference_type
scores
url https://security.archlinux.org/ASA-201711-38
9
reference_url https://security.archlinux.org/AVG-521
reference_id AVG-521
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-521
10
reference_url https://security.archlinux.org/AVG-522
reference_id AVG-522
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-522
11
reference_url https://security.archlinux.org/AVG-523
reference_id AVG-523
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-523
12
reference_url https://security.archlinux.org/AVG-527
reference_id AVG-527
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-527
13
reference_url https://security.archlinux.org/AVG-528
reference_id AVG-528
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-528
14
reference_url https://security.archlinux.org/AVG-529
reference_id AVG-529
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-529
fixed_packages
0
url pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
purl pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-raxd-4nxj-gkhp
1
vulnerability VCID-rt5e-saz2-j7c9
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.57.0-1
aliases CVE-2017-8816
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f8vu-23bb-5ue7
Fixing_vulnerabilities
0
url VCID-swmn-7ns9-ekg1
vulnerability_id VCID-swmn-7ns9-ekg1
summary An IMAP FETCH response line indicates the size of the returned data, in number of bytes. When that response says the data is zero bytes, libcurl would pass on that (non-existing) data with a pointer and the size (zero) to the deliver-data function. libcurl's deliver-data function treats zero as a magic number and invokes strlen() on the data to figure out the length. The strlen() is called on a heap based buffer that might not be zero terminated so libcurl might read beyond the end of it into whatever memory lies after (or just crash) and then deliver that to the application as if it was actually downloaded.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000257.json
reference_id
reference_type
scores
0
value 4.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000257.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-1000257
reference_id
reference_type
scores
0
value 0.00863
scoring_system epss
scoring_elements 0.75438
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-1000257
2
reference_url https://curl.se/docs/CVE-2017-1000257.html
reference_id
reference_type
scores
0
value Medium
scoring_system cvssv3.1
scoring_elements
url https://curl.se/docs/CVE-2017-1000257.html
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1503705
reference_id 1503705
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1503705
4
reference_url https://security.archlinux.org/ASA-201711-10
reference_id ASA-201711-10
reference_type
scores
url https://security.archlinux.org/ASA-201711-10
5
reference_url https://security.archlinux.org/ASA-201711-11
reference_id ASA-201711-11
reference_type
scores
url https://security.archlinux.org/ASA-201711-11
6
reference_url https://security.archlinux.org/ASA-201711-6
reference_id ASA-201711-6
reference_type
scores
url https://security.archlinux.org/ASA-201711-6
7
reference_url https://security.archlinux.org/ASA-201711-7
reference_id ASA-201711-7
reference_type
scores
url https://security.archlinux.org/ASA-201711-7
8
reference_url https://security.archlinux.org/ASA-201711-8
reference_id ASA-201711-8
reference_type
scores
url https://security.archlinux.org/ASA-201711-8
9
reference_url https://security.archlinux.org/ASA-201711-9
reference_id ASA-201711-9
reference_type
scores
url https://security.archlinux.org/ASA-201711-9
10
reference_url https://security.archlinux.org/AVG-462
reference_id AVG-462
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-462
11
reference_url https://security.archlinux.org/AVG-463
reference_id AVG-463
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-463
12
reference_url https://security.archlinux.org/AVG-464
reference_id AVG-464
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-464
13
reference_url https://security.archlinux.org/AVG-465
reference_id AVG-465
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-465
14
reference_url https://security.archlinux.org/AVG-466
reference_id AVG-466
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-466
15
reference_url https://security.archlinux.org/AVG-467
reference_id AVG-467
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-467
16
reference_url https://access.redhat.com/errata/RHSA-2017:3263
reference_id RHSA-2017:3263
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:3263
fixed_packages
0
url pkg:alpm/archlinux/libcurl-gnutls@7.56.1-1
purl pkg:alpm/archlinux/libcurl-gnutls@7.56.1-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7jrx-ykk8-h3gp
1
vulnerability VCID-dj48-3dkt-dbdh
2
vulnerability VCID-f8vu-23bb-5ue7
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.56.1-1
aliases CVE-2017-1000257
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-swmn-7ns9-ekg1
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libcurl-gnutls@7.56.1-1