Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/48504?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "type": "deb", "namespace": "debian", "name": "jbig2dec", "version": "0.19-2", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "0.19-3", "latest_non_vulnerable_version": "0.20-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4163?format=api", "vulnerability_id": "VCID-8vpq-2rhe-aba3", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9216.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9216.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9216", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00891", "scoring_system": "epss", "scoring_elements": "0.76083", "published_at": "2026-06-14T12:55:00Z" }, { "value": "0.00891", "scoring_system": "epss", "scoring_elements": "0.76005", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00891", "scoring_system": "epss", "scoring_elements": "0.76076", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00891", "scoring_system": "epss", "scoring_elements": "0.76089", "published_at": "2026-06-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9216" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456728", "reference_id": "1456728", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1456728" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863279", "reference_id": "863279", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863279" }, { "reference_url": "https://security.archlinux.org/ASA-201711-28", "reference_id": "ASA-201711-28", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201711-28" }, { "reference_url": "https://security.archlinux.org/AVG-517", "reference_id": "AVG-517", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-517" }, { "reference_url": "https://usn.ubuntu.com/5405-1/", "reference_id": "USN-5405-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5405-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48508?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-9216" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8vpq-2rhe-aba3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/185212?format=api", "vulnerability_id": "VCID-kwb1-uxjm-zqf6", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8729", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00532", "scoring_system": "epss", "scoring_elements": "0.67749", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00532", "scoring_system": "epss", "scoring_elements": "0.67839", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00532", "scoring_system": "epss", "scoring_elements": "0.67851", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00532", "scoring_system": "epss", "scoring_elements": "0.67848", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-8729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9601" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863886", "reference_id": "863886", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863886" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48506?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-8729" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kwb1-uxjm-zqf6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/7608?format=api", "vulnerability_id": "VCID-t5sg-dkva-cfh2", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00878", "scoring_system": "epss", "scoring_elements": "0.75754", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00878", "scoring_system": "epss", "scoring_elements": "0.75825", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00878", "scoring_system": "epss", "scoring_elements": "0.75839", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00878", "scoring_system": "epss", "scoring_elements": "0.75834", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12268" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848518", "reference_id": "1848518", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2897", "reference_id": "RHSA-2020:2897", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2897" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2971", "reference_id": "RHSA-2020:2971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3043", "reference_id": "RHSA-2020:3043", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3043" }, { "reference_url": "https://usn.ubuntu.com/5405-1/", "reference_id": "USN-5405-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5405-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48509?format=api", "purl": "pkg:deb/debian/jbig2dec@0.18-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.18-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-12268" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t5sg-dkva-cfh2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184885?format=api", "vulnerability_id": "VCID-tbm9-t72k-bka6", "summary": "Multiple integer overflow flaws have been discovered in jbig2dec,\n possibly resulting in execution of arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7976.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7976.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7976", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.52942", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53071", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53086", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00292", "scoring_system": "epss", "scoring_elements": "0.53068", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7976" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443897", "reference_id": "1443897", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443897" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860787", "reference_id": "860787", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860787" }, { "reference_url": "https://security.gentoo.org/glsa/201708-10", "reference_id": "GLSA-201708-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201708-10" }, { "reference_url": "https://usn.ubuntu.com/3297-1/", "reference_id": "USN-3297-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3297-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48507?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-4.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-4.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-7976" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tbm9-t72k-bka6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2151?format=api", "vulnerability_id": "VCID-tn6p-w8ru-7bgd", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.64082", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.64186", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.64199", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.64196", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-9601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8729", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8729" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9601" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:P/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410021", "reference_id": "1410021", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1410021" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850497", "reference_id": "850497", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850497" }, { "reference_url": "https://security.gentoo.org/glsa/201706-24", "reference_id": "GLSA-201706-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-24" }, { "reference_url": "https://usn.ubuntu.com/3297-1/", "reference_id": "USN-3297-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3297-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48506?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-9601" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tn6p-w8ru-7bgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184884?format=api", "vulnerability_id": "VCID-vqu8-tyrx-mbhr", "summary": "Multiple integer overflow flaws have been discovered in jbig2dec,\n possibly resulting in execution of arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7975.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7975.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7975", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57793", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57905", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57921", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57911", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443940", "reference_id": "1443940", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1443940" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860788", "reference_id": "860788", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860788" }, { "reference_url": "https://security.gentoo.org/glsa/201708-10", "reference_id": "GLSA-201708-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201708-10" }, { "reference_url": "https://usn.ubuntu.com/3297-1/", "reference_id": "USN-3297-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3297-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48507?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-4.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-4.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-7975" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vqu8-tyrx-mbhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/180066?format=api", "vulnerability_id": "VCID-xwmk-gezt-ayaa", "summary": "Multiple vulnerabilities have been found in GPL Ghostscript, the\n worst of which may allow execution of arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0196.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09527", "scoring_system": "epss", "scoring_elements": "0.93024", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.09527", "scoring_system": "epss", "scoring_elements": "0.93048", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.09527", "scoring_system": "epss", "scoring_elements": "0.9305", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.09527", "scoring_system": "epss", "scoring_elements": "0.93049", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0196" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=493379", "reference_id": "493379", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=493379" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803", "reference_id": "524803", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803" }, { "reference_url": "https://security.gentoo.org/glsa/201412-17", "reference_id": "GLSA-201412-17", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-17" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:0421", "reference_id": "RHSA-2009:0421", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:0421" }, { "reference_url": "https://usn.ubuntu.com/757-1/", "reference_id": "USN-757-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/757-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48503?format=api", "purl": "pkg:deb/debian/jbig2dec@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-0196" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xwmk-gezt-ayaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/184883?format=api", "vulnerability_id": "VCID-yq1a-pk8g-dkej", "summary": "Multiple integer overflow flaws have been discovered in jbig2dec,\n possibly resulting in execution of arbitrary code or Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7885.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7885.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7885", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00287", "scoring_system": "epss", "scoring_elements": "0.52508", "published_at": "2026-06-11T12:55:00Z" }, { "value": "0.00287", "scoring_system": "epss", "scoring_elements": "0.52635", "published_at": "2026-06-12T12:55:00Z" }, { "value": "0.00287", "scoring_system": "epss", "scoring_elements": "0.52647", "published_at": "2026-06-13T12:55:00Z" }, { "value": "0.00287", "scoring_system": "epss", "scoring_elements": "0.52629", "published_at": "2026-06-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-7885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7976" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444104", "reference_id": "1444104", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1444104" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860460", "reference_id": "860460", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860460" }, { "reference_url": "https://security.gentoo.org/glsa/201708-10", "reference_id": "GLSA-201708-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201708-10" }, { "reference_url": "https://usn.ubuntu.com/3297-1/", "reference_id": "USN-3297-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3297-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/48507?format=api", "purl": "pkg:deb/debian/jbig2dec@0.13-4.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.13-4.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48504?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48502?format=api", "purl": "pkg:deb/debian/jbig2dec@0.19-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/48505?format=api", "purl": "pkg:deb/debian/jbig2dec@0.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.20-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-7885" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yq1a-pk8g-dkej" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jbig2dec@0.19-2%3Fdistro=trixie" }