Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/apache2@2.2.11-7?distro=trixie

Type deb

Namespace debian

Name apache2

Version 2.2.11-7

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.2.13-2

Latest_non_vulnerable_version 2.4.66-8

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-fysz-5mr6-fbf1

vulnerability_id VCID-fysz-5mr6-fbf1

summary A denial of service flaw was found in the mod_proxy module when it was used as a reverse proxy. A remote attacker could use this flaw to force a proxy process to consume large amounts of CPU time.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1890.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1890.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1890

reference_id

reference_type

scores

value	0.3787
scoring_system	epss
scoring_elements	0.97216
published_at	2026-04-16T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.9718
published_at	2026-04-01T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97186
published_at	2026-04-02T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97192
published_at	2026-04-04T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97193
published_at	2026-04-07T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97202
published_at	2026-04-08T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97204
published_at	2026-04-09T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97207
published_at	2026-04-11T12:55:00Z

value	0.3787
scoring_system	epss
scoring_elements	0.97208
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1890

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=509375
reference_id	509375
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=509375

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536718
reference_id	536718
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=536718

reference_url

https://httpd.apache.org/security/json/CVE-2009-1890.json

reference_id

CVE-2009-1890

reference_type

scores

value	important
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2009-1890.json

reference_url	https://security.gentoo.org/glsa/200907-04
reference_id	GLSA-200907-04
reference_type
scores
url	https://security.gentoo.org/glsa/200907-04

reference_url	https://access.redhat.com/errata/RHSA-2009:1148
reference_id	RHSA-2009:1148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1148

reference_url	https://access.redhat.com/errata/RHSA-2009:1155
reference_id	RHSA-2009:1155
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1155

reference_url	https://access.redhat.com/errata/RHSA-2009:1160
reference_id	RHSA-2009:1160
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1160

reference_url	https://usn.ubuntu.com/802-1/
reference_id	USN-802-1
reference_type
scores
url	https://usn.ubuntu.com/802-1/

fixed_packages

url	pkg:deb/debian/apache2@2.2.11-7?distro=trixie
purl	pkg:deb/debian/apache2@2.2.11-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.11-7%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
purl	pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb13u2%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-8?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-8%3Fdistro=trixie

aliases CVE-2009-1890

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fysz-5mr6-fbf1

url VCID-pdj3-4txb-vych

vulnerability_id VCID-pdj3-4txb-vych

summary A denial of service flaw was found in the mod_deflate module. This module continued to compress large files until compression was complete, even if the network connection that requested the content was closed before compression completed. This would cause mod_deflate to consume large amounts of CPU if mod_deflate was enabled for a large file.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1891.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1891.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-1891

reference_id

reference_type

scores

value	0.18846
scoring_system	epss
scoring_elements	0.95308
published_at	2026-04-16T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.9526
published_at	2026-04-01T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95272
published_at	2026-04-02T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95278
published_at	2026-04-04T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95283
published_at	2026-04-07T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95291
published_at	2026-04-08T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95293
published_at	2026-04-09T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95298
published_at	2026-04-11T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95299
published_at	2026-04-12T12:55:00Z

value	0.18846
scoring_system	epss
scoring_elements	0.95301
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-1891

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=509125
reference_id	509125
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=509125

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534712
reference_id	534712
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534712

reference_url

https://httpd.apache.org/security/json/CVE-2009-1891.json

reference_id

CVE-2009-1891

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2009-1891.json

reference_url	https://security.gentoo.org/glsa/200907-04
reference_id	GLSA-200907-04
reference_type
scores
url	https://security.gentoo.org/glsa/200907-04

reference_url	https://access.redhat.com/errata/RHSA-2009:1148
reference_id	RHSA-2009:1148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1148

reference_url	https://access.redhat.com/errata/RHSA-2009:1155
reference_id	RHSA-2009:1155
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1155

reference_url	https://access.redhat.com/errata/RHSA-2009:1160
reference_id	RHSA-2009:1160
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1160

reference_url	https://access.redhat.com/errata/RHSA-2009:1205
reference_id	RHSA-2009:1205
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1205

reference_url	https://usn.ubuntu.com/802-1/
reference_id	USN-802-1
reference_type
scores
url	https://usn.ubuntu.com/802-1/

fixed_packages

url	pkg:deb/debian/apache2@2.2.11-7?distro=trixie
purl	pkg:deb/debian/apache2@2.2.11-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.11-7%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
purl	pkg:deb/debian/apache2@2.4.62-1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.62-1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-1~deb13u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-1~deb13u2%3Fdistro=trixie

url	pkg:deb/debian/apache2@2.4.66-8?distro=trixie
purl	pkg:deb/debian/apache2@2.4.66-8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.4.66-8%3Fdistro=trixie

aliases CVE-2009-1891

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pdj3-4txb-vych

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/apache2@2.2.11-7%3Fdistro=trixie

Package Instance