Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/audacity@1.3.5-2%2Blenny1

Type deb

Namespace debian

Name audacity

Version 1.3.5-2+lenny1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 2.4.2~dfsg0-5

Latest_non_vulnerable_version 2.4.2~dfsg0-5

Affected_by_vulnerabilities

url VCID-auku-frx6-puc6

vulnerability_id VCID-auku-frx6-puc6

summary Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP2 file.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-2541

reference_id

reference_type

scores

value	0.00859
scoring_system	epss
scoring_elements	0.75373
published_at	2026-06-04T12:55:00Z

value	0.00859
scoring_system	epss
scoring_elements	0.75402
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-2541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2541

fixed_packages

url pkg:deb/debian/audacity@2.1.2-2

purl pkg:deb/debian/audacity@2.1.2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.1.2-2

aliases CVE-2016-2541

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-auku-frx6-puc6

url VCID-d196-pux2-9bft

vulnerability_id VCID-d196-pux2-9bft

summary Audacity before 2.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted FORMATCHUNK structure.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-2540

reference_id

reference_type

scores

value	0.00908
scoring_system	epss
scoring_elements	0.76156
published_at	2026-06-04T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.76181
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-2540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2540

fixed_packages

url pkg:deb/debian/audacity@2.1.2-2

purl pkg:deb/debian/audacity@2.1.2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.1.2-2

aliases CVE-2016-2540

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d196-pux2-9bft

url VCID-nahx-g5em-y7cd

vulnerability_id VCID-nahx-g5em-y7cd

summary Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a .gro file containing a long string.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0490.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0490.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0490

reference_id

reference_type

scores

value	0.5806
scoring_system	epss
scoring_elements	0.98218
published_at	2026-06-04T12:55:00Z

value	0.5806
scoring_system	epss
scoring_elements	0.98221
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0490

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0490
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0490

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=484951
reference_id	484951
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=484951

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514138
reference_id	514138
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514138

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/10322.py
reference_id	CVE-2009-0490;OSVDB-51070
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/10322.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9501.py
reference_id	CVE-2009-0490;OSVDB-51070
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/local/9501.py

reference_url	https://security.gentoo.org/glsa/200903-03
reference_id	GLSA-200903-03
reference_type
scores
url	https://security.gentoo.org/glsa/200903-03

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/7634.pl
reference_id	OSVDB-51070;CVE-2009-0490
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/7634.pl

fixed_packages

url pkg:deb/debian/audacity@1.3.12-6

purl pkg:deb/debian/audacity@1.3.12-6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-auku-frx6-puc6

vulnerability	VCID-d196-pux2-9bft

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.12-6

aliases CVE-2009-0490

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nahx-g5em-y7cd

url VCID-r35b-59z3-n3aa

vulnerability_id VCID-r35b-59z3-n3aa

summary information disclosure

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-11867

reference_id

reference_type

scores

value	0.00118
scoring_system	epss
scoring_elements	0.30302
published_at	2026-06-04T12:55:00Z

value	0.00118
scoring_system	epss
scoring_elements	0.30376
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-11867

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11867

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874
reference_id	976874
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976874

reference_url

https://security.archlinux.org/AVG-1311

reference_id

AVG-1311

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1311

reference_url	https://usn.ubuntu.com/7211-1/
reference_id	USN-7211-1
reference_type
scores
url	https://usn.ubuntu.com/7211-1/

fixed_packages

url	pkg:deb/debian/audacity@2.4.2~dfsg0-5
purl	pkg:deb/debian/audacity@2.4.2~dfsg0-5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@2.4.2~dfsg0-5

aliases CVE-2020-11867

risk_score 1.4

exploitability 0.5

weighted_severity 2.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r35b-59z3-n3aa

Fixing_vulnerabilities

url VCID-425q-pchy-2yfg

vulnerability_id VCID-425q-pchy-2yfg

summary A buffer over-read flaw was found in the bundled expat library. An attacker who is able to get Apache to parse an untrused XML document (for example through mod_dav) may be able to cause a crash. This crash would only be a denial of service if using the worker MPM.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3720.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3720.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3720

reference_id

reference_type

scores

value	0.01573
scoring_system	epss
scoring_elements	0.81873
published_at	2026-06-04T12:55:00Z

value	0.01573
scoring_system	epss
scoring_elements	0.81907
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3720

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=531697
reference_id	531697
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=531697

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551936
reference_id	551936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551936

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919
reference_id	560919
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920
reference_id	560920
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921
reference_id	560921
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922
reference_id	560922
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926
reference_id	560926
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927
reference_id	560927
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928
reference_id	560928
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929
reference_id	560929
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930
reference_id	560930
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935
reference_id	560935
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936
reference_id	560936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937
reference_id	560937
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940
reference_id	560940
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942
reference_id	560942
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560950
reference_id	560950
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560950

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053
reference_id	601053
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053

reference_url

https://httpd.apache.org/security/json/CVE-2009-3720.json

reference_id

CVE-2009-3720

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2009-3720.json

reference_url	https://security.gentoo.org/glsa/201209-06
reference_id	GLSA-201209-06
reference_type
scores
url	https://security.gentoo.org/glsa/201209-06

reference_url	https://access.redhat.com/errata/RHSA-2009:1572
reference_id	RHSA-2009:1572
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1572

reference_url	https://access.redhat.com/errata/RHSA-2009:1625
reference_id	RHSA-2009:1625
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1625

reference_url	https://access.redhat.com/errata/RHSA-2010:0002
reference_id	RHSA-2010:0002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0002

reference_url	https://access.redhat.com/errata/RHSA-2011:0491
reference_id	RHSA-2011:0491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0491

reference_url	https://access.redhat.com/errata/RHSA-2011:0492
reference_id	RHSA-2011:0492
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0492

reference_url	https://access.redhat.com/errata/RHSA-2017:3239
reference_id	RHSA-2017:3239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:3239

reference_url	https://usn.ubuntu.com/890-1/
reference_id	USN-890-1
reference_type
scores
url	https://usn.ubuntu.com/890-1/

reference_url	https://usn.ubuntu.com/890-2/
reference_id	USN-890-2
reference_type
scores
url	https://usn.ubuntu.com/890-2/

reference_url	https://usn.ubuntu.com/890-3/
reference_id	USN-890-3
reference_type
scores
url	https://usn.ubuntu.com/890-3/

reference_url	https://usn.ubuntu.com/890-4/
reference_id	USN-890-4
reference_type
scores
url	https://usn.ubuntu.com/890-4/

reference_url	https://usn.ubuntu.com/890-5/
reference_id	USN-890-5
reference_type
scores
url	https://usn.ubuntu.com/890-5/

reference_url	https://usn.ubuntu.com/890-6/
reference_id	USN-890-6
reference_type
scores
url	https://usn.ubuntu.com/890-6/

fixed_packages

url pkg:deb/debian/audacity@1.3.5-2%2Blenny1

purl pkg:deb/debian/audacity@1.3.5-2%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-auku-frx6-puc6

vulnerability	VCID-d196-pux2-9bft

vulnerability	VCID-nahx-g5em-y7cd

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.5-2%252Blenny1

aliases CVE-2009-3720

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-425q-pchy-2yfg

url VCID-ged4-a25e-5bd6

vulnerability_id VCID-ged4-a25e-5bd6

summary Audacity 1.3.2 creates a temporary directory with a predictable name without checking for previous existence of that directory, which allows local users to cause a denial of service (recording deadlock) by creating the directory before Audacity is run. NOTE: this issue can be leveraged to delete arbitrary files or directories via a symlink attack.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6061.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6061.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-6061

reference_id

reference_type

scores

value	0.00908
scoring_system	epss
scoring_elements	0.76152
published_at	2026-06-04T12:55:00Z

value	0.00908
scoring_system	epss
scoring_elements	0.76178
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-6061

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6061
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6061

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=393251
reference_id	393251
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=393251

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453283
reference_id	453283
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453283

reference_url	https://security.gentoo.org/glsa/200803-03
reference_id	GLSA-200803-03
reference_type
scores
url	https://security.gentoo.org/glsa/200803-03

fixed_packages

url pkg:deb/debian/audacity@1.3.5-2%2Blenny1

purl pkg:deb/debian/audacity@1.3.5-2%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-auku-frx6-puc6

vulnerability	VCID-d196-pux2-9bft

vulnerability	VCID-nahx-g5em-y7cd

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.5-2%252Blenny1

aliases CVE-2007-6061

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ged4-a25e-5bd6

url VCID-x7n6-pzrs-nugs

vulnerability_id VCID-x7n6-pzrs-nugs

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3560

reference_id

reference_type

scores

value	0.03008
scoring_system	epss
scoring_elements	0.86837
published_at	2026-06-04T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.8686
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3560

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=533174
reference_id	533174
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=533174

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901
reference_id	560901
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919
reference_id	560919
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920
reference_id	560920
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921
reference_id	560921
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922
reference_id	560922
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926
reference_id	560926
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927
reference_id	560927
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928
reference_id	560928
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929
reference_id	560929
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930
reference_id	560930
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935
reference_id	560935
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936
reference_id	560936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937
reference_id	560937
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940
reference_id	560940
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942
reference_id	560942
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053
reference_id	601053
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053

reference_url

https://httpd.apache.org/security/json/CVE-2009-3560.json

reference_id

CVE-2009-3560

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2009-3560.json

reference_url	https://security.gentoo.org/glsa/201209-06
reference_id	GLSA-201209-06
reference_type
scores
url	https://security.gentoo.org/glsa/201209-06

reference_url	https://access.redhat.com/errata/RHSA-2009:1625
reference_id	RHSA-2009:1625
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1625

reference_url	https://access.redhat.com/errata/RHSA-2017:3239
reference_id	RHSA-2017:3239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:3239

reference_url	https://usn.ubuntu.com/890-1/
reference_id	USN-890-1
reference_type
scores
url	https://usn.ubuntu.com/890-1/

reference_url	https://usn.ubuntu.com/890-2/
reference_id	USN-890-2
reference_type
scores
url	https://usn.ubuntu.com/890-2/

reference_url	https://usn.ubuntu.com/890-3/
reference_id	USN-890-3
reference_type
scores
url	https://usn.ubuntu.com/890-3/

reference_url	https://usn.ubuntu.com/890-4/
reference_id	USN-890-4
reference_type
scores
url	https://usn.ubuntu.com/890-4/

reference_url	https://usn.ubuntu.com/890-5/
reference_id	USN-890-5
reference_type
scores
url	https://usn.ubuntu.com/890-5/

reference_url	https://usn.ubuntu.com/890-6/
reference_id	USN-890-6
reference_type
scores
url	https://usn.ubuntu.com/890-6/

fixed_packages

url pkg:deb/debian/audacity@1.3.5-2%2Blenny1

purl pkg:deb/debian/audacity@1.3.5-2%2Blenny1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-auku-frx6-puc6

vulnerability	VCID-d196-pux2-9bft

vulnerability	VCID-nahx-g5em-y7cd

vulnerability	VCID-r35b-59z3-n3aa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.5-2%252Blenny1

aliases CVE-2009-3560

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x7n6-pzrs-nugs

Risk_score 1.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/audacity@1.3.5-2%252Blenny1

Package Instance