Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/media-libs/tiff@3.8.2-r8

Type ebuild

Namespace media-libs

Name tiff

Version 3.8.2-r8

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.0.2-r1

Latest_non_vulnerable_version 4.5.0-r2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-cyy9-qtzt-3kfm

vulnerability_id VCID-cyy9-qtzt-3kfm

summary

Multiple vulnerabilities in libTIFF could result in execution of
    arbitrary code or Denial of Service.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2347.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2347.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2347

reference_id

reference_type

scores

value	0.01061
scoring_system	epss
scoring_elements	0.77585
published_at	2026-04-01T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77592
published_at	2026-04-02T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77619
published_at	2026-04-04T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77601
published_at	2026-04-07T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77629
published_at	2026-04-08T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77635
published_at	2026-04-09T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77662
published_at	2026-04-11T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77645
published_at	2026-04-12T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77644
published_at	2026-04-13T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77681
published_at	2026-04-16T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77679
published_at	2026-04-18T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77673
published_at	2026-04-21T12:55:00Z

value	0.01061
scoring_system	epss
scoring_elements	0.77703
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2347

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=510041
reference_id	510041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=510041

reference_url	https://security.gentoo.org/glsa/200908-03
reference_id	GLSA-200908-03
reference_type
scores
url	https://security.gentoo.org/glsa/200908-03

reference_url	https://security.gentoo.org/glsa/201209-02
reference_id	GLSA-201209-02
reference_type
scores
url	https://security.gentoo.org/glsa/201209-02

reference_url	https://access.redhat.com/errata/RHSA-2009:1159
reference_id	RHSA-2009:1159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1159

reference_url	https://usn.ubuntu.com/801-1/
reference_id	USN-801-1
reference_type
scores
url	https://usn.ubuntu.com/801-1/

fixed_packages

url	pkg:ebuild/media-libs/tiff@3.8.2-r8
purl	pkg:ebuild/media-libs/tiff@3.8.2-r8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/tiff@3.8.2-r8

url	pkg:ebuild/media-libs/tiff@4.0.2-r1
purl	pkg:ebuild/media-libs/tiff@4.0.2-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/tiff@4.0.2-r1

aliases CVE-2009-2347

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cyy9-qtzt-3kfm

url VCID-nhu6-nn6n-dbb9

vulnerability_id VCID-nhu6-nn6n-dbb9

summary

Multiple boundary checking vulnerabilities in libTIFF may allow for the
    remote execution of arbitrary code.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2285.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2285.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-2285

reference_id

reference_type

scores

value	0.16784
scoring_system	epss
scoring_elements	0.94917
published_at	2026-04-01T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94925
published_at	2026-04-02T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94928
published_at	2026-04-04T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94929
published_at	2026-04-07T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94938
published_at	2026-04-08T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94942
published_at	2026-04-09T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94946
published_at	2026-04-11T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94948
published_at	2026-04-12T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94951
published_at	2026-04-13T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94959
published_at	2026-04-16T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94962
published_at	2026-04-18T12:55:00Z

value	0.16784
scoring_system	epss
scoring_elements	0.94965
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-2285

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2285

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=507465
reference_id	507465
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=507465

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534137
reference_id	534137
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534137

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33049.txt
reference_id	CVE-2009-2285;OSVDB-55265
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33049.txt

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10205.txt
reference_id	CVE-2009-2285;OSVDB-55265
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/10205.txt

reference_url	https://www.securityfocus.com/bid/35451/info
reference_id	CVE-2009-2285;OSVDB-55265
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/35451/info

reference_url	https://security.gentoo.org/glsa/200908-03
reference_id	GLSA-200908-03
reference_type
scores
url	https://security.gentoo.org/glsa/200908-03

reference_url	https://access.redhat.com/errata/RHSA-2009:1159
reference_id	RHSA-2009:1159
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1159

reference_url	https://usn.ubuntu.com/797-1/
reference_id	USN-797-1
reference_type
scores
url	https://usn.ubuntu.com/797-1/

fixed_packages

url	pkg:ebuild/media-libs/tiff@3.8.2-r8
purl	pkg:ebuild/media-libs/tiff@3.8.2-r8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/tiff@3.8.2-r8

aliases CVE-2009-2285

risk_score 0.4

exploitability 2.0

weighted_severity 0.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nhu6-nn6n-dbb9

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/media-libs/tiff@3.8.2-r8

Package Instance