Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/openafs@1.6.17-1?distro=trixie

Type deb

Namespace debian

Name openafs

Version 1.6.17-1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 1.6.20-1

Latest_non_vulnerable_version 1.8.14-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-8hn8-d5rz-v7gn

vulnerability_id VCID-8hn8-d5rz-v7gn

summary The client in OpenAFS before 1.6.17 does not properly initialize the (1) AFSStoreStatus, (2) AFSStoreVolumeStatus, (3) VldbListByAttributes, and (4) ListAddrByAttributes structures, which might allow remote attackers to obtain sensitive memory information by leveraging access to RPC call traffic.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-4536

reference_id

reference_type

scores

value	0.00296
scoring_system	epss
scoring_elements	0.52967
published_at	2026-04-21T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52983
published_at	2026-04-18T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52857
published_at	2026-04-01T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52883
published_at	2026-04-02T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52908
published_at	2026-04-04T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52877
published_at	2026-04-07T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52928
published_at	2026-04-08T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52921
published_at	2026-04-09T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52971
published_at	2026-04-11T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52955
published_at	2026-04-12T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52939
published_at	2026-04-13T12:55:00Z

value	0.00296
scoring_system	epss
scoring_elements	0.52976
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-4536

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4536
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4536

reference_url	https://lists.openafs.org/pipermail/openafs-announce/2016/000496.html
reference_id
reference_type
scores
url	https://lists.openafs.org/pipermail/openafs-announce/2016/000496.html

reference_url	https://www.openafs.org/dl/openafs/1.6.17/RELNOTES-1.6.17
reference_id
reference_type
scores
url	https://www.openafs.org/dl/openafs/1.6.17/RELNOTES-1.6.17

reference_url	https://www.openafs.org/pages/security/OPENAFS-SA-2016-002.txt
reference_id
reference_type
scores
url	https://www.openafs.org/pages/security/OPENAFS-SA-2016-002.txt

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::
reference_id	cpe:2.3:a:openafs:openafs::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-4536

reference_id

CVE-2016-4536

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-4536

fixed_packages

url	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
purl	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.6.17-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
purl	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.6-5%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.9-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.13.2-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.14-1%3Fdistro=trixie

aliases CVE-2016-4536

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8hn8-d5rz-v7gn

url VCID-u8f1-fg77-efhc

vulnerability_id VCID-u8f1-fg77-efhc

summary security update

references

reference_url	http://git.openafs.org/?p=openafs.git%3Ba=commitdiff%3Bh=396240cf070a806b91fea81131d034e1399af1e0
reference_id
reference_type
scores
url	http://git.openafs.org/?p=openafs.git%3Ba=commitdiff%3Bh=396240cf070a806b91fea81131d034e1399af1e0

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-2860

reference_id

reference_type

scores

value	0.00252
scoring_system	epss
scoring_elements	0.48557
published_at	2026-04-21T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48599
published_at	2026-04-18T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48486
published_at	2026-04-01T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48521
published_at	2026-04-02T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48544
published_at	2026-04-04T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48496
published_at	2026-04-07T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48551
published_at	2026-04-08T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48546
published_at	2026-04-09T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48567
published_at	2026-04-11T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.4854
published_at	2026-04-12T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48553
published_at	2026-04-13T12:55:00Z

value	0.00252
scoring_system	epss
scoring_elements	0.48603
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-2860

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8312
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8312

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2860
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2860

reference_url	https://lists.openafs.org/pipermail/openafs-announce/2016/000496.html
reference_id
reference_type
scores
url	https://lists.openafs.org/pipermail/openafs-announce/2016/000496.html

reference_url	https://www.openafs.org/dl/openafs/1.6.17/RELNOTES-1.6.17
reference_id
reference_type
scores
url	https://www.openafs.org/dl/openafs/1.6.17/RELNOTES-1.6.17

reference_url	http://www.debian.org/security/2016/dsa-3569
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3569

reference_url	http://www.openafs.org/pages/security/OPENAFS-SA-2016-001.txt
reference_id
reference_type
scores
url	http://www.openafs.org/pages/security/OPENAFS-SA-2016-001.txt

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::
reference_id	cpe:2.3:a:openafs:openafs::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-2860

reference_id

CVE-2016-2860

reference_type

scores

value	4.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:N/I:P/A:N

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2016-2860

fixed_packages

url	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
purl	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.6.17-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
purl	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.6-5%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.9-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.13.2-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.14-1%3Fdistro=trixie

aliases CVE-2016-2860

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u8f1-fg77-efhc

url VCID-uvnq-mwb3-8ub9

vulnerability_id VCID-uvnq-mwb3-8ub9

summary security update

references

reference_url	http://git.openafs.org/?p=openafs.git%3Ba=commitdiff%3Bh=2ef863720da4d9f368aaca0461c672a3008195ca
reference_id
reference_type
scores
url	http://git.openafs.org/?p=openafs.git%3Ba=commitdiff%3Bh=2ef863720da4d9f368aaca0461c672a3008195ca

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-8312

reference_id

reference_type

scores

value	0.0004
scoring_system	epss
scoring_elements	0.12093
published_at	2026-04-21T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.11975
published_at	2026-04-18T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12078
published_at	2026-04-01T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12188
published_at	2026-04-02T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12234
published_at	2026-04-04T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12035
published_at	2026-04-07T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12117
published_at	2026-04-08T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12168
published_at	2026-04-09T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12176
published_at	2026-04-11T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12139
published_at	2026-04-12T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.12108
published_at	2026-04-13T12:55:00Z

value	0.0004
scoring_system	epss
scoring_elements	0.11978
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-8312

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8312
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8312

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2860
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2860

reference_url	https://www.openafs.org/dl/1.6.16/RELNOTES-1.6.16
reference_id
reference_type
scores
url	https://www.openafs.org/dl/1.6.16/RELNOTES-1.6.16

reference_url	http://www.debian.org/security/2016/dsa-3569
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3569

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::
reference_id	cpe:2.3:a:openafs:openafs::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:openafs:openafs::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-8312

reference_id

CVE-2015-8312

reference_type

scores

value	7.2
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:C/I:C/A:C

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2015-8312

fixed_packages

url	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
purl	pkg:deb/debian/openafs@1.6.17-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.6.17-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
purl	pkg:deb/debian/openafs@1.8.6-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.6-5%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.9-1%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.9-1%252Bdeb12u1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.13.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.13.2-1%3Fdistro=trixie

url	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
purl	pkg:deb/debian/openafs@1.8.14-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.8.14-1%3Fdistro=trixie

aliases CVE-2015-8312

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uvnq-mwb3-8ub9

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/openafs@1.6.17-1%3Fdistro=trixie

Package Instance