Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/2276?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/2276?format=api", "vulnerability_id": "VCID-kemx-zuam-uqab", "summary": "Mateusz Jurczyk of the Google Security Team used the Address\nSanitizer tool to discover a series of memory safety bugs in the FreeType\nlibrary, some of which could cause memory corruption and exploitable crashes\nwith certain fonts and font parsing. Firefox Mobile has been upgraded to\nFreeType version 2.4.9 which addresses these issues. Desktop Firefox does not\nuse Freetype for fonts and was not affected.\nOn Linux systems, Firefox will use the installed system library for FreeType. Linux users should make sure they are current on system security updates.", "aliases": [ { "alias": "CVE-2012-1141" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4375?format=api", "purl": "pkg:deb/debian/freetype@2.4.9-1.1%2Bdeb7u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-keyh-yygz-y7ep" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.9-1.1%252Bdeb7u3" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4365?format=api", "purl": "pkg:deb/debian/freetype@1.0.0.1998-03-22-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.0.0.1998-03-22-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/4366?format=api", "purl": "pkg:deb/debian/freetype@1.2-3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.2-3" }, { "url": "http://public2.vulnerablecode.io/api/packages/4367?format=api", "purl": "pkg:deb/debian/freetype@1.3.1-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@1.3.1-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/4368?format=api", "purl": "pkg:deb/debian/freetype@2.0.9-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.0.9-1" }, { "url": "http://public2.vulnerablecode.io/api/packages/4369?format=api", "purl": "pkg:deb/debian/freetype@2.1.7-8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.1.7-8" }, { "url": "http://public2.vulnerablecode.io/api/packages/4370?format=api", "purl": "pkg:deb/debian/freetype@2.2.1-5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.2.1-5" }, { "url": "http://public2.vulnerablecode.io/api/packages/4371?format=api", "purl": "pkg:deb/debian/freetype@2.2.1-5%2Betch4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.2.1-5%252Betch4" }, { "url": "http://public2.vulnerablecode.io/api/packages/4372?format=api", "purl": "pkg:deb/debian/freetype@2.3.7-2%2Blenny8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.3.7-2%252Blenny8" }, { "url": "http://public2.vulnerablecode.io/api/packages/4373?format=api", "purl": "pkg:deb/debian/freetype@2.4.2-2.1%2Bsqueeze4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.2-2.1%252Bsqueeze4" }, { "url": "http://public2.vulnerablecode.io/api/packages/4374?format=api", "purl": "pkg:deb/debian/freetype@2.4.2-2.1%2Bsqueeze6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2yvb-7w2n-ybhg" }, { "vulnerability": "VCID-31q8-w6bh-zuey" }, { "vulnerability": "VCID-6bcv-2cx6-77es" }, { "vulnerability": "VCID-6jeb-n9un-3qhd" }, { "vulnerability": "VCID-79xr-2yux-37ea" }, { "vulnerability": "VCID-8sk7-1vxp-9bgd" }, { "vulnerability": "VCID-8zjm-pmh1-p7a2" }, { "vulnerability": "VCID-aswe-3g48-wfgm" }, { "vulnerability": "VCID-e4yc-a8j8-mqfq" }, { "vulnerability": "VCID-fe3g-ww6q-hqa8" }, { "vulnerability": "VCID-g8bk-9bsd-p7bk" }, { "vulnerability": "VCID-jqjv-gjbe-dbfg" }, { "vulnerability": "VCID-kemx-zuam-uqab" }, { "vulnerability": "VCID-keyh-yygz-y7ep" }, { "vulnerability": "VCID-kwd7-sv6y-eyh8" }, { "vulnerability": "VCID-psxs-t1t2-bkba" }, { "vulnerability": "VCID-r47y-we15-pqg3" }, { "vulnerability": "VCID-tvvd-q7nw-eyey" }, { "vulnerability": "VCID-vx31-mywv-1fhr" }, { "vulnerability": "VCID-xxs6-891m-t3bm" }, { "vulnerability": "VCID-z2q3-ejur-8uhb" }, { "vulnerability": "VCID-z66j-hvpb-9ydk" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/freetype@2.4.2-2.1%252Bsqueeze6" } ], "references": [ { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1141", "reference_id": "CVE-2012-1141", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1141" }, { "reference_url": "https://www.mozilla.org/en-US/security/advisories/mfsa2012-21", "reference_id": "mfsa2012-21", "reference_type": "", "scores": [ { "value": "critical", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.mozilla.org/en-US/security/advisories/mfsa2012-21" } ], "weaknesses": [], "exploits": [], "severity_range_score": "9.0 - 10.0", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kemx-zuam-uqab" }