Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-jmw4-gesh-4bfj
Summary
Chris Evans of the Chrome Security Team reported
that the XSLT generate-id() function returned a string that revealed
a specific valid address of an object on the memory heap. It is possible
that in some cases this address would be valuable information that could
be used by an attacker while exploiting a different memory corruption
but, in order to make an exploit more reliable or work around mitigation
features in the browser or operating system.
Aliases
0
alias CVE-2011-1202
Fixed_packages
0
url pkg:deb/debian/libxslt@1.1.26-14.1
purl pkg:deb/debian/libxslt@1.1.26-14.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-u9b2-qx2j-c7by
2
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.26-14.1
1
url pkg:mozilla/Firefox@3.5.19
purl pkg:mozilla/Firefox@3.5.19
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.5.19
2
url pkg:mozilla/Firefox@3.6.17
purl pkg:mozilla/Firefox@3.6.17
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@3.6.17
3
url pkg:mozilla/Firefox@4.0.1
purl pkg:mozilla/Firefox@4.0.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/Firefox@4.0.1
4
url pkg:mozilla/SeaMonkey@2.0.14
purl pkg:mozilla/SeaMonkey@2.0.14
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:mozilla/SeaMonkey@2.0.14
Affected_packages
0
url pkg:deb/debian/libxslt@1.0.16-0.2
purl pkg:deb/debian/libxslt@1.0.16-0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.0.16-0.2
1
url pkg:deb/debian/libxslt@1.1.12-8
purl pkg:deb/debian/libxslt@1.1.12-8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.12-8
2
url pkg:deb/debian/libxslt@1.1.19-1
purl pkg:deb/debian/libxslt@1.1.19-1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.19-1
3
url pkg:deb/debian/libxslt@1.1.19-3
purl pkg:deb/debian/libxslt@1.1.19-3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.19-3
4
url pkg:deb/debian/libxslt@1.1.24-2
purl pkg:deb/debian/libxslt@1.1.24-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.24-2
5
url pkg:deb/debian/libxslt@1.1.26-6%2Bsqueeze3
purl pkg:deb/debian/libxslt@1.1.26-6%2Bsqueeze3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-b8q3-sd61-rqhf
1
vulnerability VCID-jmw4-gesh-4bfj
2
vulnerability VCID-u9b2-qx2j-c7by
3
vulnerability VCID-uk9u-nn9a-4yes
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libxslt@1.1.26-6%252Bsqueeze3
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1202
reference_id CVE-2011-1202
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1202
1
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2011-18
reference_id mfsa2011-18
reference_type
scores
0
value low
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2011-18
Weaknesses
Exploits
Severity_range_score0.1 - 3
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-jmw4-gesh-4bfj