Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-aabg-akur-cyf3
SummaryDuring TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in some cases, the handshake transcript can exceed the space available in the current buffer, causing the allocation of a new buffer. This leaves a pointer pointing to the old, freed buffer, resulting in a use-after-free when handshake hashes are then calculated afterwards. This can result in a potentially exploitable crash.
Aliases
0
alias CVE-2017-7805
Fixed_packages
0
url pkg:alpm/archlinux/thunderbird@52.4.0-1
purl pkg:alpm/archlinux/thunderbird@52.4.0-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.4.0-1
1
url pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3
purl pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-9wkp-gr2p-kuda
2
vulnerability VCID-aabg-akur-cyf3
3
vulnerability VCID-bw2w-68hs-3bcd
4
vulnerability VCID-dj1s-kgfe-f7cm
5
vulnerability VCID-kzju-7twc-fya8
6
vulnerability VCID-m314-1d92-fke4
7
vulnerability VCID-pa6e-373h-6ybr
8
vulnerability VCID-phzc-3ex9-4bf7
9
vulnerability VCID-qpmv-44r5-tqby
10
vulnerability VCID-rc8a-n1r3-v7a1
11
vulnerability VCID-rfpm-yp1s-y3ft
12
vulnerability VCID-wfu5-qgs8-13ht
13
vulnerability VCID-x4x5-44xh-6uat
14
vulnerability VCID-xavu-ygkk-u3fn
15
vulnerability VCID-yjyn-kpq2-qkb7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26-1%252Bdebu8u3
2
url pkg:deb/debian/nss@2:3.26.2-1.1%2Bdeb9u1
purl pkg:deb/debian/nss@2:3.26.2-1.1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-9wkp-gr2p-kuda
2
vulnerability VCID-aabg-akur-cyf3
3
vulnerability VCID-bw2w-68hs-3bcd
4
vulnerability VCID-kzju-7twc-fya8
5
vulnerability VCID-m314-1d92-fke4
6
vulnerability VCID-phzc-3ex9-4bf7
7
vulnerability VCID-qpmv-44r5-tqby
8
vulnerability VCID-rc8a-n1r3-v7a1
9
vulnerability VCID-rfpm-yp1s-y3ft
10
vulnerability VCID-wfu5-qgs8-13ht
11
vulnerability VCID-xavu-ygkk-u3fn
12
vulnerability VCID-yjyn-kpq2-qkb7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26.2-1.1%252Bdeb9u1
3
url pkg:deb/debian/nss@2:3.42.1-1%2Bdeb10u5
purl pkg:deb/debian/nss@2:3.42.1-1%2Bdeb10u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-9wkp-gr2p-kuda
2
vulnerability VCID-bw2w-68hs-3bcd
3
vulnerability VCID-kzju-7twc-fya8
4
vulnerability VCID-m314-1d92-fke4
5
vulnerability VCID-phzc-3ex9-4bf7
6
vulnerability VCID-qpmv-44r5-tqby
7
vulnerability VCID-rc8a-n1r3-v7a1
8
vulnerability VCID-rfpm-yp1s-y3ft
9
vulnerability VCID-xavu-ygkk-u3fn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.42.1-1%252Bdeb10u5
Affected_packages
0
url pkg:alpm/archlinux/thunderbird@52.3.0-2
purl pkg:alpm/archlinux/thunderbird@52.3.0-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3c5t-9cf7-cfgj
1
vulnerability VCID-3stg-h59a-gfe5
2
vulnerability VCID-9sjh-566z-5ya9
3
vulnerability VCID-aabg-akur-cyf3
4
vulnerability VCID-bb54-p55g-vqcp
5
vulnerability VCID-ehs1-23nr-xuhj
6
vulnerability VCID-uzq4-pssq-nfcg
7
vulnerability VCID-y794-x8z6-jygc
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/thunderbird@52.3.0-2
1
url pkg:deb/debian/nss@3.12.3.1-0lenny7
purl pkg:deb/debian/nss@3.12.3.1-0lenny7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-2amq-1dpv-r7ce
2
vulnerability VCID-4gzd-m5g6-rbgm
3
vulnerability VCID-7gkv-pu79-43hx
4
vulnerability VCID-81zk-xrsj-cufe
5
vulnerability VCID-9pxb-dcy9-gybh
6
vulnerability VCID-9wc3-cjef-3ucq
7
vulnerability VCID-9wkp-gr2p-kuda
8
vulnerability VCID-aabg-akur-cyf3
9
vulnerability VCID-atus-ryef-17h1
10
vulnerability VCID-bw2w-68hs-3bcd
11
vulnerability VCID-bzab-cse9-uudk
12
vulnerability VCID-c2jb-u1sf-xkgr
13
vulnerability VCID-c6v9-maak-dyde
14
vulnerability VCID-ca9j-qrnm-eqc3
15
vulnerability VCID-cjnx-d8j7-zqg3
16
vulnerability VCID-dj1s-kgfe-f7cm
17
vulnerability VCID-dvah-yevw-quhe
18
vulnerability VCID-fam8-n44k-2qh7
19
vulnerability VCID-jj5f-y1h9-skcp
20
vulnerability VCID-jwzp-ucfg-wycd
21
vulnerability VCID-kn9n-dpkn-d7bu
22
vulnerability VCID-kzju-7twc-fya8
23
vulnerability VCID-m314-1d92-fke4
24
vulnerability VCID-mg1g-83ha-ekgc
25
vulnerability VCID-mq7v-8uvq-5yeq
26
vulnerability VCID-nmpw-53d9-cqaj
27
vulnerability VCID-pa6e-373h-6ybr
28
vulnerability VCID-phzc-3ex9-4bf7
29
vulnerability VCID-qpmv-44r5-tqby
30
vulnerability VCID-rc8a-n1r3-v7a1
31
vulnerability VCID-rfpm-yp1s-y3ft
32
vulnerability VCID-s692-wjkg-xkfr
33
vulnerability VCID-vct8-ur1y-63db
34
vulnerability VCID-wfu5-qgs8-13ht
35
vulnerability VCID-wh5f-gkuv-q3ep
36
vulnerability VCID-x4x5-44xh-6uat
37
vulnerability VCID-xavu-ygkk-u3fn
38
vulnerability VCID-xg2b-zzbj-juds
39
vulnerability VCID-yjyn-kpq2-qkb7
40
vulnerability VCID-znh3-rqwe-8ke3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.3.1-0lenny7
2
url pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7
purl pkg:deb/debian/nss@3.12.8-1%2Bsqueeze7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-2amq-1dpv-r7ce
2
vulnerability VCID-4gzd-m5g6-rbgm
3
vulnerability VCID-7gkv-pu79-43hx
4
vulnerability VCID-81zk-xrsj-cufe
5
vulnerability VCID-9pxb-dcy9-gybh
6
vulnerability VCID-9wc3-cjef-3ucq
7
vulnerability VCID-9wkp-gr2p-kuda
8
vulnerability VCID-aabg-akur-cyf3
9
vulnerability VCID-bw2w-68hs-3bcd
10
vulnerability VCID-bzab-cse9-uudk
11
vulnerability VCID-c6v9-maak-dyde
12
vulnerability VCID-ca9j-qrnm-eqc3
13
vulnerability VCID-cjnx-d8j7-zqg3
14
vulnerability VCID-dj1s-kgfe-f7cm
15
vulnerability VCID-dvah-yevw-quhe
16
vulnerability VCID-fam8-n44k-2qh7
17
vulnerability VCID-jj5f-y1h9-skcp
18
vulnerability VCID-jwzp-ucfg-wycd
19
vulnerability VCID-kn9n-dpkn-d7bu
20
vulnerability VCID-kzju-7twc-fya8
21
vulnerability VCID-m314-1d92-fke4
22
vulnerability VCID-mq7v-8uvq-5yeq
23
vulnerability VCID-nmpw-53d9-cqaj
24
vulnerability VCID-pa6e-373h-6ybr
25
vulnerability VCID-phzc-3ex9-4bf7
26
vulnerability VCID-qpmv-44r5-tqby
27
vulnerability VCID-rc8a-n1r3-v7a1
28
vulnerability VCID-rfpm-yp1s-y3ft
29
vulnerability VCID-s692-wjkg-xkfr
30
vulnerability VCID-vct8-ur1y-63db
31
vulnerability VCID-wfu5-qgs8-13ht
32
vulnerability VCID-wh5f-gkuv-q3ep
33
vulnerability VCID-x4x5-44xh-6uat
34
vulnerability VCID-xavu-ygkk-u3fn
35
vulnerability VCID-xg2b-zzbj-juds
36
vulnerability VCID-yjyn-kpq2-qkb7
37
vulnerability VCID-znh3-rqwe-8ke3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze7
3
url pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14
purl pkg:deb/debian/nss@3.12.8-1%2Bsqueeze14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-2amq-1dpv-r7ce
2
vulnerability VCID-4gzd-m5g6-rbgm
3
vulnerability VCID-7gkv-pu79-43hx
4
vulnerability VCID-81zk-xrsj-cufe
5
vulnerability VCID-9pxb-dcy9-gybh
6
vulnerability VCID-9wc3-cjef-3ucq
7
vulnerability VCID-9wkp-gr2p-kuda
8
vulnerability VCID-aabg-akur-cyf3
9
vulnerability VCID-bw2w-68hs-3bcd
10
vulnerability VCID-bzab-cse9-uudk
11
vulnerability VCID-c6v9-maak-dyde
12
vulnerability VCID-ca9j-qrnm-eqc3
13
vulnerability VCID-cjnx-d8j7-zqg3
14
vulnerability VCID-dj1s-kgfe-f7cm
15
vulnerability VCID-dvah-yevw-quhe
16
vulnerability VCID-fam8-n44k-2qh7
17
vulnerability VCID-jj5f-y1h9-skcp
18
vulnerability VCID-jwzp-ucfg-wycd
19
vulnerability VCID-kn9n-dpkn-d7bu
20
vulnerability VCID-kzju-7twc-fya8
21
vulnerability VCID-m314-1d92-fke4
22
vulnerability VCID-mq7v-8uvq-5yeq
23
vulnerability VCID-nmpw-53d9-cqaj
24
vulnerability VCID-pa6e-373h-6ybr
25
vulnerability VCID-phzc-3ex9-4bf7
26
vulnerability VCID-qpmv-44r5-tqby
27
vulnerability VCID-rc8a-n1r3-v7a1
28
vulnerability VCID-rfpm-yp1s-y3ft
29
vulnerability VCID-s692-wjkg-xkfr
30
vulnerability VCID-vct8-ur1y-63db
31
vulnerability VCID-wfu5-qgs8-13ht
32
vulnerability VCID-wh5f-gkuv-q3ep
33
vulnerability VCID-x4x5-44xh-6uat
34
vulnerability VCID-xavu-ygkk-u3fn
35
vulnerability VCID-xg2b-zzbj-juds
36
vulnerability VCID-yjyn-kpq2-qkb7
37
vulnerability VCID-znh3-rqwe-8ke3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@3.12.8-1%252Bsqueeze14
4
url pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5
purl pkg:deb/debian/nss@2:3.14.5-1%2Bdeb7u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-2amq-1dpv-r7ce
2
vulnerability VCID-7gkv-pu79-43hx
3
vulnerability VCID-81zk-xrsj-cufe
4
vulnerability VCID-9pxb-dcy9-gybh
5
vulnerability VCID-9wc3-cjef-3ucq
6
vulnerability VCID-9wkp-gr2p-kuda
7
vulnerability VCID-aabg-akur-cyf3
8
vulnerability VCID-bw2w-68hs-3bcd
9
vulnerability VCID-bzab-cse9-uudk
10
vulnerability VCID-c6v9-maak-dyde
11
vulnerability VCID-ca9j-qrnm-eqc3
12
vulnerability VCID-cjnx-d8j7-zqg3
13
vulnerability VCID-dj1s-kgfe-f7cm
14
vulnerability VCID-dvah-yevw-quhe
15
vulnerability VCID-fam8-n44k-2qh7
16
vulnerability VCID-jj5f-y1h9-skcp
17
vulnerability VCID-jwzp-ucfg-wycd
18
vulnerability VCID-kn9n-dpkn-d7bu
19
vulnerability VCID-kzju-7twc-fya8
20
vulnerability VCID-m314-1d92-fke4
21
vulnerability VCID-mq7v-8uvq-5yeq
22
vulnerability VCID-nmpw-53d9-cqaj
23
vulnerability VCID-pa6e-373h-6ybr
24
vulnerability VCID-phzc-3ex9-4bf7
25
vulnerability VCID-qpmv-44r5-tqby
26
vulnerability VCID-rc8a-n1r3-v7a1
27
vulnerability VCID-rfpm-yp1s-y3ft
28
vulnerability VCID-s692-wjkg-xkfr
29
vulnerability VCID-vct8-ur1y-63db
30
vulnerability VCID-wfu5-qgs8-13ht
31
vulnerability VCID-x4x5-44xh-6uat
32
vulnerability VCID-xavu-ygkk-u3fn
33
vulnerability VCID-xg2b-zzbj-juds
34
vulnerability VCID-yjyn-kpq2-qkb7
35
vulnerability VCID-znh3-rqwe-8ke3
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.14.5-1%252Bdeb7u5
5
url pkg:deb/debian/nss@2:3.17.2-1.1
purl pkg:deb/debian/nss@2:3.17.2-1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-7gkv-pu79-43hx
2
vulnerability VCID-81zk-xrsj-cufe
3
vulnerability VCID-9pxb-dcy9-gybh
4
vulnerability VCID-9wc3-cjef-3ucq
5
vulnerability VCID-9wkp-gr2p-kuda
6
vulnerability VCID-aabg-akur-cyf3
7
vulnerability VCID-bw2w-68hs-3bcd
8
vulnerability VCID-cjnx-d8j7-zqg3
9
vulnerability VCID-dj1s-kgfe-f7cm
10
vulnerability VCID-fam8-n44k-2qh7
11
vulnerability VCID-jj5f-y1h9-skcp
12
vulnerability VCID-jwzp-ucfg-wycd
13
vulnerability VCID-kzju-7twc-fya8
14
vulnerability VCID-m314-1d92-fke4
15
vulnerability VCID-mq7v-8uvq-5yeq
16
vulnerability VCID-pa6e-373h-6ybr
17
vulnerability VCID-phzc-3ex9-4bf7
18
vulnerability VCID-qpmv-44r5-tqby
19
vulnerability VCID-rc8a-n1r3-v7a1
20
vulnerability VCID-rfpm-yp1s-y3ft
21
vulnerability VCID-s692-wjkg-xkfr
22
vulnerability VCID-vct8-ur1y-63db
23
vulnerability VCID-wfu5-qgs8-13ht
24
vulnerability VCID-x4x5-44xh-6uat
25
vulnerability VCID-xavu-ygkk-u3fn
26
vulnerability VCID-yjyn-kpq2-qkb7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.17.2-1.1
6
url pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3
purl pkg:deb/debian/nss@2:3.26-1%2Bdebu8u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-9wkp-gr2p-kuda
2
vulnerability VCID-aabg-akur-cyf3
3
vulnerability VCID-bw2w-68hs-3bcd
4
vulnerability VCID-dj1s-kgfe-f7cm
5
vulnerability VCID-kzju-7twc-fya8
6
vulnerability VCID-m314-1d92-fke4
7
vulnerability VCID-pa6e-373h-6ybr
8
vulnerability VCID-phzc-3ex9-4bf7
9
vulnerability VCID-qpmv-44r5-tqby
10
vulnerability VCID-rc8a-n1r3-v7a1
11
vulnerability VCID-rfpm-yp1s-y3ft
12
vulnerability VCID-wfu5-qgs8-13ht
13
vulnerability VCID-x4x5-44xh-6uat
14
vulnerability VCID-xavu-ygkk-u3fn
15
vulnerability VCID-yjyn-kpq2-qkb7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26-1%252Bdebu8u3
7
url pkg:deb/debian/nss@2:3.26.2-1.1%2Bdeb9u1
purl pkg:deb/debian/nss@2:3.26.2-1.1%2Bdeb9u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1btz-x11h-wbe3
1
vulnerability VCID-9wkp-gr2p-kuda
2
vulnerability VCID-aabg-akur-cyf3
3
vulnerability VCID-bw2w-68hs-3bcd
4
vulnerability VCID-kzju-7twc-fya8
5
vulnerability VCID-m314-1d92-fke4
6
vulnerability VCID-phzc-3ex9-4bf7
7
vulnerability VCID-qpmv-44r5-tqby
8
vulnerability VCID-rc8a-n1r3-v7a1
9
vulnerability VCID-rfpm-yp1s-y3ft
10
vulnerability VCID-wfu5-qgs8-13ht
11
vulnerability VCID-xavu-ygkk-u3fn
12
vulnerability VCID-yjyn-kpq2-qkb7
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/nss@2:3.26.2-1.1%252Bdeb9u1
References
0
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7805
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7805
1
reference_url https://security.archlinux.org/ASA-201710-19
reference_id ASA-201710-19
reference_type
scores
url https://security.archlinux.org/ASA-201710-19
2
reference_url https://security.archlinux.org/AVG-441
reference_id AVG-441
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-441
3
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2017-21
reference_id mfsa2017-21
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2017-21
4
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2017-22
reference_id mfsa2017-22
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2017-22
5
reference_url https://www.mozilla.org/en-US/security/advisories/mfsa2017-23
reference_id mfsa2017-23
reference_type
scores
0
value critical
scoring_system generic_textual
scoring_elements
url https://www.mozilla.org/en-US/security/advisories/mfsa2017-23
Weaknesses
Exploits
Severity_range_score9.0 - 10.0
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-aabg-akur-cyf3