Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-g7gh-jk2n-b7cq

Summary

This GLSA contains notification of vulnerabilities found in several
    Gentoo packages which have been fixed prior to January 1, 2013. The worst
    of these vulnerabilities could lead to local privilege escalation and
    remote code execution. Please see the package list and CVE identifiers
    below for more information.

Aliases

alias	CVE-2008-4776

Fixed_packages

url	pkg:deb/debian/libgadu@1:1.8.0%2Br592-3?distro=trixie
purl	pkg:deb/debian/libgadu@1:1.8.0%2Br592-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgadu@1:1.8.0%252Br592-3%3Fdistro=trixie

url	pkg:deb/debian/libgadu@1:1.12.2-5?distro=trixie
purl	pkg:deb/debian/libgadu@1:1.12.2-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgadu@1:1.12.2-5%3Fdistro=trixie

url	pkg:deb/debian/libgadu@1:1.12.2-6?distro=trixie
purl	pkg:deb/debian/libgadu@1:1.12.2-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgadu@1:1.12.2-6%3Fdistro=trixie

url	pkg:deb/debian/libgadu@1:1.12.2-6.1?distro=trixie
purl	pkg:deb/debian/libgadu@1:1.12.2-6.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgadu@1:1.12.2-6.1%3Fdistro=trixie

url	pkg:deb/debian/libgadu@1:1.12.2-7?distro=trixie
purl	pkg:deb/debian/libgadu@1:1.12.2-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libgadu@1:1.12.2-7%3Fdistro=trixie

url	pkg:ebuild/dev-php/suhosin@0.9.33
purl	pkg:ebuild/dev-php/suhosin@0.9.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-php/suhosin@0.9.33

url	pkg:ebuild/dev-php/suhosin@0.32.2
purl	pkg:ebuild/dev-php/suhosin@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-php/suhosin@0.32.2

url	pkg:ebuild/dev-php/suhosin@1.8.004.20120613
purl	pkg:ebuild/dev-php/suhosin@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-php/suhosin@1.8.004.20120613

url	pkg:ebuild/dev-php/suhosin@3.33
purl	pkg:ebuild/dev-php/suhosin@3.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-php/suhosin@3.33

url	pkg:ebuild/net-analyzer/lft@0.32.2
purl	pkg:ebuild/net-analyzer/lft@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-analyzer/lft@0.32.2

url	pkg:ebuild/net-analyzer/lft@1.8.004.20120613
purl	pkg:ebuild/net-analyzer/lft@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-analyzer/lft@1.8.004.20120613

url	pkg:ebuild/net-analyzer/lft@3.33
purl	pkg:ebuild/net-analyzer/lft@3.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-analyzer/lft@3.33

url	pkg:ebuild/net-im/gg-transport@0.9.33
purl	pkg:ebuild/net-im/gg-transport@0.9.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@0.9.33

url	pkg:ebuild/net-im/gg-transport@0.32.2
purl	pkg:ebuild/net-im/gg-transport@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@0.32.2

url	pkg:ebuild/net-im/gg-transport@1.0
purl	pkg:ebuild/net-im/gg-transport@1.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@1.0

url	pkg:ebuild/net-im/gg-transport@1.8.004.20120613
purl	pkg:ebuild/net-im/gg-transport@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@1.8.004.20120613

url	pkg:ebuild/net-im/gg-transport@2.2.4
purl	pkg:ebuild/net-im/gg-transport@2.2.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@2.2.4

url	pkg:ebuild/net-im/gg-transport@3.3.7
purl	pkg:ebuild/net-im/gg-transport@3.3.7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@3.3.7

url	pkg:ebuild/net-im/gg-transport@3.33
purl	pkg:ebuild/net-im/gg-transport@3.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/net-im/gg-transport@3.33

url	pkg:ebuild/sys-cluster/ganglia@0.9.33
purl	pkg:ebuild/sys-cluster/ganglia@0.9.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@0.9.33

url	pkg:ebuild/sys-cluster/ganglia@0.32.2
purl	pkg:ebuild/sys-cluster/ganglia@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@0.32.2

url	pkg:ebuild/sys-cluster/ganglia@1.0
purl	pkg:ebuild/sys-cluster/ganglia@1.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@1.0

url	pkg:ebuild/sys-cluster/ganglia@1.8.004.20120613
purl	pkg:ebuild/sys-cluster/ganglia@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@1.8.004.20120613

url	pkg:ebuild/sys-cluster/ganglia@3.3.7
purl	pkg:ebuild/sys-cluster/ganglia@3.3.7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@3.3.7

url	pkg:ebuild/sys-cluster/ganglia@3.33
purl	pkg:ebuild/sys-cluster/ganglia@3.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/sys-cluster/ganglia@3.33

url pkg:ebuild/www-apps/egroupware@1.8.004.20120613

purl pkg:ebuild/www-apps/egroupware@1.8.004.20120613

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-qky3-63zt-9fg6

resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/www-apps/egroupware@1.8.004.20120613

url	pkg:ebuild/x11-libs/vte@0.32.2
purl	pkg:ebuild/x11-libs/vte@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-libs/vte@0.32.2

url	pkg:ebuild/x11-libs/vte@1.8.004.20120613
purl	pkg:ebuild/x11-libs/vte@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-libs/vte@1.8.004.20120613

url	pkg:ebuild/x11-misc/slock@0.9.33
purl	pkg:ebuild/x11-misc/slock@0.9.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-misc/slock@0.9.33

url	pkg:ebuild/x11-misc/slock@0.32.2
purl	pkg:ebuild/x11-misc/slock@0.32.2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-misc/slock@0.32.2

url	pkg:ebuild/x11-misc/slock@1.0
purl	pkg:ebuild/x11-misc/slock@1.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-misc/slock@1.0

url	pkg:ebuild/x11-misc/slock@1.8.004.20120613
purl	pkg:ebuild/x11-misc/slock@1.8.004.20120613
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-misc/slock@1.8.004.20120613

url	pkg:ebuild/x11-misc/slock@3.33
purl	pkg:ebuild/x11-misc/slock@3.33
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/x11-misc/slock@3.33

Affected_packages

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html

reference_url	http://lists.ziew.org/pipermail/libgadu-devel/2008-October/000331.html
reference_id
reference_type
scores
url	http://lists.ziew.org/pipermail/libgadu-devel/2008-October/000331.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4776.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-4776.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-4776

reference_id

reference_type

scores

value	0.00593
scoring_system	epss
scoring_elements	0.69284
published_at	2026-04-21T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69191
published_at	2026-04-01T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69207
published_at	2026-04-02T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69228
published_at	2026-04-04T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.6921
published_at	2026-04-07T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.6926
published_at	2026-04-08T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69278
published_at	2026-04-09T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.693
published_at	2026-04-11T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69285
published_at	2026-04-12T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69257
published_at	2026-04-13T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69295
published_at	2026-04-16T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69304
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-4776

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4776
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4776

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/46158
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/46158

reference_url	http://www.debian.org/security/2008/dsa-1664
reference_id
reference_type
scores
url	http://www.debian.org/security/2008/dsa-1664

reference_url	http://www.securityfocus.com/bid/31951
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/31951

reference_url	http://www.ubuntu.com/usn/usn-692-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/usn-692-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=468830
reference_id	468830
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=468830

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=503916
reference_id	503916
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=503916

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu::::::::
reference_id	cpe:2.3:a:wojtek_kaniewsk:libgadu::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.0:::::::*
reference_id	cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.1:::::::*
reference_id	cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.2:::::::*
reference_id	cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.7.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.8.0:::::::*
reference_id	cpe:2.3:a:wojtek_kaniewsk:libgadu:1.8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:wojtek_kaniewsk:libgadu:1.8.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2008-4776

reference_id

CVE-2008-4776

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2008-4776

reference_url	https://security.gentoo.org/glsa/201412-10
reference_id	GLSA-201412-10
reference_type
scores
url	https://security.gentoo.org/glsa/201412-10

reference_url	https://usn.ubuntu.com/692-1/
reference_id	USN-692-1
reference_type
scores
url	https://usn.ubuntu.com/692-1/

Weaknesses

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Exploits

Severity_range_score 4.3 - 4.3

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g7gh-jk2n-b7cq

Vulnerability Instance