Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-88p4-x2m8-ekbv

Summary security update

Aliases

alias	CVE-2014-9766

Fixed_packages

url pkg:deb/debian/pixman@0.26.0-4%2Bdeb7u2

purl pkg:deb/debian/pixman@0.26.0-4%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-88p4-x2m8-ekbv

vulnerability	VCID-vm7h-jwha-m7ch

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.26.0-4%252Bdeb7u2

url	pkg:deb/debian/pixman@0.32.6-1?distro=trixie
purl	pkg:deb/debian/pixman@0.32.6-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.32.6-1%3Fdistro=trixie

url pkg:deb/debian/pixman@0.32.6-3

purl pkg:deb/debian/pixman@0.32.6-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.32.6-3

url	pkg:deb/debian/pixman@0.40.0-1.1~deb11u1?distro=trixie
purl	pkg:deb/debian/pixman@0.40.0-1.1~deb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.40.0-1.1~deb11u1%3Fdistro=trixie

url	pkg:deb/debian/pixman@0.42.2-1?distro=trixie
purl	pkg:deb/debian/pixman@0.42.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.42.2-1%3Fdistro=trixie

url	pkg:deb/debian/pixman@0.44.0-3?distro=trixie
purl	pkg:deb/debian/pixman@0.44.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.44.0-3%3Fdistro=trixie

url	pkg:deb/debian/pixman@0.46.4-1?distro=trixie
purl	pkg:deb/debian/pixman@0.46.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.46.4-1%3Fdistro=trixie

Affected_packages

url pkg:deb/debian/pixman@0.10.0-2

purl pkg:deb/debian/pixman@0.10.0-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-88p4-x2m8-ekbv

vulnerability	VCID-8wuq-zw1n-33ae

vulnerability	VCID-vm7h-jwha-m7ch

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.10.0-2

url pkg:deb/debian/pixman@0.16.4-1%2Bdeb6u1

purl pkg:deb/debian/pixman@0.16.4-1%2Bdeb6u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-88p4-x2m8-ekbv

vulnerability	VCID-8wuq-zw1n-33ae

vulnerability	VCID-vm7h-jwha-m7ch

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.16.4-1%252Bdeb6u1

url pkg:deb/debian/pixman@0.16.4-1%2Bdeb6u2

purl pkg:deb/debian/pixman@0.16.4-1%2Bdeb6u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-88p4-x2m8-ekbv

vulnerability	VCID-8wuq-zw1n-33ae

vulnerability	VCID-vm7h-jwha-m7ch

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.16.4-1%252Bdeb6u2

url pkg:deb/debian/pixman@0.26.0-4%2Bdeb7u2

purl pkg:deb/debian/pixman@0.26.0-4%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3144-v9zj-7qat

vulnerability	VCID-88p4-x2m8-ekbv

vulnerability	VCID-vm7h-jwha-m7ch

vulnerability	VCID-zpe1-47bs-nqev

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pixman@0.26.0-4%252Bdeb7u2

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9766.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-9766.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-9766

reference_id

reference_type

scores

value	0.14144
scoring_system	epss
scoring_elements	0.94391
published_at	2026-04-26T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.9439
published_at	2026-04-21T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94392
published_at	2026-04-24T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94328
published_at	2026-04-01T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94337
published_at	2026-04-02T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94348
published_at	2026-04-04T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94349
published_at	2026-04-07T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94358
published_at	2026-04-08T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94362
published_at	2026-04-09T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94366
published_at	2026-04-12T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94367
published_at	2026-04-13T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94383
published_at	2026-04-16T12:55:00Z

value	0.14144
scoring_system	epss
scoring_elements	0.94388
published_at	2026-04-29T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-9766

reference_url	https://bugs.freedesktop.org/show_bug.cgi?id=69014
reference_id
reference_type
scores
url	https://bugs.freedesktop.org/show_bug.cgi?id=69014

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=972647
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=972647

reference_url	https://cgit.freedesktop.org/pixman/commit/?id=857e40f3d2bc2cfb714913e0cd7e6184cf69aca3
reference_id
reference_type
scores
url	https://cgit.freedesktop.org/pixman/commit/?id=857e40f3d2bc2cfb714913e0cd7e6184cf69aca3

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9766
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9766

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.freedesktop.org/archives/pixman/2014-April/003244.html
reference_id
reference_type
scores
url	https://lists.freedesktop.org/archives/pixman/2014-April/003244.html

reference_url	https://lists.x.org/archives/xorg-announce/2014-July/002452.html
reference_id
reference_type
scores
url	https://lists.x.org/archives/xorg-announce/2014-July/002452.html

reference_url	http://www.debian.org/security/2016/dsa-3525
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3525

reference_url	http://www.openwall.com/lists/oss-security/2016/02/24/13
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2016/02/24/13

reference_url	http://www.openwall.com/lists/oss-security/2016/02/24/15
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2016/02/24/15

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

reference_url	http://www.ubuntu.com/usn/USN-2918-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2918-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1311882
reference_id	1311882
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1311882

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pixman:pixman::::::::
reference_id	cpe:2.3:a:pixman:pixman::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:pixman:pixman::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-9766

reference_id

CVE-2014-9766

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2014-9766

reference_url	https://usn.ubuntu.com/2918-1/
reference_id	USN-2918-1
reference_type
scores
url	https://usn.ubuntu.com/2918-1/

Weaknesses

cwe_id	190
name	Integer Overflow or Wraparound
description	The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

cwe_id	122
name	Heap-based Buffer Overflow
description	A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

cwe_id	189
name	Numeric Errors
description	Weaknesses in this category are related to improper calculation or conversion of numbers.

Exploits

Severity_range_score 4.3 - 9.8

Exploitability 0.5

Weighted_severity 8.8

Risk_score 4.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-88p4-x2m8-ekbv

Vulnerability Instance