Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/64231?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64231?format=api", "vulnerability_id": "VCID-jax5-tqk4-vucd", "summary": "libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion", "aliases": [ { "alias": "CVE-2026-33636" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/103141?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5q66-zeyz-rfdb" }, { "vulnerability": "VCID-5rgq-xe5s-kkfc" }, { "vulnerability": "VCID-gk3z-6dp9-73cd" }, { "vulnerability": "VCID-gtdx-fb61-ykbv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103166?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.37-3%2Bdeb11u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103165?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103139?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5q66-zeyz-rfdb" }, { "vulnerability": "VCID-gtdx-fb61-ykbv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103168?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103143?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103167?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.56-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.56-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/103142?format=api", "purl": "pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/90493?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el10_1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el10_1" }, { "url": "http://public2.vulnerablecode.io/api/packages/90494?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el10_0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el10_0" }, { "url": "http://public2.vulnerablecode.io/api/packages/90495?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el9_0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el9_0" }, { "url": "http://public2.vulnerablecode.io/api/packages/90497?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el8_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el8_2" }, { "url": "http://public2.vulnerablecode.io/api/packages/90502?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el9_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el9_2" }, { "url": "http://public2.vulnerablecode.io/api/packages/90484?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el8_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el8_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/90485?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el9_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el9_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/90486?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el8_6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el8_6" }, { "url": "http://public2.vulnerablecode.io/api/packages/90488?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el9_6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el9_6" }, { "url": "http://public2.vulnerablecode.io/api/packages/90489?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el8_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el8_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/90490?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el9_7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el9_7" }, { "url": "http://public2.vulnerablecode.io/api/packages/90492?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-1?arch=el8_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-1%3Farch=el8_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/90487?format=api", "purl": "pkg:rpm/redhat/firefox@140.9.1-2?arch=el7_9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/firefox@140.9.1-2%3Farch=el7_9" }, { "url": "http://public2.vulnerablecode.io/api/packages/89982?format=api", "purl": "pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-247q-sfdz-kqf4" }, { "vulnerability": "VCID-2whp-5xup-gkd4" }, { "vulnerability": "VCID-54tg-29eb-bkds" }, { "vulnerability": "VCID-5eh1-34nq-tff3" }, { "vulnerability": "VCID-6w8a-h9b9-cbfe" }, { "vulnerability": "VCID-ach1-1787-rudv" }, { "vulnerability": "VCID-bhx8-hjgu-tfef" }, { "vulnerability": "VCID-hvtk-57pq-jqcw" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-qk2z-8x43-7khw" }, { "vulnerability": "VCID-rh92-u493-w7fp" }, { "vulnerability": "VCID-sb2a-mfgz-jfgt" }, { "vulnerability": "VCID-v1ke-1b43-byhc" }, { "vulnerability": "VCID-vcs8-ae2h-abgs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el8" }, { "url": "http://public2.vulnerablecode.io/api/packages/89985?format=api", "purl": "pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el7_9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-247q-sfdz-kqf4" }, { "vulnerability": "VCID-2whp-5xup-gkd4" }, { "vulnerability": "VCID-54tg-29eb-bkds" }, { "vulnerability": "VCID-5eh1-34nq-tff3" }, { "vulnerability": "VCID-6w8a-h9b9-cbfe" }, { "vulnerability": "VCID-ach1-1787-rudv" }, { "vulnerability": "VCID-bhx8-hjgu-tfef" }, { "vulnerability": "VCID-hvtk-57pq-jqcw" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-qk2z-8x43-7khw" }, { "vulnerability": "VCID-rh92-u493-w7fp" }, { "vulnerability": "VCID-sb2a-mfgz-jfgt" }, { "vulnerability": "VCID-v1ke-1b43-byhc" }, { "vulnerability": "VCID-vcs8-ae2h-abgs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el7_9" }, { "url": "http://public2.vulnerablecode.io/api/packages/89988?format=api", "purl": "pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1?arch=el9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-247q-sfdz-kqf4" }, { "vulnerability": "VCID-2whp-5xup-gkd4" }, { "vulnerability": "VCID-54tg-29eb-bkds" }, { "vulnerability": "VCID-5eh1-34nq-tff3" }, { "vulnerability": "VCID-6w8a-h9b9-cbfe" }, { "vulnerability": "VCID-ach1-1787-rudv" }, { "vulnerability": "VCID-bhx8-hjgu-tfef" }, { "vulnerability": "VCID-hvtk-57pq-jqcw" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-qk2z-8x43-7khw" }, { "vulnerability": "VCID-rh92-u493-w7fp" }, { "vulnerability": "VCID-sb2a-mfgz-jfgt" }, { "vulnerability": "VCID-v1ke-1b43-byhc" }, { "vulnerability": "VCID-vcs8-ae2h-abgs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-11-openjdk@1:11.0.31.0.11-1%3Farch=el9" }, { "url": "http://public2.vulnerablecode.io/api/packages/89958?format=api", "purl": "pkg:rpm/redhat/java-25-openjdk@1:25.0.3.0.9-1?arch=el10_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-247q-sfdz-kqf4" }, { "vulnerability": "VCID-2whp-5xup-gkd4" }, { "vulnerability": "VCID-54tg-29eb-bkds" }, { "vulnerability": "VCID-6w8a-h9b9-cbfe" }, { "vulnerability": "VCID-ach1-1787-rudv" }, { "vulnerability": "VCID-bhx8-hjgu-tfef" }, { "vulnerability": "VCID-hvtk-57pq-jqcw" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-rh92-u493-w7fp" }, { "vulnerability": "VCID-vcs8-ae2h-abgs" }, { "vulnerability": "VCID-wuc2-1v8w-5kez" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-25-openjdk@1:25.0.3.0.9-1%3Farch=el10_2" }, { "url": "http://public2.vulnerablecode.io/api/packages/89959?format=api", "purl": "pkg:rpm/redhat/java-25-openjdk@1:25.0.3.0.9-1?arch=el9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-247q-sfdz-kqf4" }, { "vulnerability": "VCID-2whp-5xup-gkd4" }, { "vulnerability": "VCID-54tg-29eb-bkds" }, { "vulnerability": "VCID-6w8a-h9b9-cbfe" }, { "vulnerability": "VCID-ach1-1787-rudv" }, { "vulnerability": "VCID-bhx8-hjgu-tfef" }, { "vulnerability": "VCID-hvtk-57pq-jqcw" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-rh92-u493-w7fp" }, { "vulnerability": "VCID-vcs8-ae2h-abgs" }, { "vulnerability": "VCID-wuc2-1v8w-5kez" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-25-openjdk@1:25.0.3.0.9-1%3Farch=el9" }, { "url": "http://public2.vulnerablecode.io/api/packages/90881?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_0%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90882?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_2%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90894?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_4%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90895?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_6%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90897?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.37-12.el9_7%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90889?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_0%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90890?format=api", "purl": "pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1?arch=3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-jax5-tqk4-vucd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.6.40-8.el10_1%3Farch=3" }, { "url": "http://public2.vulnerablecode.io/api/packages/90892?format=api", "purl": "pkg:rpm/redhat/libpng-main@1.6.56-1?arch=hum1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-5eh1-34nq-tff3" }, { "vulnerability": "VCID-5q66-zeyz-rfdb" }, { "vulnerability": "VCID-8fz1-8ztk-6ffz" }, { "vulnerability": "VCID-8gsp-rmdb-qfcn" }, { "vulnerability": "VCID-9snm-6n9z-kqam" }, { "vulnerability": "VCID-gtdx-fb61-ykbv" }, { "vulnerability": "VCID-hftk-85zs-kfgj" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-qk2z-8x43-7khw" }, { "vulnerability": "VCID-sb2a-mfgz-jfgt" }, { "vulnerability": "VCID-t5q5-b39g-t7hv" }, { "vulnerability": "VCID-v1ke-1b43-byhc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng-main@1.6.56-1%3Farch=hum1" }, { "url": "http://public2.vulnerablecode.io/api/packages/90477?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el8_6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el8_6" }, { "url": "http://public2.vulnerablecode.io/api/packages/90478?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el10_0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el10_0" }, { "url": "http://public2.vulnerablecode.io/api/packages/90479?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el9_6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el9_6" }, { "url": "http://public2.vulnerablecode.io/api/packages/90480?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el8_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el8_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/90481?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el9_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el9_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/90482?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el9_2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el9_2" }, { "url": "http://public2.vulnerablecode.io/api/packages/90483?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el9_0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el9_0" }, { "url": "http://public2.vulnerablecode.io/api/packages/90491?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el8_10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el8_10" }, { "url": "http://public2.vulnerablecode.io/api/packages/90496?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el10_1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el10_1" }, { "url": "http://public2.vulnerablecode.io/api/packages/90498?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el8_8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el8_8" }, { "url": "http://public2.vulnerablecode.io/api/packages/90499?format=api", "purl": "pkg:rpm/redhat/thunderbird@140.9.1-1?arch=el9_7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-14x7-f34b-5uhr" }, { "vulnerability": "VCID-3wkz-pa84-v3hm" }, { "vulnerability": "VCID-jax5-tqk4-vucd" }, { "vulnerability": "VCID-ty3k-pg97-7ff9" }, { "vulnerability": "VCID-waeb-qs91-4kbt" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thunderbird@140.9.1-1%3Farch=el9_7" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33636.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33636.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132013", "reference_id": "1132013", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1132013" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451819", "reference_id": "2451819", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11805", "reference_id": "RHSA-2026:11805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11813", "reference_id": "RHSA-2026:11813", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11813" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:12264", "reference_id": "RHSA-2026:12264", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:12264" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13342", "reference_id": "RHSA-2026:13342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13412", "reference_id": "RHSA-2026:13412", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13412" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13533", "reference_id": "RHSA-2026:13533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13582", "reference_id": "RHSA-2026:13582", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13582" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13583", "reference_id": "RHSA-2026:13583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13596", "reference_id": "RHSA-2026:13596", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13596" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13600", "reference_id": "RHSA-2026:13600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13665", "reference_id": "RHSA-2026:13665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13682", "reference_id": "RHSA-2026:13682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13683", "reference_id": "RHSA-2026:13683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13922", "reference_id": "RHSA-2026:13922", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13922" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13977", "reference_id": "RHSA-2026:13977", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13977" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14223", "reference_id": "RHSA-2026:14223", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:14223" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14303", "reference_id": "RHSA-2026:14303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:14303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14790", "reference_id": "RHSA-2026:14790", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:14790" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:14791", "reference_id": "RHSA-2026:14791", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:14791" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:15889", "reference_id": "RHSA-2026:15889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:15889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17524", "reference_id": "RHSA-2026:17524", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17524" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17567", "reference_id": "RHSA-2026:17567", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17567" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17603", "reference_id": "RHSA-2026:17603", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17603" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17642", "reference_id": "RHSA-2026:17642", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17642" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:17685", "reference_id": "RHSA-2026:17685", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:17685" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6732", "reference_id": "RHSA-2026:6732", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6732" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7671", "reference_id": "RHSA-2026:7671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:7672", "reference_id": "RHSA-2026:7672", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:7672" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8052", "reference_id": "RHSA-2026:8052", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8052" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8459", "reference_id": "RHSA-2026:8459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9254", "reference_id": "RHSA-2026:9254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9255", "reference_id": "RHSA-2026:9255", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9345", "reference_id": "RHSA-2026:9345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9345" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9638", "reference_id": "RHSA-2026:9638", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9638" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:9693", "reference_id": "RHSA-2026:9693", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:9693" } ], "weaknesses": [ { "cwe_id": 124, "name": "Buffer Underwrite ('Buffer Underflow')", "description": "The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer." } ], "exploits": [], "severity_range_score": "7.6 - 7.6", "exploitability": "0.5", "weighted_severity": "6.8", "risk_score": 3.4, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jax5-tqk4-vucd" }