Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-z55w-t8kd-hqep

Summary glibc: Integer overflow with enabled tcache

Aliases

alias	CVE-2017-17426

Fixed_packages

url	pkg:deb/debian/glibc@0?distro=trixie
purl	pkg:deb/debian/glibc@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@0%3Fdistro=trixie

url pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

purl pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-9nqp-tfvr-ayen

vulnerability	VCID-jswq-6ru6-wybc

vulnerability	VCID-kukb-s61t-pbc3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

purl pkg:deb/debian/glibc@2.36-9%2Bdeb12u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-ssnc-wdcf-sfc9

vulnerability	VCID-tcpv-4crc-zuap

vulnerability	VCID-us68-psx5-zude

vulnerability	VCID-zn6t-3mvb-wufm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/glibc@2.41-12%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-13?distro=trixie

purl pkg:deb/debian/glibc@2.42-13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3e43-r92j-hkd3

vulnerability	VCID-nwfb-xnks-1kg7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-13%3Fdistro=trixie

url pkg:deb/debian/glibc@2.42-14?distro=trixie

purl pkg:deb/debian/glibc@2.42-14?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-us68-psx5-zude

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-14%3Fdistro=trixie

url	pkg:deb/debian/glibc@2.42-15?distro=trixie
purl	pkg:deb/debian/glibc@2.42-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-15%3Fdistro=trixie

Affected_packages

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17426.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17426.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-17426

reference_id

reference_type

scores

value	0.00358
scoring_system	epss
scoring_elements	0.57899
published_at	2026-04-01T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58016
published_at	2026-04-21T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.5804
published_at	2026-04-16T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58039
published_at	2026-04-18T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.57983
published_at	2026-04-02T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58002
published_at	2026-04-04T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.57978
published_at	2026-04-07T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58033
published_at	2026-04-08T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58035
published_at	2026-04-09T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58052
published_at	2026-04-11T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.58031
published_at	2026-04-12T12:55:00Z

value	0.00358
scoring_system	epss
scoring_elements	0.5801
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-17426

reference_url	https://sourceware.org/bugzilla/show_bug.cgi?id=22375
reference_id
reference_type
scores
url	https://sourceware.org/bugzilla/show_bug.cgi?id=22375

reference_url	https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=34697694e8a93b325b18f25f7dcded55d6baeaf6
reference_id
reference_type
scores
url	https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=34697694e8a93b325b18f25f7dcded55d6baeaf6

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1524530
reference_id	1524530
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1524530

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc:2.26:::::::*
reference_id	cpe:2.3:a:gnu:glibc:2.26:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc:2.26:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-17426

reference_id

CVE-2017-17426

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-17426

reference_url	https://usn.ubuntu.com/3534-1/
reference_id	USN-3534-1
reference_type
scores
url	https://usn.ubuntu.com/3534-1/

Weaknesses

cwe_id	190
name	Integer Overflow or Wraparound
description	The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

Exploits

Severity_range_score 5.3 - 8.1

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z55w-t8kd-hqep

Vulnerability Instance