Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-eejx-9f6j-9qej

Summary Matrix libolm before 3.2.3 allows a malicious Matrix homeserver to crash a client (while it is attempting to retrieve an Olm encrypted room key backup from the homeserver) because olm_pk_decrypt has a stack-based buffer overflow. Remote code execution might be possible for some nonstandard build configurations.

Aliases

alias	CVE-2021-34813

Fixed_packages

url	pkg:alpm/archlinux/libolm@3.2.3-1
purl	pkg:alpm/archlinux/libolm@3.2.3-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libolm@3.2.3-1

url	pkg:deb/debian/olm@3.2.3~dfsg-3?distro=trixie
purl	pkg:deb/debian/olm@3.2.3~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.3~dfsg-3%3Fdistro=trixie

url	pkg:deb/debian/olm@3.2.13~dfsg-1?distro=trixie
purl	pkg:deb/debian/olm@3.2.13~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.13~dfsg-1%3Fdistro=trixie

url	pkg:deb/debian/olm@3.2.13~dfsg-1
purl	pkg:deb/debian/olm@3.2.13~dfsg-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.13~dfsg-1

url	pkg:deb/debian/olm@3.2.16%2Bdfsg-3?distro=trixie
purl	pkg:deb/debian/olm@3.2.16%2Bdfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.16%252Bdfsg-3%3Fdistro=trixie

url	pkg:deb/debian/olm@3.2.16%2Bdfsg-5?distro=trixie
purl	pkg:deb/debian/olm@3.2.16%2Bdfsg-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.16%252Bdfsg-5%3Fdistro=trixie

Affected_packages

url pkg:alpm/archlinux/libolm@3.2.2-1

purl pkg:alpm/archlinux/libolm@3.2.2-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-eejx-9f6j-9qej

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/libolm@3.2.2-1

url pkg:deb/debian/olm@3.2.1~dfsg-7?distro=trixie

purl pkg:deb/debian/olm@3.2.1~dfsg-7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mm2-4b1k-afat

vulnerability	VCID-eejx-9f6j-9qej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.1~dfsg-7%3Fdistro=trixie

url pkg:deb/debian/olm@3.2.1~dfsg-7

purl pkg:deb/debian/olm@3.2.1~dfsg-7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1mm2-4b1k-afat

vulnerability	VCID-eejx-9f6j-9qej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/olm@3.2.1~dfsg-7

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-34813

reference_id

reference_type

scores

value	0.04458
scoring_system	epss
scoring_elements	0.89087
published_at	2026-04-18T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.8902
published_at	2026-04-01T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89028
published_at	2026-04-02T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89043
published_at	2026-04-04T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89045
published_at	2026-04-07T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89062
published_at	2026-04-08T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89067
published_at	2026-04-09T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89079
published_at	2026-04-11T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89075
published_at	2026-04-12T12:55:00Z

value	0.04458
scoring_system	epss
scoring_elements	0.89072
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-34813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34813

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989997
reference_id	989997
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989997

reference_url

https://security.archlinux.org/AVG-2077

reference_id

AVG-2077

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2077

reference_url	https://usn.ubuntu.com/USN-5194-1/
reference_id	USN-USN-5194-1
reference_type
scores
url	https://usn.ubuntu.com/USN-5194-1/

Weaknesses

Exploits

Severity_range_score 0.1 - 3

Exploitability 0.5

Weighted_severity 2.7

Risk_score 1.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eejx-9f6j-9qej

Vulnerability Instance