VulnerableCode Package Details - pkg:alpm/archlinux/libcdio@0.94-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/libcdio@0.94-1

Essentials
History (2)

purl	pkg:alpm/archlinux/libcdio@0.94-1

Next non-vulnerable version	1.0.0-1
Latest non-vulnerable version	2.0.0-1
Risk	3.1

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-dg5y-yvm7-e7da Aliases: CVE-2017-18199	libcdio: NULL pointer dereference in realloc_symlink in rock.c	1.0.0-1 Affected by 0 other vulnerabilities.
VCID-qhhk-9n8e-h3fv Aliases: CVE-2017-18198	libcdio: Heap-based buffer over-read in print_iso9660_recurse function in iso-info.c	1.0.0-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:27:05.994368+00:00	Arch Linux Importer	Affected by	VCID-qhhk-9n8e-h3fv	https://security.archlinux.org/AVG-638	38.0.0
2026-04-01T18:27:05.966821+00:00	Arch Linux Importer	Affected by	VCID-dg5y-yvm7-e7da	https://security.archlinux.org/AVG-638	38.0.0