VulnerableCode Package Details - pkg:deb/debian/a2ps@1:4.13b-4.3

Search for packages

Vulnerability	Summary	Fixed by
VCID-436p-4bjx-7khu Aliases: CVE-2015-8107	a2ps: output_file() format string flaw	1:4.14-1.3 Affected by 0 other vulnerabilities.
VCID-jyey-2ny4-akeh Aliases: CVE-2014-0466	A vulnerability in a2ps' fixps script might allow remote attackers to execute arbitrary code.	1:4.14-1.1+deb7u1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1:4.14-1.3 Affected by 0 other vulnerabilities.
VCID-s4ex-ua5v-x3cc Aliases: CVE-2001-1593	security update	1:4.14-1.1+deb7u1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1:4.14-1.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-436p-4bjx-7khu
Aliases:
CVE-2015-8107

a2ps: output_file() format string flaw

1:4.14-1.3
Affected by 0 other vulnerabilities.

VCID-jyey-2ny4-akeh
Aliases:
CVE-2014-0466

A vulnerability in a2ps' fixps script might allow remote attackers to execute arbitrary code.

1:4.14-1.1+deb7u1
Affected by 3 other vulnerabilities.

1:4.14-1.3
Affected by 0 other vulnerabilities.

VCID-s4ex-ua5v-x3cc
Aliases:
CVE-2001-1593

security update

1:4.14-1.1+deb7u1
Affected by 3 other vulnerabilities.

1:4.14-1.3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-cyqf-ycjc-wygc	The fixps and psmandup scripts in the a2ps package are vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files. A vulnerability in a2ps filename handling could also result in arbitrary command execution.	CVE-2004-1377
VCID-mxkn-n54m-57hk	a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.	CVE-2004-1170

Vulnerability

Summary

Aliases

VCID-cyqf-ycjc-wygc

The fixps and psmandup scripts in the a2ps package are vulnerable to symlink attacks, potentially allowing a local user to overwrite arbitrary files. A vulnerability in a2ps filename handling could also result in arbitrary command execution.

CVE-2004-1377

VCID-mxkn-n54m-57hk

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

CVE-2004-1170

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:33:42.090748+00:00	Debian Oval Importer	Affected by	VCID-436p-4bjx-7khu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:36:09.195668+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:11:53.064751+00:00	Debian Oval Importer	Fixing	VCID-cyqf-ycjc-wygc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:53:07.668128+00:00	Debian Oval Importer	Fixing	VCID-mxkn-n54m-57hk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:54:35.871754+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T13:02:45.579256+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-15T12:54:49.157233+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-11T23:08:46.433501+00:00	Debian Oval Importer	Affected by	VCID-436p-4bjx-7khu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:12:59.258335+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:55:29.936549+00:00	Debian Oval Importer	Fixing	VCID-cyqf-ycjc-wygc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:37:34.047312+00:00	Debian Oval Importer	Fixing	VCID-mxkn-n54m-57hk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:40:32.739083+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T12:52:17.452290+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-11T12:43:22.307451+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-08T22:42:27.862531+00:00	Debian Oval Importer	Affected by	VCID-436p-4bjx-7khu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:49:23.403853+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:40:09.680119+00:00	Debian Oval Importer	Fixing	VCID-cyqf-ycjc-wygc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:22:42.605683+00:00	Debian Oval Importer	Fixing	VCID-mxkn-n54m-57hk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:27:53.102415+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T21:26:58.893517+00:00	Debian Oval Importer	Affected by	VCID-jyey-2ny4-akeh	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-03T21:53:20.762514+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-02T12:59:32.928175+00:00	Debian Oval Importer	Affected by	VCID-s4ex-ua5v-x3cc	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.0.0