Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/bubblewrap@0.1.7-1~bpo8%2B1
purl pkg:deb/debian/bubblewrap@0.1.7-1~bpo8%2B1
Next non-vulnerable version 0.4.1-3
Latest non-vulnerable version 0.4.1-3
Risk 3.9
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-qesp-mexv-ekdq
Aliases:
CVE-2019-12439
Bubblewrap misuses temporary directories allowing local code execution.
0.3.1-4
Affected by 1 other vulnerability.
VCID-vtup-4qk6-guf4
Aliases:
CVE-2020-5291
bubblewrap: privilege escalation in some kernel configurations
0.4.1-3
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T20:05:28.863534+00:00 Debian Oval Importer Affected by VCID-vtup-4qk6-guf4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:32:09.747537+00:00 Debian Oval Importer Affected by VCID-qesp-mexv-ekdq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T19:47:04.955945+00:00 Debian Oval Importer Affected by VCID-vtup-4qk6-guf4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:16:57.590893+00:00 Debian Oval Importer Affected by VCID-qesp-mexv-ekdq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T19:29:50.887629+00:00 Debian Oval Importer Affected by VCID-vtup-4qk6-guf4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:03:07.516745+00:00 Debian Oval Importer Affected by VCID-qesp-mexv-ekdq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0