VulnerableCode Package Details - pkg:deb/debian/bzip2@1.0.6-4

Search for packages

Vulnerability	Summary	Fixed by
VCID-n51n-m2r7-kbdy Aliases: CVE-2019-12900	bzip2: bzip2: Data integrity error when decompressing (with data integrity tests fail).	1.0.6-9.2~deb10u1 Affected by 0 other vulnerabilities.
VCID-rgbz-6485-tfan Aliases: CVE-2016-3189	An use-after-free vulnerability has been found in bzip2 that could allow remote attackers to cause a Denial of Service condition.	1.0.6-8.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-n51n-m2r7-kbdy
Aliases:
CVE-2019-12900

bzip2: bzip2: Data integrity error when decompressing (with data integrity tests fail).

1.0.6-9.2~deb10u1
Affected by 0 other vulnerabilities.

VCID-rgbz-6485-tfan
Aliases:
CVE-2016-3189

An use-after-free vulnerability has been found in bzip2 that could allow remote attackers to cause a Denial of Service condition.

1.0.6-8.1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-569v-spq6-dbhv	The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.	CVE-2011-4089

Vulnerability

Summary

Aliases

VCID-569v-spq6-dbhv

The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by precreating a temporary directory.

CVE-2011-4089

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:55:03.622403+00:00	Debian Oval Importer	Affected by	VCID-n51n-m2r7-kbdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:45:38.016019+00:00	Debian Oval Importer	Affected by	VCID-rgbz-6485-tfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:30:38.924942+00:00	Debian Oval Importer	Fixing	VCID-569v-spq6-dbhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T23:29:19.753714+00:00	Debian Oval Importer	Affected by	VCID-n51n-m2r7-kbdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:20:16.830971+00:00	Debian Oval Importer	Affected by	VCID-rgbz-6485-tfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:13:30.816796+00:00	Debian Oval Importer	Fixing	VCID-569v-spq6-dbhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:02:15.698998+00:00	Debian Oval Importer	Affected by	VCID-n51n-m2r7-kbdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:53:37.457257+00:00	Debian Oval Importer	Affected by	VCID-rgbz-6485-tfan	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:57:32.138566+00:00	Debian Oval Importer	Fixing	VCID-569v-spq6-dbhv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0