VulnerableCode Package Details - pkg:deb/debian/bzr@2.1.2-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-1mw1-384y-huc7 Aliases: CVE-2013-2099	Uncontrolled Resource Consumption Algorithmic complexity vulnerability in the `ssl.match_hostname` function and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.	2.6.0+bzr6595-6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-favu-xada-nuc6 Aliases: CVE-2017-14176	security update	2.6.0+bzr6595-6+deb8u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.7.0+bzr6619-7+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.7.0+bzr6622-15 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-1mw1-384y-huc7
Aliases:
CVE-2013-2099

Uncontrolled Resource Consumption Algorithmic complexity vulnerability in the `ssl.match_hostname` function and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate.

2.6.0+bzr6595-6
Affected by 1 other vulnerability.

VCID-favu-xada-nuc6
Aliases:
CVE-2017-14176

security update

2.6.0+bzr6595-6+deb8u1
Affected by 1 other vulnerability.

2.7.0+bzr6619-7+deb9u1
Affected by 1 other vulnerability.

2.7.0+bzr6622-15
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T21:09:33.330727+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:24:12.981673+00:00	Debian Oval Importer	Affected by	VCID-1mw1-384y-huc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:30:53.768222+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T13:57:09.529647+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-11T20:49:29.379739+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:07:20.670633+00:00	Debian Oval Importer	Affected by	VCID-1mw1-384y-huc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:19:11.676011+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T13:45:48.007331+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-08T20:29:07.813561+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:51:33.519216+00:00	Debian Oval Importer	Affected by	VCID-1mw1-384y-huc7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:52:53.913550+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:21:18.331439+00:00	Debian Oval Importer	Affected by	VCID-favu-xada-nuc6	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0