Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/cyrus-sasl2@2.1.26.dfsg1-13%2Bdeb8u1
purl pkg:deb/debian/cyrus-sasl2@2.1.26.dfsg1-13%2Bdeb8u1
Next non-vulnerable version 2.1.27+dfsg-2.1+deb11u1
Latest non-vulnerable version 2.1.27+dfsg-2.1+deb11u1
Risk 4.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-2hdg-fauv-7bhv
Aliases:
CVE-2013-4122
A NULL pointer dereference in Cyrus-SASL may allow remote attackers to cause a Denial of Service condition.
2.1.27~101-g0780600+dfsg-3+deb9u1
Affected by 2 other vulnerabilities.
VCID-ca3b-g7k5-yucm
Aliases:
CVE-2019-19906
security update
2.1.27~101-g0780600+dfsg-3+deb9u1
Affected by 2 other vulnerabilities.
2.1.27+dfsg-1+deb10u2
Affected by 2 other vulnerabilities.
2.1.27+dfsg-2.1+deb11u1
Affected by 0 other vulnerabilities.
VCID-ukce-7qpu-c7cm
Aliases:
CVE-2022-24407
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.
2.1.27+dfsg-1+deb10u2
Affected by 2 other vulnerabilities.
2.1.27+dfsg-2.1+deb11u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-2hdg-fauv-7bhv A NULL pointer dereference in Cyrus-SASL may allow remote attackers to cause a Denial of Service condition. CVE-2013-4122

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T20:06:59.106035+00:00 Debian Oval Importer Affected by VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:13:54.013732+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:39:49.221343+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:08:29.797431+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T15:05:04.569858+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.4.0
2026-04-15T14:26:34.417054+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.4.0
2026-04-15T14:01:52.096539+00:00 Debian Oval Importer Fixing VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-11T19:48:35.057319+00:00 Debian Oval Importer Affected by VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:00:29.225892+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:26:44.328817+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T14:56:46.960908+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:53:22.072339+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.3.0
2026-04-11T14:14:54.124926+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.3.0
2026-04-11T13:50:29.297745+00:00 Debian Oval Importer Fixing VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-08T19:31:15.103594+00:00 Debian Oval Importer Affected by VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:49:57.964176+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:18:16.120203+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T23:28:55.569764+00:00 Debian Oval Importer Affected by VCID-ukce-7qpu-c7cm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T23:25:50.711875+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 38.1.0
2026-04-07T22:48:43.663760+00:00 Debian Oval Importer Affected by VCID-ca3b-g7k5-yucm https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.1.0
2026-04-07T22:25:42.216427+00:00 Debian Oval Importer Fixing VCID-2hdg-fauv-7bhv https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0