Search for packages
| purl | pkg:deb/debian/dar@2.8.3-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1vu9-xzw9-kfe2 | zlib DoS |
CVE-2005-2096
|
| VCID-9rav-fzff-m3e4 | The blowfish mode in DAR before 2.3.4 uses weak Blowfish-CBC cryptography by (1) discarding random bits by the blowfish::make_ivec function in libdar/crypto.cpp that results in predictable and repeating IV values, and (2) direct use of a password for keying, which makes it easier for context-dependent attackers to decrypt files. |
CVE-2007-3528
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T13:20:03.944049+00:00 | Debian Importer | Fixing | VCID-9rav-fzff-m3e4 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T11:36:54.804219+00:00 | Debian Importer | Fixing | VCID-1vu9-xzw9-kfe2 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T09:11:22.188899+00:00 | Debian Importer | Fixing | VCID-9rav-fzff-m3e4 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-13T07:54:59.520815+00:00 | Debian Importer | Fixing | VCID-1vu9-xzw9-kfe2 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-02T17:18:07.609164+00:00 | Debian Importer | Fixing | VCID-9rav-fzff-m3e4 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-02T17:12:09.683179+00:00 | Debian Importer | Fixing | VCID-1vu9-xzw9-kfe2 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |