VulnerableCode Package Details - pkg:deb/debian/db5.3@5.3.28%2Bdfsg1-0.8?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/db5.3@5.3.28%2Bdfsg1-0.8?distro=trixie

purl	pkg:deb/debian/db5.3@5.3.28%2Bdfsg1-0.8?distro=trixie

Next non-vulnerable version	5.3.28+dfsg1-0.9
Latest non-vulnerable version	5.3.28+dfsg2-11
Risk	3.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-vchu-y7qg-pucp Aliases: CVE-2019-8457	sqlite: heap out-of-bound read in function rtreenode()	5.3.28+dfsg1-0.9 Affected by 0 other vulnerabilities. 5.3.28+dfsg2-1 Affected by 0 other vulnerabilities. 5.3.28+dfsg2-9 Affected by 0 other vulnerabilities. 5.3.28+dfsg2-11 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-vchu-y7qg-pucp
Aliases:
CVE-2019-8457

sqlite: heap out-of-bound read in function rtreenode()

5.3.28+dfsg1-0.9
Affected by 0 other vulnerabilities.

5.3.28+dfsg2-1
Affected by 0 other vulnerabilities.

5.3.28+dfsg2-9
Affected by 0 other vulnerabilities.

5.3.28+dfsg2-11
Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-zreg-chdy-wfg8	libdb: Reads DB_CONFIG from the current working directory	CVE-2017-10140

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T08:48:01.461960+00:00	Debian Importer	Fixing	VCID-zreg-chdy-wfg8	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-11T17:54:45.986364+00:00	Debian Importer	Fixing	VCID-zreg-chdy-wfg8	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:21:26.821698+00:00	Debian Importer	Affected by	VCID-vchu-y7qg-pucp	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:02:46.374091+00:00	Debian Importer	Fixing	VCID-zreg-chdy-wfg8	https://security-tracker.debian.org/tracker/data/json	38.1.0