VulnerableCode Package Details - pkg:deb/debian/dcraw@9.21-0.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/dcraw@9.21-0.2

Essentials
History (12)

purl	pkg:deb/debian/dcraw@9.21-0.2

Next non-vulnerable version	9.28-3
Latest non-vulnerable version	9.28-3
Risk	3.1

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-5qx5-u16v-vfgz Aliases: CVE-2015-8366	Multiple vulnerabilities have been found in LibRaw, the worst of which may allow attackers to execute arbitrary code.	9.28-2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-c7f1-d627-z3dm Aliases: CVE-2013-1438	Multiple vulnerabilities have been found in LibRaw and libkdcraw, the worst of which may lead to arbitrary code execution.	9.28-2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-etdj-hxzh-quhz Aliases: CVE-2018-19655	dcraw: Stack-based buffer overflow in the find_green() function	9.28-2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-xswq-6aae-nqfb Aliases: CVE-2015-3885	A buffer overflow in DCRaw might allow remote attackers to cause a Denial of Service condition.	9.27-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T22:58:02.678770+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:32:29.858127+00:00	Debian Oval Importer	Affected by	VCID-etdj-hxzh-quhz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:57:58.122777+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:40:01.401278+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T22:34:23.150335+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:17:16.259503+00:00	Debian Oval Importer	Affected by	VCID-etdj-hxzh-quhz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:44:36.712507+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:26:56.076710+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:09:49.626646+00:00	Debian Oval Importer	Affected by	VCID-c7f1-d627-z3dm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:03:24.776233+00:00	Debian Oval Importer	Affected by	VCID-etdj-hxzh-quhz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:35:01.155224+00:00	Debian Oval Importer	Affected by	VCID-xswq-6aae-nqfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:18:27.002956+00:00	Debian Oval Importer	Affected by	VCID-5qx5-u16v-vfgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0