Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3%2Bdeb9u1
purl pkg:deb/debian/flightgear@1:2016.4.4%2Bdfsg-3%2Bdeb9u1
Next non-vulnerable version 1:2020.3.16+dfsg-1+deb12u1
Latest non-vulnerable version 1:2020.3.16+dfsg-1+deb12u1
Risk 3.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-7q3y-2xqq-xyeb
Aliases:
CVE-2017-13709
In FlightGear before version 2017.3.1, Main/logger.cxx in the FGLogger subsystem allows one to overwrite any file via a resource that affects the contents of the global Property Tree.
1:2018.3.2+dfsg-2
Affected by 1 other vulnerability.
VCID-f7c9-mtg5-73d2
Aliases:
CVE-2025-0781
An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level.
1:2020.3.16+dfsg-1+deb12u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-9ewn-73tt-dbbp In FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan (XML). A resource such as a malicious third-party aircraft could exploit this to damage files belonging to the user. Both this issue and CVE-2016-9956 are directory traversal vulnerabilities in Autopilot/route_mgr.cxx - this one exists because of an incomplete fix for CVE-2016-9956. CVE-2017-8921
VCID-jvuk-8u9v-wyfy security update CVE-2016-9956

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T23:42:21.146554+00:00 Debian Oval Importer Fixing VCID-jvuk-8u9v-wyfy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:04:15.579404+00:00 Debian Oval Importer Affected by VCID-f7c9-mtg5-73d2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:58:51.174964+00:00 Debian Oval Importer Fixing VCID-9ewn-73tt-dbbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:48:06.651550+00:00 Debian Oval Importer Affected by VCID-7q3y-2xqq-xyeb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T23:17:06.689242+00:00 Debian Oval Importer Fixing VCID-jvuk-8u9v-wyfy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:44:21.080392+00:00 Debian Oval Importer Affected by VCID-f7c9-mtg5-73d2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:39:10.558118+00:00 Debian Oval Importer Fixing VCID-9ewn-73tt-dbbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:34:52.961848+00:00 Debian Oval Importer Affected by VCID-7q3y-2xqq-xyeb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T22:50:33.495584+00:00 Debian Oval Importer Fixing VCID-jvuk-8u9v-wyfy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:24:13.594168+00:00 Debian Oval Importer Affected by VCID-f7c9-mtg5-73d2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:19:12.999616+00:00 Debian Oval Importer Fixing VCID-9ewn-73tt-dbbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:25:46.951929+00:00 Debian Oval Importer Affected by VCID-7q3y-2xqq-xyeb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0