Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/gnumeric@1.6.3-5
purl pkg:deb/debian/gnumeric@1.6.3-5
Next non-vulnerable version 1.12.18-2
Latest non-vulnerable version 1.12.18-2
Risk 3.1
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-2kke-w7x2-5yaw
Aliases:
CVE-2008-0668
Several integer overflow vulnerabilities have been reported in Gnumeric, possibly resulting in user-assisted execution of arbitrary code.
1.8.3-5+lenny1
Affected by 2 other vulnerabilities.
VCID-8c6b-6hbz-y3hc
Aliases:
CVE-2013-6836
Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a crafted xls file with a crafted length value.
1.12.18-2
Affected by 0 other vulnerabilities.
VCID-jnt2-3jj4-17cw
Aliases:
CVE-2009-0318
An untrusted search path vulnerability in Gnumeric might result in the execution of arbitrary code.
1.10.8-1squeeze5
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-v2g6-h93b-euer An integer overflow flaw was found in PCRE, a Perl-compatible regular expression library included within httpd. A local user who has the ability to create .htaccess files could create a maliciously crafted regular expression in such as way that they could gain the privileges of a httpd child. CVE-2005-2491

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T18:55:24.596418+00:00 Debian Oval Importer Affected by VCID-jnt2-3jj4-17cw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:44:26.063161+00:00 Debian Oval Importer Affected by VCID-2kke-w7x2-5yaw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:30:00.079307+00:00 Debian Oval Importer Affected by VCID-8c6b-6hbz-y3hc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:54:32.171896+00:00 Debian Oval Importer Fixing VCID-v2g6-h93b-euer https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T18:39:41.367477+00:00 Debian Oval Importer Affected by VCID-jnt2-3jj4-17cw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:30:29.061812+00:00 Debian Oval Importer Affected by VCID-2kke-w7x2-5yaw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:16:25.527842+00:00 Debian Oval Importer Affected by VCID-8c6b-6hbz-y3hc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:41:13.830104+00:00 Debian Oval Importer Fixing VCID-v2g6-h93b-euer https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T18:24:51.827354+00:00 Debian Oval Importer Affected by VCID-jnt2-3jj4-17cw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:18:25.244273+00:00 Debian Oval Importer Affected by VCID-2kke-w7x2-5yaw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:05:01.970154+00:00 Debian Oval Importer Affected by VCID-8c6b-6hbz-y3hc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:31:45.246804+00:00 Debian Oval Importer Fixing VCID-v2g6-h93b-euer https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0