VulnerableCode Package Details - pkg:deb/debian/gvfs@1.46.2-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-n7zf-vpph-nygr Aliases: CVE-2026-28295	gvfs: GVfs FTP backend: Information disclosure via untrusted PASV responses	1.50.3-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.50.3-1+deb12u1 Affected by 0 other vulnerabilities. 1.57.2-2+deb13u1 Affected by 0 other vulnerabilities.
VCID-yxx6-d283-a7cu Aliases: CVE-2026-28296	gvfs: FTP GVfs backend: Arbitrary FTP command injection via CRLF sequences in file paths	1.50.3-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 1.50.3-1+deb12u1 Affected by 0 other vulnerabilities. 1.57.2-2+deb13u1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-n7zf-vpph-nygr
Aliases:
CVE-2026-28295

gvfs: GVfs FTP backend: Information disclosure via untrusted PASV responses

1.50.3-1
Affected by 2 other vulnerabilities.

1.50.3-1+deb12u1
Affected by 0 other vulnerabilities.

1.57.2-2+deb13u1
Affected by 0 other vulnerabilities.

VCID-yxx6-d283-a7cu
Aliases:
CVE-2026-28296

gvfs: FTP GVfs backend: Arbitrary FTP command injection via CRLF sequences in file paths

1.50.3-1
Affected by 2 other vulnerabilities.

1.50.3-1+deb12u1
Affected by 0 other vulnerabilities.

1.57.2-2+deb13u1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:27:50.548193+00:00	Debian Oval Importer	Affected by	VCID-yxx6-d283-a7cu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:33:17.152491+00:00	Debian Oval Importer	Affected by	VCID-n7zf-vpph-nygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T23:03:11.984845+00:00	Debian Oval Importer	Affected by	VCID-yxx6-d283-a7cu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:19:37.415667+00:00	Debian Oval Importer	Affected by	VCID-n7zf-vpph-nygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:37:05.037687+00:00	Debian Oval Importer	Affected by	VCID-yxx6-d283-a7cu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:08:05.110892+00:00	Debian Oval Importer	Affected by	VCID-n7zf-vpph-nygr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0