VulnerableCode Package Details - pkg:deb/debian/kodi@16.1%2Bdfsg1-2~bpo8%2B2

Search for packages

Vulnerability	Summary	Fixed by
VCID-1jy3-92d8-ebf3 Aliases: CVE-2021-42917	Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream.	2:19.1+dfsg2-2+deb11u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-becr-7kfy-c7ep Aliases: CVE-2023-30207	A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.	2:20.1+dfsg-1 Affected by 0 other vulnerabilities.
VCID-nak9-smbh-37et Aliases: CVE-2017-5982	Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.	2:19.1+dfsg2-2+deb11u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-saex-9ka8-c7en Aliases: CVE-2017-8314	Multiple vulnerabilities have been found in Kodi, the worst of which could allow remote attackers to execute arbitrary code.	2:17.1+dfsg1-3 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-z9v6-3q7k-zkg4 Aliases: CVE-2023-23082	A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.	2:20.1+dfsg-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-1jy3-92d8-ebf3
Aliases:
CVE-2021-42917

Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream.

2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.

VCID-becr-7kfy-c7ep
Aliases:
CVE-2023-30207

A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.

2:20.1+dfsg-1
Affected by 0 other vulnerabilities.

VCID-nak9-smbh-37et
Aliases:
CVE-2017-5982

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.

VCID-saex-9ka8-c7en
Aliases:
CVE-2017-8314

Multiple vulnerabilities have been found in Kodi, the worst of which could allow remote attackers to execute arbitrary code.

2:17.1+dfsg1-3
Affected by 4 other vulnerabilities.

VCID-z9v6-3q7k-zkg4
Aliases:
CVE-2023-23082

A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.

2:20.1+dfsg-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:56:43.809948+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:42:05.819254+00:00	Debian Oval Importer	Affected by	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:34:23.830840+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:50:32.534959+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:21:47.422568+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:29:02.347996+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:14:54.453916+00:00	Debian Oval Importer	Affected by	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:07:35.630611+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:29:02.705436+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:10:02.880864+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:59:25.016043+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:45:52.319063+00:00	Debian Oval Importer	Affected by	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:38:45.222417+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:07:26.122085+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:05:06.977973+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0