VulnerableCode Package Details - pkg:deb/debian/kodi@2:17.1%2Bdfsg1-3

Search for packages

Vulnerability	Summary	Fixed by
VCID-1jy3-92d8-ebf3 Aliases: CVE-2021-42917	Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream.	2:19.1+dfsg2-2+deb11u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-becr-7kfy-c7ep Aliases: CVE-2023-30207	A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.	2:20.1+dfsg-1 Affected by 0 other vulnerabilities.
VCID-nak9-smbh-37et Aliases: CVE-2017-5982	Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.	2:19.1+dfsg2-2+deb11u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-z9v6-3q7k-zkg4 Aliases: CVE-2023-23082	A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.	2:20.1+dfsg-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-1jy3-92d8-ebf3
Aliases:
CVE-2021-42917

Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream.

2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.

VCID-becr-7kfy-c7ep
Aliases:
CVE-2023-30207

A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.

2:20.1+dfsg-1
Affected by 0 other vulnerabilities.

VCID-nak9-smbh-37et
Aliases:
CVE-2017-5982

Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.

2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.

VCID-z9v6-3q7k-zkg4
Aliases:
CVE-2023-23082

A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.

2:20.1+dfsg-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-saex-9ka8-c7en	Multiple vulnerabilities have been found in Kodi, the worst of which could allow remote attackers to execute arbitrary code.	CVE-2017-8314

Vulnerability

Summary

Aliases

VCID-saex-9ka8-c7en

Multiple vulnerabilities have been found in Kodi, the worst of which could allow remote attackers to execute arbitrary code.

CVE-2017-8314

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:56:43.813890+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:42:05.823016+00:00	Debian Oval Importer	Fixing	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:34:23.834590+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:50:32.539180+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:21:47.426158+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:29:02.351777+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:14:54.455835+00:00	Debian Oval Importer	Fixing	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:07:35.634173+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:29:02.709323+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:10:02.885234+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:59:25.020058+00:00	Debian Oval Importer	Affected by	VCID-nak9-smbh-37et	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:45:52.323166+00:00	Debian Oval Importer	Fixing	VCID-saex-9ka8-c7en	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:38:45.226556+00:00	Debian Oval Importer	Affected by	VCID-becr-7kfy-c7ep	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:07:26.126296+00:00	Debian Oval Importer	Affected by	VCID-1jy3-92d8-ebf3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:05:06.983014+00:00	Debian Oval Importer	Affected by	VCID-z9v6-3q7k-zkg4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0