Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/kodi@2:17.6%2Bdfsg1-4
purl pkg:deb/debian/kodi@2:17.6%2Bdfsg1-4
Next non-vulnerable version 2:20.1+dfsg-1
Latest non-vulnerable version 2:20.1+dfsg-1
Risk 1.6
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-1jy3-92d8-ebf3
Aliases:
CVE-2021-42917
Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows attackers to cause a denial of service due to improper length of values passed to istream.
2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.
VCID-becr-7kfy-c7ep
Aliases:
CVE-2023-30207
A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.
2:20.1+dfsg-1
Affected by 0 other vulnerabilities.
VCID-nak9-smbh-37et
Aliases:
CVE-2017-5982
Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd.
2:19.1+dfsg2-2+deb11u1
Affected by 2 other vulnerabilities.
VCID-z9v6-3q7k-zkg4
Aliases:
CVE-2023-23082
A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument.
2:20.1+dfsg-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:56:43.817691+00:00 Debian Oval Importer Affected by VCID-nak9-smbh-37et https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:34:23.838353+00:00 Debian Oval Importer Affected by VCID-becr-7kfy-c7ep https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:50:32.543409+00:00 Debian Oval Importer Affected by VCID-1jy3-92d8-ebf3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:21:47.429580+00:00 Debian Oval Importer Affected by VCID-z9v6-3q7k-zkg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:29:02.355455+00:00 Debian Oval Importer Affected by VCID-nak9-smbh-37et https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-12T00:07:35.637806+00:00 Debian Oval Importer Affected by VCID-becr-7kfy-c7ep https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:29:02.713080+00:00 Debian Oval Importer Affected by VCID-1jy3-92d8-ebf3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:10:02.889628+00:00 Debian Oval Importer Affected by VCID-z9v6-3q7k-zkg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:59:25.023943+00:00 Debian Oval Importer Affected by VCID-nak9-smbh-37et https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:38:45.230775+00:00 Debian Oval Importer Affected by VCID-becr-7kfy-c7ep https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:07:26.130497+00:00 Debian Oval Importer Affected by VCID-1jy3-92d8-ebf3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:05:06.988363+00:00 Debian Oval Importer Affected by VCID-z9v6-3q7k-zkg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0