Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libonig@5.9.1-1
purl pkg:deb/debian/libonig@5.9.1-1
Next non-vulnerable version 6.9.6-1.1
Latest non-vulnerable version 6.9.6-1.1
Risk 4.4
Vulnerabilities affecting this package (13)
Vulnerability Summary Fixed by
VCID-1vz6-251d-1ye7
Aliases:
CVE-2019-13225
Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-73xb-21qk-gub3
Aliases:
CVE-2019-19246
oniguruma: Heap-based buffer overflow in str_lower_case_match in regexec.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-7tdw-4nwm-gqe8
Aliases:
CVE-2017-9225
oniguruma: Out-of-bounds stack write in onigenc_unicode_get_case_fold_codes_by_str() during regular expression compilation
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-apf9-z7zs-jyh7
Aliases:
CVE-2017-9229
oniguruma: Invalid pointer dereference in left_adjust_char_head()
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-b5af-c9yc-rke7
Aliases:
CVE-2017-9228
oniguruma: Out-of-bounds heap write in bitset_set_range()
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-ge97-dnra-uygw
Aliases:
CVE-2017-9227
oniguruma: Out-of-bounds stack read in mbc_enc_len() during regular expression searching
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-gf19-ebyv-u3b5
Aliases:
CVE-2017-9224
oniguruma: Out-of-bounds stack read in match_at() during regular expression searching
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-j961-etd4-jfdy
Aliases:
CVE-2019-13224
Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-jurp-5mrx-13ce
Aliases:
CVE-2019-19204
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-khf6-r7w8-c7bm
Aliases:
CVE-2019-19203
oniguruma: Heap-based buffer over-read in function gb18030_mbc_enc_len in file gb18030.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-p5gj-xqc9-yqar
Aliases:
CVE-2019-16163
oniguruma: Stack exhaustion in regcomp.c because of recursion in regparse.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-s75c-hjr2-uubw
Aliases:
CVE-2017-9226
oniguruma: Heap buffer overflow in next_state_val() during regular expression compilation
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-xzt6-6k5g-byap
Aliases:
CVE-2019-19012
oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read
6.9.6-1.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:34:29.513016+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:38:07.169384+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:10:23.024070+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:06:55.124469+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:06:32.639926+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:19:52.894028+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:07:05.229531+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:36:26.516098+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:23:15.522950+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:04:13.587556+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:55:29.527243+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:06:45.829030+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:45:13.530210+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:07:41.091896+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:17:01.831410+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:50:17.434141+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:46:56.621828+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:46:34.618516+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:01:34.193247+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:48:41.519017+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:19:08.796469+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:06:26.254867+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:48:11.656699+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:39:46.428025+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:52:22.891168+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:31:15.070107+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:38:50.416737+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:55:51.520920+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:29:53.803927+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:26:42.176996+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:26:20.878716+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:43:17.154842+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:31:20.828516+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:02:55.854851+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:50:42.667434+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:33:09.061117+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:24:56.775019+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:39:18.158882+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:19:09.536320+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0