Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/libonig@5.9.5-3.2
purl pkg:deb/debian/libonig@5.9.5-3.2
Next non-vulnerable version 6.9.6-1.1
Latest non-vulnerable version 6.9.6-1.1
Risk 4.4
Vulnerabilities affecting this package (13)
Vulnerability Summary Fixed by
VCID-1vz6-251d-1ye7
Aliases:
CVE-2019-13225
Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-73xb-21qk-gub3
Aliases:
CVE-2019-19246
oniguruma: Heap-based buffer overflow in str_lower_case_match in regexec.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-7tdw-4nwm-gqe8
Aliases:
CVE-2017-9225
oniguruma: Out-of-bounds stack write in onigenc_unicode_get_case_fold_codes_by_str() during regular expression compilation
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-apf9-z7zs-jyh7
Aliases:
CVE-2017-9229
oniguruma: Invalid pointer dereference in left_adjust_char_head()
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-b5af-c9yc-rke7
Aliases:
CVE-2017-9228
oniguruma: Out-of-bounds heap write in bitset_set_range()
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-ge97-dnra-uygw
Aliases:
CVE-2017-9227
oniguruma: Out-of-bounds stack read in mbc_enc_len() during regular expression searching
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-gf19-ebyv-u3b5
Aliases:
CVE-2017-9224
oniguruma: Out-of-bounds stack read in match_at() during regular expression searching
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-j961-etd4-jfdy
Aliases:
CVE-2019-13224
Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-jurp-5mrx-13ce
Aliases:
CVE-2019-19204
oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-khf6-r7w8-c7bm
Aliases:
CVE-2019-19203
oniguruma: Heap-based buffer over-read in function gb18030_mbc_enc_len in file gb18030.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-p5gj-xqc9-yqar
Aliases:
CVE-2019-16163
oniguruma: Stack exhaustion in regcomp.c because of recursion in regparse.c
6.9.6-1.1
Affected by 0 other vulnerabilities.
VCID-s75c-hjr2-uubw
Aliases:
CVE-2017-9226
oniguruma: Heap buffer overflow in next_state_val() during regular expression compilation
6.1.3-2
Affected by 7 other vulnerabilities.
VCID-xzt6-6k5g-byap
Aliases:
CVE-2019-19012
oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read
6.9.6-1.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:34:29.516635+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:38:07.172785+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:10:23.027974+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:06:55.128295+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:06:32.643817+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:19:52.897569+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:07:05.233287+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:36:26.520105+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:23:15.526921+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:04:13.591251+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:55:29.530658+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:06:45.832767+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:45:13.534057+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:07:41.095962+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:17:01.835337+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:50:17.438208+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:46:56.625830+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:46:34.622347+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:01:34.197168+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:48:41.527994+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:19:08.800241+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:06:26.258608+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:48:11.660907+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:39:46.431844+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:52:22.896760+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:31:15.074169+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:38:50.420898+00:00 Debian Oval Importer Affected by VCID-73xb-21qk-gub3 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:55:51.525287+00:00 Debian Oval Importer Affected by VCID-j961-etd4-jfdy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:29:53.808680+00:00 Debian Oval Importer Affected by VCID-khf6-r7w8-c7bm https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:26:42.181373+00:00 Debian Oval Importer Affected by VCID-7tdw-4nwm-gqe8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:26:20.883098+00:00 Debian Oval Importer Affected by VCID-s75c-hjr2-uubw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:43:17.159049+00:00 Debian Oval Importer Affected by VCID-apf9-z7zs-jyh7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:31:20.833020+00:00 Debian Oval Importer Affected by VCID-1vz6-251d-1ye7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:02:55.859080+00:00 Debian Oval Importer Affected by VCID-b5af-c9yc-rke7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:50:42.672092+00:00 Debian Oval Importer Affected by VCID-xzt6-6k5g-byap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:33:09.068252+00:00 Debian Oval Importer Affected by VCID-jurp-5mrx-13ce https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:24:56.779160+00:00 Debian Oval Importer Affected by VCID-ge97-dnra-uygw https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:39:18.163082+00:00 Debian Oval Importer Affected by VCID-gf19-ebyv-u3b5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:19:09.542555+00:00 Debian Oval Importer Affected by VCID-p5gj-xqc9-yqar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0