VulnerableCode Package Details - pkg:deb/debian/libonig@6.1.3-2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/libonig@6.1.3-2

Essentials
History (39)

purl	pkg:deb/debian/libonig@6.1.3-2

Next non-vulnerable version	6.9.6-1.1
Latest non-vulnerable version	6.9.6-1.1
Risk	4.4

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-1vz6-251d-1ye7 Aliases: CVE-2019-13225	Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-73xb-21qk-gub3 Aliases: CVE-2019-19246	oniguruma: Heap-based buffer overflow in str_lower_case_match in regexec.c	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-j961-etd4-jfdy Aliases: CVE-2019-13224	Multiple vulnerabilities have been found in Oniguruma, the worst of which could result in the arbitrary execution of code.	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-jurp-5mrx-13ce Aliases: CVE-2019-19204	oniguruma: Heap-based buffer over-read in function fetch_interval_quantifier in regparse.c	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-khf6-r7w8-c7bm Aliases: CVE-2019-19203	oniguruma: Heap-based buffer over-read in function gb18030_mbc_enc_len in file gb18030.c	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-p5gj-xqc9-yqar Aliases: CVE-2019-16163	oniguruma: Stack exhaustion in regcomp.c because of recursion in regparse.c	6.9.6-1.1 Affected by 0 other vulnerabilities.
VCID-xzt6-6k5g-byap Aliases: CVE-2019-19012	oniguruma: integer overflow in search_in_range function in regexec.c leads to out-of-bounds read	6.9.6-1.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (6)

Vulnerability	Summary	Aliases
VCID-7tdw-4nwm-gqe8	oniguruma: Out-of-bounds stack write in onigenc_unicode_get_case_fold_codes_by_str() during regular expression compilation	CVE-2017-9225
VCID-apf9-z7zs-jyh7	oniguruma: Invalid pointer dereference in left_adjust_char_head()	CVE-2017-9229
VCID-b5af-c9yc-rke7	oniguruma: Out-of-bounds heap write in bitset_set_range()	CVE-2017-9228
VCID-ge97-dnra-uygw	oniguruma: Out-of-bounds stack read in mbc_enc_len() during regular expression searching	CVE-2017-9227
VCID-gf19-ebyv-u3b5	oniguruma: Out-of-bounds stack read in match_at() during regular expression searching	CVE-2017-9224
VCID-s75c-hjr2-uubw	oniguruma: Heap buffer overflow in next_state_val() during regular expression compilation	CVE-2017-9226

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:34:29.526084+00:00	Debian Oval Importer	Affected by	VCID-73xb-21qk-gub3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:38:07.179329+00:00	Debian Oval Importer	Affected by	VCID-j961-etd4-jfdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:10:23.035832+00:00	Debian Oval Importer	Affected by	VCID-khf6-r7w8-c7bm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:06:55.135939+00:00	Debian Oval Importer	Fixing	VCID-7tdw-4nwm-gqe8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:06:32.651490+00:00	Debian Oval Importer	Fixing	VCID-s75c-hjr2-uubw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:19:52.904542+00:00	Debian Oval Importer	Fixing	VCID-apf9-z7zs-jyh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:07:05.240499+00:00	Debian Oval Importer	Affected by	VCID-1vz6-251d-1ye7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:36:26.528079+00:00	Debian Oval Importer	Fixing	VCID-b5af-c9yc-rke7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:23:15.534722+00:00	Debian Oval Importer	Affected by	VCID-xzt6-6k5g-byap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:04:13.598612+00:00	Debian Oval Importer	Affected by	VCID-jurp-5mrx-13ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:55:29.537620+00:00	Debian Oval Importer	Fixing	VCID-ge97-dnra-uygw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:06:45.840365+00:00	Debian Oval Importer	Fixing	VCID-gf19-ebyv-u3b5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:45:13.541681+00:00	Debian Oval Importer	Affected by	VCID-p5gj-xqc9-yqar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:07:41.103712+00:00	Debian Oval Importer	Affected by	VCID-73xb-21qk-gub3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:17:01.843254+00:00	Debian Oval Importer	Affected by	VCID-j961-etd4-jfdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:50:17.445896+00:00	Debian Oval Importer	Affected by	VCID-khf6-r7w8-c7bm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:46:56.633592+00:00	Debian Oval Importer	Fixing	VCID-7tdw-4nwm-gqe8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:46:34.630002+00:00	Debian Oval Importer	Fixing	VCID-s75c-hjr2-uubw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:01:34.205134+00:00	Debian Oval Importer	Fixing	VCID-apf9-z7zs-jyh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:48:41.552005+00:00	Debian Oval Importer	Affected by	VCID-1vz6-251d-1ye7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:19:08.807594+00:00	Debian Oval Importer	Fixing	VCID-b5af-c9yc-rke7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:06:26.266317+00:00	Debian Oval Importer	Affected by	VCID-xzt6-6k5g-byap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:48:11.669233+00:00	Debian Oval Importer	Affected by	VCID-jurp-5mrx-13ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:39:46.439634+00:00	Debian Oval Importer	Fixing	VCID-ge97-dnra-uygw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:52:22.910756+00:00	Debian Oval Importer	Fixing	VCID-gf19-ebyv-u3b5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:31:15.082738+00:00	Debian Oval Importer	Affected by	VCID-p5gj-xqc9-yqar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:38:50.429320+00:00	Debian Oval Importer	Affected by	VCID-73xb-21qk-gub3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:55:51.538029+00:00	Debian Oval Importer	Affected by	VCID-j961-etd4-jfdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:29:53.817993+00:00	Debian Oval Importer	Affected by	VCID-khf6-r7w8-c7bm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:26:42.190104+00:00	Debian Oval Importer	Fixing	VCID-7tdw-4nwm-gqe8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:26:20.891658+00:00	Debian Oval Importer	Fixing	VCID-s75c-hjr2-uubw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:43:17.167587+00:00	Debian Oval Importer	Fixing	VCID-apf9-z7zs-jyh7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:31:20.842186+00:00	Debian Oval Importer	Affected by	VCID-1vz6-251d-1ye7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:02:55.867373+00:00	Debian Oval Importer	Fixing	VCID-b5af-c9yc-rke7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:50:42.681591+00:00	Debian Oval Importer	Affected by	VCID-xzt6-6k5g-byap	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:33:09.076885+00:00	Debian Oval Importer	Affected by	VCID-jurp-5mrx-13ce	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:24:56.787334+00:00	Debian Oval Importer	Fixing	VCID-ge97-dnra-uygw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:39:18.174769+00:00	Debian Oval Importer	Fixing	VCID-gf19-ebyv-u3b5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:19:09.561442+00:00	Debian Oval Importer	Affected by	VCID-p5gj-xqc9-yqar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0