VulnerableCode Package Details - pkg:deb/debian/ncompress@4.2.4-9.2

Search for packages

Vulnerability	Summary	Fixed by
VCID-6xz5-ra91-7qdx Aliases: CVE-2001-1413	compress and uncompress, which could be used by daemon programs, contain a buffer overflow that could lead to remote execution of arbitrary code with the rights of the daemon process.	4.2.4-15sarge2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cd15-ngyt-93he Aliases: CVE-2006-1168	A buffer underflow vulnerability has been reported in ncompress allowing for the execution of arbitrary code.	4.2.4.0-2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-vm8g-v83d-mbfm Aliases: CVE-2010-0001	This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2011. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information.	4.2.4.3-6 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-6xz5-ra91-7qdx
Aliases:
CVE-2001-1413

compress and uncompress, which could be used by daemon programs, contain a buffer overflow that could lead to remote execution of arbitrary code with the rights of the daemon process.

4.2.4-15sarge2
Affected by 2 other vulnerabilities.

VCID-cd15-ngyt-93he
Aliases:
CVE-2006-1168

A buffer underflow vulnerability has been reported in ncompress allowing for the execution of arbitrary code.

4.2.4.0-2
Affected by 1 other vulnerability.

VCID-vm8g-v83d-mbfm
Aliases:
CVE-2010-0001

This GLSA contains notification of vulnerabilities found in several Gentoo packages which have been fixed prior to January 1, 2011. The worst of these vulnerabilities could lead to local privilege escalation and remote code execution. Please see the package list and CVE identifiers below for more information.

4.2.4.3-6
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T22:56:22.502742+00:00	Debian Oval Importer	Affected by	VCID-vm8g-v83d-mbfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:51:26.487555+00:00	Debian Oval Importer	Affected by	VCID-cd15-ngyt-93he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:58:00.734267+00:00	Debian Oval Importer	Affected by	VCID-6xz5-ra91-7qdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T22:32:46.652070+00:00	Debian Oval Importer	Affected by	VCID-vm8g-v83d-mbfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:37:24.556507+00:00	Debian Oval Importer	Affected by	VCID-cd15-ngyt-93he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:44:39.494955+00:00	Debian Oval Importer	Affected by	VCID-6xz5-ra91-7qdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:08:17.799561+00:00	Debian Oval Importer	Affected by	VCID-vm8g-v83d-mbfm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:24:52.307627+00:00	Debian Oval Importer	Affected by	VCID-cd15-ngyt-93he	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:35:03.944211+00:00	Debian Oval Importer	Affected by	VCID-6xz5-ra91-7qdx	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0