VulnerableCode Package Details - pkg:deb/debian/netsurf@1.2-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/netsurf@1.2-1

Essentials
History (18)

purl	pkg:deb/debian/netsurf@1.2-1

Next non-vulnerable version	3.6-3.1
Latest non-vulnerable version	3.6-3.1
Risk	7.8

Vulnerabilities affecting this package (6)

Vulnerability	Summary	Fixed by
VCID-du81-6y36-tucd Aliases: CVE-2015-7506	The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-g13j-r71a-ubfb Aliases: CVE-2015-7508	Heap-based buffer overflow in the bmp_decode_rle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-mxk3-5172-nqhh Aliases: CVE-2012-0844	Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar.	2.9-2 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-t8zz-gpdg-4bbm Aliases: CVE-2015-7505	Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-wvuu-zw8y-17hg Aliases: CVE-2015-7507	libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-xap5-djda-2uem Aliases: CVE-2014-3566	Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components.	3.6-3.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:42:00.080880+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:41:07.485942+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:49:36.772653+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:02:03.412911+00:00	Debian Oval Importer	Affected by	VCID-mxk3-5172-nqhh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:04:23.966193+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:31:37.356534+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:14:49.047735+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:13:58.356973+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:26:06.591992+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:46:06.482273+00:00	Debian Oval Importer	Affected by	VCID-mxk3-5172-nqhh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:50:06.375900+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:18:42.199072+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:45:46.707979+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:44:57.485903+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:01:57.222092+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:31:07.442967+00:00	Debian Oval Importer	Affected by	VCID-mxk3-5172-nqhh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:37:15.631845+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:10:44.968718+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0