VulnerableCode Package Details - pkg:deb/debian/netsurf@3.11-2?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-du81-6y36-tucd	The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.	CVE-2015-7506
VCID-g13j-r71a-ubfb	Heap-based buffer overflow in the bmp_decode_rle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file.	CVE-2015-7508
VCID-mxk3-5172-nqhh	Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar.	CVE-2012-0844
VCID-t8zz-gpdg-4bbm	Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.	CVE-2015-7505
VCID-wvuu-zw8y-17hg	libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.	CVE-2015-7507
VCID-xap5-djda-2uem	Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components.	CVE-2014-3566

Vulnerability

Summary

Aliases

VCID-du81-6y36-tucd

The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.

CVE-2015-7506

VCID-g13j-r71a-ubfb

Heap-based buffer overflow in the bmp_decode_rle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file.

CVE-2015-7508

VCID-mxk3-5172-nqhh

Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar.

CVE-2012-0844

VCID-t8zz-gpdg-4bbm

Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.

CVE-2015-7505

VCID-wvuu-zw8y-17hg

libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.

CVE-2015-7507

VCID-xap5-djda-2uem

Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components.

CVE-2014-3566

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:29:37.824683+00:00	Debian Importer	Fixing	VCID-xap5-djda-2uem	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:23:29.184071+00:00	Debian Importer	Fixing	VCID-du81-6y36-tucd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:23:19.564780+00:00	Debian Importer	Fixing	VCID-wvuu-zw8y-17hg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:41:07.931958+00:00	Debian Importer	Fixing	VCID-t8zz-gpdg-4bbm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:54:33.203180+00:00	Debian Importer	Fixing	VCID-g13j-r71a-ubfb	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:53:53.839910+00:00	Debian Importer	Fixing	VCID-mxk3-5172-nqhh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:18:42.969735+00:00	Debian Importer	Fixing	VCID-xap5-djda-2uem	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:45:29.353001+00:00	Debian Importer	Fixing	VCID-du81-6y36-tucd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:45:21.685670+00:00	Debian Importer	Fixing	VCID-wvuu-zw8y-17hg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:13:42.677175+00:00	Debian Importer	Fixing	VCID-t8zz-gpdg-4bbm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:37:51.426505+00:00	Debian Importer	Fixing	VCID-g13j-r71a-ubfb	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:58:15.855993+00:00	Debian Importer	Fixing	VCID-mxk3-5172-nqhh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:46:52.495810+00:00	Debian Importer	Fixing	VCID-g13j-r71a-ubfb	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:52.456171+00:00	Debian Importer	Fixing	VCID-wvuu-zw8y-17hg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:52.416627+00:00	Debian Importer	Fixing	VCID-du81-6y36-tucd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:52.376793+00:00	Debian Importer	Fixing	VCID-t8zz-gpdg-4bbm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:52.334901+00:00	Debian Importer	Fixing	VCID-xap5-djda-2uem	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:46:52.300006+00:00	Debian Importer	Fixing	VCID-mxk3-5172-nqhh	https://security-tracker.debian.org/tracker/data/json	38.1.0