VulnerableCode Package Details - pkg:deb/debian/netsurf@3.2%2Bdfsg-2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/netsurf@3.2%2Bdfsg-2

Essentials
History (15)

purl	pkg:deb/debian/netsurf@3.2%2Bdfsg-2

Next non-vulnerable version	3.6-3.1
Latest non-vulnerable version	3.6-3.1
Risk	7.8

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-du81-6y36-tucd Aliases: CVE-2015-7506	The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-g13j-r71a-ubfb Aliases: CVE-2015-7508	Heap-based buffer overflow in the bmp_decode_rle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-t8zz-gpdg-4bbm Aliases: CVE-2015-7505	Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LZW stream in a GIF file.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-wvuu-zw8y-17hg Aliases: CVE-2015-7507	libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a crafted color table to the (1) bmp_decode_rgb or (2) bmp_decode_rle function.	3.6-3.1 Affected by 0 other vulnerabilities.
VCID-xap5-djda-2uem Aliases: CVE-2014-3566	Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components.	3.6-3.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:42:00.087681+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:41:07.493468+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:49:36.776032+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:04:23.972974+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:31:37.363126+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:14:49.051550+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-12T00:13:58.364204+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:26:06.599707+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:50:06.384131+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:18:42.206996+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:45:46.716109+00:00	Debian Oval Importer	Affected by	VCID-du81-6y36-tucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:44:57.494352+00:00	Debian Oval Importer	Affected by	VCID-xap5-djda-2uem	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:01:57.231027+00:00	Debian Oval Importer	Affected by	VCID-wvuu-zw8y-17hg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:37:15.636960+00:00	Debian Oval Importer	Affected by	VCID-t8zz-gpdg-4bbm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:10:44.979643+00:00	Debian Oval Importer	Affected by	VCID-g13j-r71a-ubfb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0