VulnerableCode Package Details - pkg:deb/debian/nettle@1.12-2

Search for packages

Vulnerability	Summary	Fixed by
VCID-4faz-8fkq-1yey Aliases: CVE-2015-8803	nettle: secp256 calculation bug	3.3-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-5q33-ye8y-ruee Aliases: CVE-2021-20305	A vulnerability in Nettle could lead to a Denial of Service condition.	3.4.1-1+deb10u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 3.7.3-1 Affected by 0 other vulnerabilities.
VCID-9a4v-x2jy-27br Aliases: CVE-2018-16869	nettle: Leaky data conversion exposing a manager oracle	3.4.1-1+deb10u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-bzux-re4q-s7hu Aliases: CVE-2021-3580	Improper Input Validation A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.	3.4.1-1+deb10u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 3.7.3-1 Affected by 0 other vulnerabilities.
VCID-g7x1-qtff-8qb6 Aliases: CVE-2016-6489	A cache-related side channel vulnerability was found in nettle which might allow an attacker to obtain sensitive information.	3.3-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ka7g-uw8s-7fdv Aliases: CVE-2015-8805	nettle: secp256 calculation bug	3.3-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-py38-zkxu-u3ey Aliases: CVE-2015-8804	nettle: miscalculations on secp384 curve	3.3-1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-4faz-8fkq-1yey
Aliases:
CVE-2015-8803

nettle: secp256 calculation bug

3.3-1
Affected by 3 other vulnerabilities.

VCID-5q33-ye8y-ruee
Aliases:
CVE-2021-20305

A vulnerability in Nettle could lead to a Denial of Service condition.

3.4.1-1+deb10u1
Affected by 2 other vulnerabilities.

3.7.3-1
Affected by 0 other vulnerabilities.

VCID-9a4v-x2jy-27br
Aliases:
CVE-2018-16869

nettle: Leaky data conversion exposing a manager oracle

3.4.1-1+deb10u1
Affected by 2 other vulnerabilities.

VCID-bzux-re4q-s7hu
Aliases:
CVE-2021-3580

Improper Input Validation A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An attacker could use this flaw to provide a manipulated ciphertext leading to application crash and denial of service.

3.4.1-1+deb10u1
Affected by 2 other vulnerabilities.

3.7.3-1
Affected by 0 other vulnerabilities.

VCID-g7x1-qtff-8qb6
Aliases:
CVE-2016-6489

A cache-related side channel vulnerability was found in nettle which might allow an attacker to obtain sensitive information.

3.3-1
Affected by 3 other vulnerabilities.

VCID-ka7g-uw8s-7fdv
Aliases:
CVE-2015-8805

nettle: secp256 calculation bug

3.3-1
Affected by 3 other vulnerabilities.

VCID-py38-zkxu-u3ey
Aliases:
CVE-2015-8804

nettle: miscalculations on secp384 curve

3.3-1
Affected by 3 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T22:33:46.530024+00:00	Debian Oval Importer	Affected by	VCID-py38-zkxu-u3ey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:56:28.717555+00:00	Debian Oval Importer	Affected by	VCID-ka7g-uw8s-7fdv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:13:31.623439+00:00	Debian Oval Importer	Affected by	VCID-g7x1-qtff-8qb6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:39:22.419223+00:00	Debian Oval Importer	Affected by	VCID-9a4v-x2jy-27br	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:38:15.629092+00:00	Debian Oval Importer	Affected by	VCID-4faz-8fkq-1yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:25:19.811591+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:44:05.005560+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:02:21.513827+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:54:22.048329+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-11T22:10:41.547444+00:00	Debian Oval Importer	Affected by	VCID-py38-zkxu-u3ey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:34:49.391029+00:00	Debian Oval Importer	Affected by	VCID-ka7g-uw8s-7fdv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:53:20.219208+00:00	Debian Oval Importer	Affected by	VCID-g7x1-qtff-8qb6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:21:59.704381+00:00	Debian Oval Importer	Affected by	VCID-9a4v-x2jy-27br	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T18:22:49.091985+00:00	Debian Oval Importer	Affected by	VCID-4faz-8fkq-1yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:12:34.017878+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:31:50.661774+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:50:39.545172+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:42:37.803349+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-08T21:47:11.736312+00:00	Debian Oval Importer	Affected by	VCID-py38-zkxu-u3ey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:13:00.420291+00:00	Debian Oval Importer	Affected by	VCID-ka7g-uw8s-7fdv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:32:49.681594+00:00	Debian Oval Importer	Affected by	VCID-g7x1-qtff-8qb6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:05:42.379161+00:00	Debian Oval Importer	Affected by	VCID-9a4v-x2jy-27br	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:08:47.329080+00:00	Debian Oval Importer	Affected by	VCID-4faz-8fkq-1yey	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:04:58.376723+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:26:02.528061+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:23:17.106791+00:00	Debian Oval Importer	Affected by	VCID-5q33-ye8y-ruee	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:15:34.518445+00:00	Debian Oval Importer	Affected by	VCID-bzux-re4q-s7hu	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0