VulnerableCode Package Details - pkg:deb/debian/p7zip@4.58~dfsg.1-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/p7zip@4.58~dfsg.1-1

Essentials
History (33)

purl	pkg:deb/debian/p7zip@4.58~dfsg.1-1

Next non-vulnerable version	16.02+dfsg-6
Latest non-vulnerable version	16.02+transitional.1
Risk	4.1

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-8q1b-v4dz-ukd7 Aliases: CVE-2016-2334	Multiple vulnerabilities have been found in 7-Zip, the worst of which may allow execution of arbitrary code.	16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-j4uh-y3j4-5kdw Aliases: CVE-2016-9296	A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause a crash and a denial of service when decoding malformed 7z files.	16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-j6h3-hn7t-4ugj Aliases: CVE-2017-17969	security update	9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-6 Affected by 0 other vulnerabilities.
VCID-xnza-jsw8-pbcy Aliases: CVE-2015-1038	security update	9.20.1~dfsg.1-4+deb7u1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-yx2s-gkz7-nyb2 Aliases: CVE-2016-2335	Multiple vulnerabilities have been found in 7-Zip, the worst of which may allow execution of arbitrary code.	9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-f41j-n5ph-gkb9	Unspecified vulnerability in 7-zip before 4.5.7 has unknown impact and remote attack vectors, as demonstrated by the PROTOS GENOME test suite for Archive Formats (c10).	CVE-2008-6536

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:37:12.588941+00:00	Debian Oval Importer	Fixing	VCID-f41j-n5ph-gkb9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:06:43.489236+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:22:13.053151+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:57:06.824016+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:28:06.358860+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:50:43.825749+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:31:40.392425+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:01:44.714530+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:48:42.354306+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:29:22.750323+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:03:27.064086+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-12T00:10:12.968951+00:00	Debian Oval Importer	Fixing	VCID-f41j-n5ph-gkb9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:40:43.886511+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:59:35.672354+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:37:28.556464+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:14:36.062217+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:38:23.318614+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:19:58.216994+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T13:50:21.870825+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T13:37:24.933259+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T13:18:04.355664+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T12:52:54.439079+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-08T23:41:18.493175+00:00	Debian Oval Importer	Fixing	VCID-f41j-n5ph-gkb9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:13:13.333642+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:36:45.504792+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:17:33.529659+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:03:17.348821+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:32:20.235392+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:53:38.665741+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:25:35.477068+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T22:13:00.718702+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T21:54:02.777711+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T21:27:36.593793+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0