VulnerableCode Package Details - pkg:deb/debian/p7zip@9.20.1~dfsg.1-4%2Bdeb7u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/p7zip@9.20.1~dfsg.1-4%2Bdeb7u1

Essentials
History (30)

purl	pkg:deb/debian/p7zip@9.20.1~dfsg.1-4%2Bdeb7u1

Next non-vulnerable version	16.02+dfsg-6
Latest non-vulnerable version	16.02+transitional.1
Risk	4.1

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-8q1b-v4dz-ukd7 Aliases: CVE-2016-2334	Multiple vulnerabilities have been found in 7-Zip, the worst of which may allow execution of arbitrary code.	16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-j4uh-y3j4-5kdw Aliases: CVE-2016-9296	A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause a crash and a denial of service when decoding malformed 7z files.	16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-j6h3-hn7t-4ugj Aliases: CVE-2017-17969	security update	9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-6 Affected by 0 other vulnerabilities.
VCID-xnza-jsw8-pbcy Aliases: CVE-2015-1038	security update	9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-yx2s-gkz7-nyb2 Aliases: CVE-2016-2335	Multiple vulnerabilities have been found in 7-Zip, the worst of which may allow execution of arbitrary code.	9.20.1~dfsg.1-4.1+deb8u3 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 16.02+dfsg-3+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-xnza-jsw8-pbcy	security update	CVE-2015-1038

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:06:43.500322+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:22:13.063588+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:57:06.834385+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:28:06.368946+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:50:43.836216+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:31:40.402405+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:01:44.724697+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:48:42.364059+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:29:22.760856+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.4.0
2026-04-15T13:03:27.075087+00:00	Debian Oval Importer	Fixing	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-11T23:40:43.898218+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:59:35.683911+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:37:28.568080+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:14:36.074642+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:38:23.329988+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:19:58.229550+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T13:50:21.884141+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T13:37:24.944900+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T13:18:04.367435+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.3.0
2026-04-11T12:52:54.451120+00:00	Debian Oval Importer	Fixing	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-08T23:13:13.347607+00:00	Debian Oval Importer	Affected by	VCID-8q1b-v4dz-ukd7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:36:45.517320+00:00	Debian Oval Importer	Affected by	VCID-j4uh-y3j4-5kdw	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:17:33.545185+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:03:17.360862+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:32:20.251298+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:53:38.676866+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:25:35.482690+00:00	Debian Oval Importer	Affected by	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T22:13:00.748861+00:00	Debian Oval Importer	Affected by	VCID-yx2s-gkz7-nyb2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T21:54:02.791180+00:00	Debian Oval Importer	Affected by	VCID-j6h3-hn7t-4ugj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	38.1.0
2026-04-07T21:27:36.610314+00:00	Debian Oval Importer	Fixing	VCID-xnza-jsw8-pbcy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0