Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/poco@1.9.0-5
purl pkg:deb/debian/poco@1.9.0-5
Next non-vulnerable version 1.14.2-6
Latest non-vulnerable version 1.14.2-6
Risk 4.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-2yhr-1v3n-p7a4
Aliases:
CVE-2023-52389
Integer Overflow or Wraparound UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer overflow because Poco::UTF32Encoding::convert() and Poco::UTF32::queryConvert() may return a negative integer if a UTF-32 byte sequence evaluates to a value of 0x80000000 or higher. This is fixed in 1.11.8p2, 1.12.5p2, and 1.13.0.
1.11.0-3+deb12u1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-9tkd-v4dq-2bd4 security update CVE-2017-1000472

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T23:46:31.020848+00:00 Debian Oval Importer Fixing VCID-9tkd-v4dq-2bd4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:50:12.449823+00:00 Debian Oval Importer Affected by VCID-2yhr-1v3n-p7a4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T23:21:07.358469+00:00 Debian Oval Importer Fixing VCID-9tkd-v4dq-2bd4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:36:13.977421+00:00 Debian Oval Importer Affected by VCID-2yhr-1v3n-p7a4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T22:54:25.193480+00:00 Debian Oval Importer Fixing VCID-9tkd-v4dq-2bd4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:23:44.990956+00:00 Debian Oval Importer Affected by VCID-2yhr-1v3n-p7a4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0