Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/pound@2.0-1.2
purl pkg:deb/debian/pound@2.0-1.2
Next non-vulnerable version 3.0-2
Latest non-vulnerable version 3.0-2
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-4mqa-bkha-kbaj
Aliases:
CVE-2012-4929
security update
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
VCID-9pjk-kxgp-h7hc
Aliases:
CVE-2016-10711
Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.
3.0-2
Affected by 0 other vulnerabilities.
VCID-drv6-nz1y-ffdr
Aliases:
CVE-2018-21245
Pound before 2.8 allows HTTP request smuggling, a related issue to CVE-2016-10711.
3.0-2
Affected by 0 other vulnerabilities.
VCID-e1yx-dxa6-1bba
Aliases:
CVE-2011-3389
Multiple vulnerabilities have been found in the Oracle JRE/JDK, allowing attackers to cause unspecified impact.
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
VCID-jau7-gfz8-dkfa
Aliases:
CVE-2009-3555
GHSA-f7w7-6pjc-wwm6
VU#120541
The renegotiation vulnerability in SSL protocol
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
2.7-1.3+deb9u1
Affected by 2 other vulnerabilities.
VCID-xap5-djda-2uem
Aliases:
CVE-2014-3566
Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components.
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-5dgw-xn7k-77br Pound is vulnerable to HTTP request smuggling, which could be exploited to bypass security restrictions or poison web caches. CVE-2005-3751
VCID-hy5s-zgt5-wfch Pound is vulnerable to a buffer overflow that could lead to the remote execution of arbitrary code. CVE-2005-1391

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T17:30:27.549390+00:00 Debian Oval Importer Affected by VCID-drv6-nz1y-ffdr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T13:51:09.559361+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-15T13:42:29.995305+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-15T13:26:13.123127+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.4.0
2026-04-15T13:10:34.031411+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T13:06:22.216410+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-15T12:57:17.750059+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.4.0
2026-04-11T22:43:14.713168+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:04:25.151416+00:00 Debian Oval Importer Fixing VCID-5dgw-xn7k-77br https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:54:31.268595+00:00 Debian Oval Importer Affected by VCID-e1yx-dxa6-1bba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:42:52.204596+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:17:18.844713+00:00 Debian Oval Importer Affected by VCID-9pjk-kxgp-h7hc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:07:29.941895+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:37:38.692519+00:00 Debian Oval Importer Fixing VCID-hy5s-zgt5-wfch https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:16:50.179962+00:00 Debian Oval Importer Affected by VCID-drv6-nz1y-ffdr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T13:39:49.928905+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-11T13:31:11.697868+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-11T13:14:56.476143+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.3.0
2026-04-11T12:59:18.051034+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:55:07.642952+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-11T12:45:52.769015+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.3.0
2026-04-08T22:18:08.762631+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:41:23.009594+00:00 Debian Oval Importer Fixing VCID-5dgw-xn7k-77br https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:31:53.834458+00:00 Debian Oval Importer Affected by VCID-e1yx-dxa6-1bba https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:20:44.512754+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:58:14.581405+00:00 Debian Oval Importer Affected by VCID-9pjk-kxgp-h7hc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:48:56.392962+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:20:46.989124+00:00 Debian Oval Importer Fixing VCID-hy5s-zgt5-wfch https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:05:25.429198+00:00 Debian Oval Importer Affected by VCID-drv6-nz1y-ffdr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T22:15:27.308389+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0
2026-04-07T22:06:54.228248+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0
2026-04-07T21:50:55.711235+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 38.1.0
2026-04-07T21:34:11.983227+00:00 Debian Oval Importer Affected by VCID-jau7-gfz8-dkfa https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-07T21:29:54.737430+00:00 Debian Oval Importer Affected by VCID-xap5-djda-2uem https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-03T21:59:39.744259+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.1.0
2026-04-02T13:02:15.976275+00:00 Debian Oval Importer Affected by VCID-4mqa-bkha-kbaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 38.0.0