Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/thrift@0.11.0-4
purl pkg:deb/debian/thrift@0.11.0-4
Next non-vulnerable version 0.17.0-2
Latest non-vulnerable version 0.17.0-2
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-6r6v-dxqb-3fe1
Aliases:
CVE-2019-0210
GHSA-jq7p-26h5-w78r
Out-of-bounds read in Apache Thrift In Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJSONProtocol or TSimpleJSONProtocol may panic when feed with invalid input data.
0.13.0-6
Affected by 1 other vulnerability.
VCID-y1ca-jr94-kfb4
Aliases:
CVE-2019-0205
GHSA-rj7p-rfgp-852x
Multiple vulnerabilities have been found in Apache Thrift, the worst of which could result in a Denial of Service condition.
0.13.0-6
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-15T21:44:47.781106+00:00 Debian Oval Importer Affected by VCID-y1ca-jr94-kfb4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:14:15.608732+00:00 Debian Oval Importer Affected by VCID-6r6v-dxqb-3fe1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T21:23:28.557054+00:00 Debian Oval Importer Affected by VCID-y1ca-jr94-kfb4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:54:02.529203+00:00 Debian Oval Importer Affected by VCID-6r6v-dxqb-3fe1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T21:02:05.055575+00:00 Debian Oval Importer Affected by VCID-y1ca-jr94-kfb4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:33:30.631369+00:00 Debian Oval Importer Affected by VCID-6r6v-dxqb-3fe1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0