VulnerableCode Package Details - pkg:rpm/redhat/libappstream-glib@0.7.8-2?arch=el7

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/libappstream-glib@0.7.8-2?arch=el7

Essentials
History (15)

purl	pkg:rpm/redhat/libappstream-glib@0.7.8-2?arch=el7

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	10.0

Vulnerabilities affecting this package (15)

Vulnerability	Summary	Fixed by
VCID-13hw-kece-pyf7 Aliases: CVE-2018-4200	Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution.	There are no reported fixed by versions.
VCID-1u61-d4ch-eya4 Aliases: CVE-2018-4204	Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution.	There are no reported fixed by versions.
VCID-29b3-s5n9-5fd8 Aliases: CVE-2018-13988	poppler: out of bounds read in pdfunite	There are no reported fixed by versions.
VCID-9vuw-57ex-k7ez Aliases: CVE-2018-12910	security update	There are no reported fixed by versions.
VCID-kre4-9v6u-3ked Aliases: CVE-2018-10768	poppler: NULL pointer dereference in Annot.h:AnnotPath::getCoordsLength() allows for denial of service via crafted PDF	There are no reported fixed by versions.
VCID-p9ht-pahu-wbea Aliases: CVE-2018-14036	accountsservice: insufficient path check in user_change_icon_file_authorized_cb() in user.c	There are no reported fixed by versions.
VCID-qjj9-dejh-vuaq Aliases: CVE-2017-18267	poppler: Infinite recursion in fofi/FoFiType1C.cc:FoFiType1C::cvtGlyph() function allows denial of service	There are no reported fixed by versions.
VCID-qws2-p3ru-cbfw Aliases: CVE-2018-10733	libgxps: heap based buffer over read in ft_font_face_hash function of gxps-fonts.c	There are no reported fixed by versions.
VCID-tsw4-kqbc-kqf1 Aliases: CVE-2015-9381	freetype: a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c leading to crash	There are no reported fixed by versions.
VCID-v9s7-7by8-dyeg Aliases: CVE-2018-11712	Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution.	There are no reported fixed by versions.
VCID-vvu1-fbux-z7bn Aliases: CVE-2018-11713	Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution.	There are no reported fixed by versions.
VCID-x1zs-swgf-efd6 Aliases: CVE-2018-4121	Multiple vulnerabilities have been found in WebKitGTK+, the worst of which may lead to arbitrary code execution.	There are no reported fixed by versions.
VCID-xddg-3n6n-t7gk Aliases: CVE-2018-10767	libgxps: Stack-based buffer overflow in calling glib in gxps_images_guess_content_type of gcontenttype.c	There are no reported fixed by versions.
VCID-y1sm-7uec-1bc5 Aliases: CVE-2017-2862	security update	There are no reported fixed by versions.
VCID-ysfs-xxjz-vbep Aliases: CVE-2015-9382	freetype: mishandling ps_parser_skip_PS_token in an FT_New_Memory_Face operation in skip_comment, psaux/psobjs.c, leads to a buffer over-read	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T14:29:00.325539+00:00	RedHat Importer	Affected by	VCID-y1sm-7uec-1bc5	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2862.json	38.0.0
2026-04-01T14:27:29.245087+00:00	RedHat Importer	Affected by	VCID-qjj9-dejh-vuaq	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18267.json	38.0.0
2026-04-01T14:25:06.008104+00:00	RedHat Importer	Affected by	VCID-qws2-p3ru-cbfw	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10733.json	38.0.0
2026-04-01T14:25:04.853271+00:00	RedHat Importer	Affected by	VCID-xddg-3n6n-t7gk	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10767.json	38.0.0
2026-04-01T14:25:03.691686+00:00	RedHat Importer	Affected by	VCID-kre4-9v6u-3ked	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10768.json	38.0.0
2026-04-01T14:25:02.521715+00:00	RedHat Importer	Affected by	VCID-x1zs-swgf-efd6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-4121.json	38.0.0
2026-04-01T14:25:01.367277+00:00	RedHat Importer	Affected by	VCID-13hw-kece-pyf7	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-4200.json	38.0.0
2026-04-01T14:24:59.836140+00:00	RedHat Importer	Affected by	VCID-1u61-d4ch-eya4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-4204.json	38.0.0
2026-04-01T14:24:29.030927+00:00	RedHat Importer	Affected by	VCID-v9s7-7by8-dyeg	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11712.json	38.0.0
2026-04-01T14:24:26.847040+00:00	RedHat Importer	Affected by	VCID-vvu1-fbux-z7bn	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11713.json	38.0.0
2026-04-01T14:23:33.091316+00:00	RedHat Importer	Affected by	VCID-9vuw-57ex-k7ez	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12910.json	38.0.0
2026-04-01T14:23:28.199271+00:00	RedHat Importer	Affected by	VCID-p9ht-pahu-wbea	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14036.json	38.0.0
2026-04-01T14:23:04.095084+00:00	RedHat Importer	Affected by	VCID-29b3-s5n9-5fd8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-13988.json	38.0.0
2026-04-01T14:16:35.773700+00:00	RedHat Importer	Affected by	VCID-ysfs-xxjz-vbep	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-9382.json	38.0.0
2026-04-01T14:16:15.824890+00:00	RedHat Importer	Affected by	VCID-tsw4-kqbc-kqf1	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-9381.json	38.0.0