{"url":"http://public2.vulnerablecode.io/api/packages/100036?format=json","purl":"pkg:deb/debian/pound@2.8-2?distro=trixie","type":"deb","namespace":"debian","name":"pound","version":"2.8-2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"3.0-2","latest_non_vulnerable_version":"4.23-2","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/206401?format=json","vulnerability_id":"VCID-3j2d-xnd8-4kc4","summary":"Pound before 2.8 allows HTTP request smuggling, a related issue to CVE-2016-10711.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21245","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-21245"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/100036?format=json","purl":"pkg:deb/debian/pound@2.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@2.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100026?format=json","purl":"pkg:deb/debian/pound@3.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@3.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100029?format=json","purl":"pkg:deb/debian/pound@4.16-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@4.16-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100028?format=json","purl":"pkg:deb/debian/pound@4.23-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@4.23-2%3Fdistro=trixie"}],"aliases":["CVE-2018-21245"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3j2d-xnd8-4kc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/204291?format=json","vulnerability_id":"VCID-gwc2-yck1-2fe4","summary":"Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10711","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10711"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888786","reference_id":"888786","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888786"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/100036?format=json","purl":"pkg:deb/debian/pound@2.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@2.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100026?format=json","purl":"pkg:deb/debian/pound@3.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@3.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100029?format=json","purl":"pkg:deb/debian/pound@4.16-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@4.16-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/100028?format=json","purl":"pkg:deb/debian/pound@4.23-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@4.23-2%3Fdistro=trixie"}],"aliases":["CVE-2016-10711"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gwc2-yck1-2fe4"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pound@2.8-2%3Fdistro=trixie"}