{"url":"http://public2.vulnerablecode.io/api/packages/103834?format=json","purl":"pkg:deb/debian/shorewall@5.2.8-6?distro=trixie","type":"deb","namespace":"debian","name":"shorewall","version":"5.2.8-6","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.0.3a","latest_non_vulnerable_version":"5.2.8-6","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200145?format=json","vulnerability_id":"VCID-a74m-8146-qbdh","summary":"Shorewall 2.4.x before 2.4.1, 2.2.x before 2.2.5, and 2.0.x before 2.0.17, when MACLIST_TTL is greater than 0 or MACLIST_DISPOSITION is set to ACCEPT, allows remote attackers with an accepted MAC address to bypass other firewall rules or policies.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2317","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2317"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318946","reference_id":"318946","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=318946"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103835?format=json","purl":"pkg:deb/debian/shorewall@2.4.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@2.4.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103833?format=json","purl":"pkg:deb/debian/shorewall@5.2.3.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.3.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103831?format=json","purl":"pkg:deb/debian/shorewall@5.2.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103834?format=json","purl":"pkg:deb/debian/shorewall@5.2.8-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.8-6%3Fdistro=trixie"}],"aliases":["CVE-2005-2317"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a74m-8146-qbdh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/186137?format=json","vulnerability_id":"VCID-gjae-bg75-tfgr","summary":"Shorewall contains a bug in the code handling the creation of temporary\n    files and directories. This can allow a non-root user to overwrite\n    arbitrary system files.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0647","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0647"},{"reference_url":"https://security.gentoo.org/glsa/200407-07","reference_id":"GLSA-200407-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200407-07"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/103832?format=json","purl":"pkg:deb/debian/shorewall@2.0.3a?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@2.0.3a%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103833?format=json","purl":"pkg:deb/debian/shorewall@5.2.3.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.3.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103831?format=json","purl":"pkg:deb/debian/shorewall@5.2.8-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.8-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/103834?format=json","purl":"pkg:deb/debian/shorewall@5.2.8-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.8-6%3Fdistro=trixie"}],"aliases":["CVE-2004-0647"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gjae-bg75-tfgr"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/shorewall@5.2.8-6%3Fdistro=trixie"}