{"url":"http://public2.vulnerablecode.io/api/packages/104793?format=json","purl":"pkg:deb/debian/svgsalamander@1.1.1%2Bdfsg-3?distro=trixie","type":"deb","namespace":"debian","name":"svgsalamander","version":"1.1.1+dfsg-3","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.1.1+dfsg-2","latest_non_vulnerable_version":"1.1.4-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/184486?format=json","vulnerability_id":"VCID-ae3v-jgtb-wqgb","summary":"A SSRF may allow remote attackers to forge illegitimate requests.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5617","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5617"},{"reference_url":"https://github.com/blackears/svgSalamander/issues/11","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/blackears/svgSalamander/issues/11"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3V7RIIO3HO4RNDBN2PARLIDAL3RPV2OX/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3V7RIIO3HO4RNDBN2PARLIDAL3RPV2OX/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPUOI6NCEB6H6YHKN7M4V3CAQD63NXAU/","reference_id":"","reference_type":"","scores":[],"url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UPUOI6NCEB6H6YHKN7M4V3CAQD63NXAU/"},{"reference_url":"http://www.debian.org/security/2017/dsa-3781","reference_id":"","reference_type":"","scores":[],"url":"http://www.debian.org/security/2017/dsa-3781"},{"reference_url":"http://www.openwall.com/lists/oss-security/2017/01/27/3","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2017/01/27/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2017/01/29/2","reference_id":"","reference_type":"","scores":[],"url":"http://www.openwall.com/lists/oss-security/2017/01/29/2"},{"reference_url":"http://www.securityfocus.com/bid/95871","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/95871"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853134","reference_id":"853134","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853134"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5617","reference_id":"CVE-2017-5617","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2017-5617"},{"reference_url":"https://github.com/advisories/GHSA-h3wv-47xm-4mg6","reference_id":"GHSA-h3wv-47xm-4mg6","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-h3wv-47xm-4mg6"},{"reference_url":"https://security.gentoo.org/glsa/202003-11","reference_id":"GLSA-202003-11","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202003-11"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/104792?format=json","purl":"pkg:deb/debian/svgsalamander@1.1.1%2Bdfsg-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/svgsalamander@1.1.1%252Bdfsg-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/104793?format=json","purl":"pkg:deb/debian/svgsalamander@1.1.1%2Bdfsg-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/svgsalamander@1.1.1%252Bdfsg-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/104791?format=json","purl":"pkg:deb/debian/svgsalamander@1.1.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/svgsalamander@1.1.4-1%3Fdistro=trixie"}],"aliases":["CVE-2017-5617","GHSA-h3wv-47xm-4mg6"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ae3v-jgtb-wqgb"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/svgsalamander@1.1.1%252Bdfsg-3%3Fdistro=trixie"}