{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","type":"deb","namespace":"debian","name":"xemacs21-packages","version":"2009.02.17.dfsg.3-3","qualifiers":{"distro":"sid"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0","latest_non_vulnerable_version":"2009.02.17.dfsg.3-3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/180475?format=json","vulnerability_id":"VCID-htub-77v8-c7f2","summary":"Two vulnerabilities were found in GNU Emacs, possibly leading to\n    user-assisted execution of arbitrary code. One also affects edit-utils in\n    XEmacs.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2142","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2142"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480886","reference_id":"480886","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=480886"},{"reference_url":"https://security.gentoo.org/glsa/200902-06","reference_id":"GLSA-200902-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200902-06"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107863?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2008-2142"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-htub-77v8-c7f2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219296?format=json","vulnerability_id":"VCID-txrm-zmuw-tbdk","summary":"lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.","references":[],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3424"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-txrm-zmuw-tbdk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219294?format=json","vulnerability_id":"VCID-vbju-9cs5-nkhe","summary":"lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/.","references":[],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3422"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vbju-9cs5-nkhe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/219295?format=json","vulnerability_id":"VCID-w54q-5j65-vqca","summary":"lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file.","references":[],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/107866?format=json","purl":"pkg:deb/debian/xemacs21-packages@0?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@0%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107864?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.2-5%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107862?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-1%3Fdistro=sid"},{"url":"http://public2.vulnerablecode.io/api/packages/107865?format=json","purl":"pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3?distro=sid","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}],"aliases":["CVE-2014-3423"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w54q-5j65-vqca"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xemacs21-packages@2009.02.17.dfsg.3-3%3Fdistro=sid"}