{"url":"http://public2.vulnerablecode.io/api/packages/115371?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie","type":"deb","namespace":"debian","name":"lpr","version":"1:2008.05.17.3+nmu3.1","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1:2008.05.17.4","latest_non_vulnerable_version":"1:2008.05.17.4","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92441?format=json","vulnerability_id":"VCID-a9qm-qv9q-8bcu","summary":"Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via \"maths overflow errors\" such as (1) integer signedness errors or (2) integer overflows, which lead to buffer overflows.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0146.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2003-0146.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0146","reference_id":"","reference_type":"","scores":[{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88455","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88473","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88476","published_at":"2026-06-06T12:55:00Z"},{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88474","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88475","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03882","scoring_system":"epss","scoring_elements":"0.88491","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0146"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0146","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0146"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616985","reference_id":"1616985","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616985"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:060","reference_id":"RHSA-2003:060","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:060"},{"reference_url":"https://access.redhat.com/errata/RHSA-2003:061","reference_id":"RHSA-2003:061","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2003:061"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/115372?format=json","purl":"pkg:deb/debian/lpr@1:2000.05.07-4.20?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2000.05.07-4.20%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115369?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115367?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115371?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115370?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.4%3Fdistro=trixie"}],"aliases":["CVE-2003-0146"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a9qm-qv9q-8bcu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92440?format=json","vulnerability_id":"VCID-u49n-gzbk-3fhw","summary":"Buffer overflow in the lprm command in the lprold lpr package on SuSE 7.1 through 7.3, OpenBSD 3.2 and earlier, and possibly other operating systems, allows local users to gain root privileges via long command line arguments such as (1) request ID or (2) user name.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0144","reference_id":"","reference_type":"","scores":[{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.4842","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48482","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48489","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.4847","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48441","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48453","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0144"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0144","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0144"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22331.c","reference_id":"CVE-2003-0144;OSVDB-7549","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22331.c"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22332.c","reference_id":"CVE-2003-0144;OSVDB-7549","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/22332.c"},{"reference_url":"https://www.securityfocus.com/bid/7025/info","reference_id":"CVE-2003-0144;OSVDB-7549","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/7025/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/115372?format=json","purl":"pkg:deb/debian/lpr@1:2000.05.07-4.20?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2000.05.07-4.20%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115369?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115367?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115371?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115370?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.4%3Fdistro=trixie"}],"aliases":["CVE-2003-0144"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u49n-gzbk-3fhw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92439?format=json","vulnerability_id":"VCID-xxcc-fmvu-jydx","summary":"The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2000-1221.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2000-1221.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2000-1221","reference_id":"","reference_type":"","scores":[{"value":"0.10859","scoring_system":"epss","scoring_elements":"0.9351","published_at":"2026-06-04T12:55:00Z"},{"value":"0.10859","scoring_system":"epss","scoring_elements":"0.93521","published_at":"2026-06-06T12:55:00Z"},{"value":"0.10859","scoring_system":"epss","scoring_elements":"0.93519","published_at":"2026-06-07T12:55:00Z"},{"value":"0.10859","scoring_system":"epss","scoring_elements":"0.93518","published_at":"2026-06-08T12:55:00Z"},{"value":"0.10859","scoring_system":"epss","scoring_elements":"0.93525","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2000-1221"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1221","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1221"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616554","reference_id":"1616554","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616554"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/19722.txt","reference_id":"CVE-2000-1221;OSVDB-17208","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/remote/19722.txt"},{"reference_url":"https://www.securityfocus.com/bid/927/info","reference_id":"CVE-2000-1221;OSVDB-17208","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/927/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/115368?format=json","purl":"pkg:deb/debian/lpr@1:0.48-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:0.48-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115369?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115367?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115371?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115370?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.4%3Fdistro=trixie"}],"aliases":["CVE-2000-1221"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xxcc-fmvu-jydx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92438?format=json","vulnerability_id":"VCID-zffe-u5a3-a7d8","summary":"The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2000-1220.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2000-1220.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2000-1220","reference_id":"","reference_type":"","scores":[{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87101","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87124","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87121","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87116","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87112","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0313","scoring_system":"epss","scoring_elements":"0.87123","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2000-1220"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1220","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1220"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616553","reference_id":"1616553","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1616553"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/325.c","reference_id":"OSVDB-17207;CVE-2000-1220","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/325.c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/115368?format=json","purl":"pkg:deb/debian/lpr@1:0.48-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:0.48-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115369?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115367?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115371?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.3%2Bnmu3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/115370?format=json","purl":"pkg:deb/debian/lpr@1:2008.05.17.4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.4%3Fdistro=trixie"}],"aliases":["CVE-2000-1220"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zffe-u5a3-a7d8"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/lpr@1:2008.05.17.3%252Bnmu3.1%3Fdistro=trixie"}