Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
Typedeb
Namespacedebian
Namemesa
Version22.3.6-1+deb12u1
Qualifiers
distro trixie
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version26.0.1-1
Latest_non_vulnerable_version26.0.8-1
Affected_by_vulnerabilities
0
url VCID-ykaj-zaqe-s7dm
vulnerability_id VCID-ykaj-zaqe-s7dm
summary In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party, and is then used for alloca.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-40393
reference_id
reference_type
scores
0
value 0.00057
scoring_system epss
scoring_elements 0.18022
published_at 2026-06-09T12:55:00Z
1
value 0.00057
scoring_system epss
scoring_elements 0.18117
published_at 2026-06-05T12:55:00Z
2
value 0.00057
scoring_system epss
scoring_elements 0.18118
published_at 2026-06-06T12:55:00Z
3
value 0.00057
scoring_system epss
scoring_elements 0.1808
published_at 2026-06-07T12:55:00Z
4
value 0.00057
scoring_system epss
scoring_elements 0.18005
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-40393
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40393
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-40393
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://lists.freedesktop.org/archives/mesa-dev/2026-February/226597.html
reference_id 226597.html
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T15:46:57Z/
url https://lists.freedesktop.org/archives/mesa-dev/2026-February/226597.html
4
reference_url https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/39866
reference_id 39866
reference_type
scores
0
value 8.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-13T15:46:57Z/
url https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/39866
fixed_packages
0
url pkg:deb/debian/mesa@26.0.1-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.1-1%3Fdistro=trixie
1
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2026-40393
risk_score 2.0
exploitability 0.5
weighted_severity 4.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ykaj-zaqe-s7dm
Fixing_vulnerabilities
0
url VCID-8tgy-vuu2-fkgd
vulnerability_id VCID-8tgy-vuu2-fkgd
summary The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d graphics that trigger an out-of-bounds array access, related to the fs_visitor::remove_dead_constants function. NOTE: this issue might be related to CVE-2013-0796.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1872.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1872.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1872
reference_id
reference_type
scores
0
value 0.01134
scoring_system epss
scoring_elements 0.78696
published_at 2026-06-04T12:55:00Z
1
value 0.01134
scoring_system epss
scoring_elements 0.78722
published_at 2026-06-05T12:55:00Z
2
value 0.01134
scoring_system epss
scoring_elements 0.78729
published_at 2026-06-06T12:55:00Z
3
value 0.01134
scoring_system epss
scoring_elements 0.7872
published_at 2026-06-07T12:55:00Z
4
value 0.01134
scoring_system epss
scoring_elements 0.78709
published_at 2026-06-08T12:55:00Z
5
value 0.01134
scoring_system epss
scoring_elements 0.78727
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1872
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1872
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1872
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=923584
reference_id 923584
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=923584
4
reference_url https://security.gentoo.org/glsa/201404-06
reference_id GLSA-201404-06
reference_type
scores
url https://security.gentoo.org/glsa/201404-06
5
reference_url https://access.redhat.com/errata/RHSA-2013:0897
reference_id RHSA-2013:0897
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0897
6
reference_url https://usn.ubuntu.com/1888-1/
reference_id USN-1888-1
reference_type
scores
url https://usn.ubuntu.com/1888-1/
fixed_packages
0
url pkg:deb/debian/mesa@8.0.5-7?distro=trixie
purl pkg:deb/debian/mesa@8.0.5-7?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@8.0.5-7%3Fdistro=trixie
1
url pkg:deb/debian/mesa@20.3.5-1?distro=trixie
purl pkg:deb/debian/mesa@20.3.5-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@20.3.5-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mesa@25.0.7-2?distro=trixie
purl pkg:deb/debian/mesa@25.0.7-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@25.0.7-2%3Fdistro=trixie
4
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
5
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2013-1872
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8tgy-vuu2-fkgd
1
url VCID-bv42-b48f-9faq
vulnerability_id VCID-bv42-b48f-9faq
summary Mesa, as used in Google Chrome before 21.0.1183.0 on the Acer AC700, Cr-48, and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, allows remote attackers to execute arbitrary code via unspecified vectors that trigger an "array overflow."
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2864.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2864.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2864
reference_id
reference_type
scores
0
value 0.05704
scoring_system epss
scoring_elements 0.90575
published_at 2026-06-04T12:55:00Z
1
value 0.05704
scoring_system epss
scoring_elements 0.90589
published_at 2026-06-05T12:55:00Z
2
value 0.05704
scoring_system epss
scoring_elements 0.9059
published_at 2026-06-06T12:55:00Z
3
value 0.05704
scoring_system epss
scoring_elements 0.90588
published_at 2026-06-07T12:55:00Z
4
value 0.05704
scoring_system epss
scoring_elements 0.90586
published_at 2026-06-08T12:55:00Z
5
value 0.05704
scoring_system epss
scoring_elements 0.90602
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2864
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2864
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2864
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685667
reference_id 685667
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685667
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=850811
reference_id 850811
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=850811
5
reference_url https://security.gentoo.org/glsa/201404-06
reference_id GLSA-201404-06
reference_type
scores
url https://security.gentoo.org/glsa/201404-06
6
reference_url https://usn.ubuntu.com/1623-1/
reference_id USN-1623-1
reference_type
scores
url https://usn.ubuntu.com/1623-1/
fixed_packages
0
url pkg:deb/debian/mesa@8.0.4-2?distro=trixie
purl pkg:deb/debian/mesa@8.0.4-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@8.0.4-2%3Fdistro=trixie
1
url pkg:deb/debian/mesa@20.3.5-1?distro=trixie
purl pkg:deb/debian/mesa@20.3.5-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@20.3.5-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mesa@25.0.7-2?distro=trixie
purl pkg:deb/debian/mesa@25.0.7-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@25.0.7-2%3Fdistro=trixie
4
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
5
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2012-2864
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bv42-b48f-9faq
2
url VCID-g3ds-29rv-z3hh
vulnerability_id VCID-g3ds-29rv-z3hh
summary Heap-based buffer overflow in the WebGL subsystem in Google Chrome OS before 23.0.1271.94 allows remote attackers to cause a denial of service (GPU process crash) or possibly have unspecified other impact via unknown vectors.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5129.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5129.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-5129
reference_id
reference_type
scores
0
value 0.00443
scoring_system epss
scoring_elements 0.63666
published_at 2026-06-04T12:55:00Z
1
value 0.00443
scoring_system epss
scoring_elements 0.63708
published_at 2026-06-07T12:55:00Z
2
value 0.00443
scoring_system epss
scoring_elements 0.63716
published_at 2026-06-06T12:55:00Z
3
value 0.00443
scoring_system epss
scoring_elements 0.63696
published_at 2026-06-08T12:55:00Z
4
value 0.00443
scoring_system epss
scoring_elements 0.63715
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-5129
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5129
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5129
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=695248
reference_id 695248
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=695248
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=883243
reference_id 883243
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=883243
5
reference_url https://security.gentoo.org/glsa/201404-06
reference_id GLSA-201404-06
reference_type
scores
url https://security.gentoo.org/glsa/201404-06
6
reference_url https://usn.ubuntu.com/1818-1/
reference_id USN-1818-1
reference_type
scores
url https://usn.ubuntu.com/1818-1/
fixed_packages
0
url pkg:deb/debian/mesa@8.0.5-3?distro=trixie
purl pkg:deb/debian/mesa@8.0.5-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@8.0.5-3%3Fdistro=trixie
1
url pkg:deb/debian/mesa@20.3.5-1?distro=trixie
purl pkg:deb/debian/mesa@20.3.5-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@20.3.5-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mesa@25.0.7-2?distro=trixie
purl pkg:deb/debian/mesa@25.0.7-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@25.0.7-2%3Fdistro=trixie
4
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
5
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2012-5129
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g3ds-29rv-z3hh
3
url VCID-wqx5-u2mg-f3cr
vulnerability_id VCID-wqx5-u2mg-f3cr
summary Multiple integer overflows in X.org libGLX in Mesa 9.1.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XF86DRIOpenConnection and (2) XF86DRIGetClientDriverName functions.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1993.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1993.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1993
reference_id
reference_type
scores
0
value 0.01996
scoring_system epss
scoring_elements 0.83958
published_at 2026-06-04T12:55:00Z
1
value 0.01996
scoring_system epss
scoring_elements 0.83981
published_at 2026-06-05T12:55:00Z
2
value 0.01996
scoring_system epss
scoring_elements 0.83983
published_at 2026-06-09T12:55:00Z
3
value 0.01996
scoring_system epss
scoring_elements 0.83979
published_at 2026-06-07T12:55:00Z
4
value 0.01996
scoring_system epss
scoring_elements 0.8397
published_at 2026-06-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1993
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1993
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1993
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=961613
reference_id 961613
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=961613
4
reference_url https://security.gentoo.org/glsa/201405-07
reference_id GLSA-201405-07
reference_type
scores
url https://security.gentoo.org/glsa/201405-07
5
reference_url https://access.redhat.com/errata/RHSA-2013:0897
reference_id RHSA-2013:0897
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0897
6
reference_url https://access.redhat.com/errata/RHSA-2013:0898
reference_id RHSA-2013:0898
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0898
7
reference_url https://usn.ubuntu.com/1888-1/
reference_id USN-1888-1
reference_type
scores
url https://usn.ubuntu.com/1888-1/
fixed_packages
0
url pkg:deb/debian/mesa@8.0.5-6?distro=trixie
purl pkg:deb/debian/mesa@8.0.5-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@8.0.5-6%3Fdistro=trixie
1
url pkg:deb/debian/mesa@20.3.5-1?distro=trixie
purl pkg:deb/debian/mesa@20.3.5-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@20.3.5-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mesa@25.0.7-2?distro=trixie
purl pkg:deb/debian/mesa@25.0.7-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@25.0.7-2%3Fdistro=trixie
4
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
5
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2013-1993
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wqx5-u2mg-f3cr
4
url VCID-x9qv-bkng-5kgw
vulnerability_id VCID-x9qv-bkng-5kgw
summary An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library 19.1.2. An attacker can access the shared memory without any specific permissions to trigger this vulnerability.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5068.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5068.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-5068
reference_id
reference_type
scores
0
value 0.00075
scoring_system epss
scoring_elements 0.22633
published_at 2026-06-04T12:55:00Z
1
value 0.00075
scoring_system epss
scoring_elements 0.22716
published_at 2026-06-05T12:55:00Z
2
value 0.00075
scoring_system epss
scoring_elements 0.22701
published_at 2026-06-06T12:55:00Z
3
value 0.00075
scoring_system epss
scoring_elements 0.22655
published_at 2026-06-07T12:55:00Z
4
value 0.00075
scoring_system epss
scoring_elements 0.22609
published_at 2026-06-08T12:55:00Z
5
value 0.00075
scoring_system epss
scoring_elements 0.22612
published_at 2026-06-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-5068
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5068
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5068
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1770095
reference_id 1770095
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1770095
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944298
reference_id 944298
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944298
6
reference_url https://usn.ubuntu.com/4271-1/
reference_id USN-4271-1
reference_type
scores
url https://usn.ubuntu.com/4271-1/
fixed_packages
0
url pkg:deb/debian/mesa@19.2.6-1?distro=trixie
purl pkg:deb/debian/mesa@19.2.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@19.2.6-1%3Fdistro=trixie
1
url pkg:deb/debian/mesa@20.3.5-1?distro=trixie
purl pkg:deb/debian/mesa@20.3.5-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@20.3.5-1%3Fdistro=trixie
2
url pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
purl pkg:deb/debian/mesa@22.3.6-1%2Bdeb12u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie
3
url pkg:deb/debian/mesa@25.0.7-2?distro=trixie
purl pkg:deb/debian/mesa@25.0.7-2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ykaj-zaqe-s7dm
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@25.0.7-2%3Fdistro=trixie
4
url pkg:deb/debian/mesa@26.0.6-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.6-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.6-1%3Fdistro=trixie
5
url pkg:deb/debian/mesa@26.0.8-1?distro=trixie
purl pkg:deb/debian/mesa@26.0.8-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@26.0.8-1%3Fdistro=trixie
aliases CVE-2019-5068
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x9qv-bkng-5kgw
Risk_score2.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/mesa@22.3.6-1%252Bdeb12u1%3Fdistro=trixie