{"url":"http://public2.vulnerablecode.io/api/packages/134619?format=json","purl":"pkg:apk/alpine/ntpsec@1.1.3-r0?arch=armhf&distroversion=v3.16&reponame=community","type":"apk","namespace":"alpine","name":"ntpsec","version":"1.1.3-r0","qualifiers":{"arch":"armhf","distroversion":"v3.16","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207351?format=json","vulnerability_id":"VCID-6bwg-c6nn-5qfd","summary":"An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl() in ntpd.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6444","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6444"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=919513","reference_id":"919513","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=919513"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/134619?format=json","purl":"pkg:apk/alpine/ntpsec@1.1.3-r0?arch=armhf&distroversion=v3.16&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ntpsec@1.1.3-r0%3Farch=armhf&distroversion=v3.16&reponame=community"}],"aliases":["CVE-2019-6444"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bwg-c6nn-5qfd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/207352?format=json","vulnerability_id":"VCID-7kdq-w1m9-uufk","summary":"An issue was discovered in NTPsec before 1.1.3. An authenticated attacker can cause a NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6445","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6445"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=919513","reference_id":"919513","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=919513"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/134619?format=json","purl":"pkg:apk/alpine/ntpsec@1.1.3-r0?arch=armhf&distroversion=v3.16&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ntpsec@1.1.3-r0%3Farch=armhf&distroversion=v3.16&reponame=community"}],"aliases":["CVE-2019-6445"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7kdq-w1m9-uufk"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ntpsec@1.1.3-r0%3Farch=armhf&distroversion=v3.16&reponame=community"}