Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/135926?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "type": "deb", "namespace": "debian", "name": "xen", "version": "4.1.3-2", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "4.1.3-4", "latest_non_vulnerable_version": "4.20.2+7-g1badcf5035-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99081?format=api", "vulnerability_id": "VCID-c61e-4uev-xket", "summary": "Qemu, as used in Xen 4.0, 4.1 and possibly other products, when emulating certain devices with a virtual console backend, allows local OS guest users to gain privileges via a crafted escape VT100 sequence that triggers the overwrite of a \"device model's address space.\"", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3515.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3515.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3515", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27324", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27393", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27343", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27304", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27253", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27262", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3515" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3515", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3515" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764", "reference_id": "686764", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=851252", "reference_id": "851252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851252" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1233", "reference_id": "RHSA-2012:1233", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1233" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1234", "reference_id": "RHSA-2012:1234", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1234" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1235", "reference_id": "RHSA-2012:1235", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1235" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1236", "reference_id": "RHSA-2012:1236", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1236" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:1325", "reference_id": "RHSA-2012:1325", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:1325" }, { "reference_url": "https://usn.ubuntu.com/1590-1/", "reference_id": "USN-1590-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1590-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-17.html", "reference_id": "XSA-17", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-17.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3515" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c61e-4uev-xket" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106106?format=api", "vulnerability_id": "VCID-dwmv-fd24-93by", "summary": "XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when translating paging mode is not used, allows local PV OS guest kernels to cause a denial of service (BUG triggered and host crash) via invalid flags such as MEMF_populate_on_demand.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3496.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3496.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3496", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26093", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26197", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26189", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26144", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26089", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26095", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3496" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3496", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764", "reference_id": "686764", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=851172", "reference_id": "851172", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851172" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-14.html", "reference_id": "XSA-14", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-14.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3496" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dwmv-fd24-93by" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106112?format=api", "vulnerability_id": "VCID-gspa-sqcd-83e3", "summary": "The graphical console in Xen 4.0, 4.1 and 4.2 allows local OS guest administrators to obtain sensitive host resource information via the qemu monitor. NOTE: this might be a duplicate of CVE-2007-0998.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4411.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4411.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4411", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22036", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.2212", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22105", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22058", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22002", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00072", "scoring_system": "epss", "scoring_elements": "0.22011", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-4411" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4411", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4411" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=855140", "reference_id": "855140", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=855140" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-19.html", "reference_id": "XSA-19", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-19.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-4411" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gspa-sqcd-83e3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106102?format=api", "vulnerability_id": "VCID-q1j7-878s-3ff4", "summary": "The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service (host crash) by writing to the reserved bits of the DR7 debug control register.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3494.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3494.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3494", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29197", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29266", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29234", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29198", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29165", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00112", "scoring_system": "epss", "scoring_elements": "0.29178", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3494" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764", "reference_id": "686764", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=851139", "reference_id": "851139", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851139" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-12.html", "reference_id": "XSA-12", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-12.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3494" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q1j7-878s-3ff4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106104?format=api", "vulnerability_id": "VCID-scrz-m4nx-mkcr", "summary": "The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix XenServer 6.0.2 and earlier uses the return value of the get_free_pirq function as an array index without checking that the return value indicates an error, which allows guest OS users to cause a denial of service (invalid memory write and host crash) and possibly gain privileges via unspecified vectors.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3495.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3495.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3495", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23805", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23899", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23883", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23833", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2378", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23786", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3495" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3495", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3495" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764", "reference_id": "686764", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=851165", "reference_id": "851165", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851165" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-13.html", "reference_id": "XSA-13", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-13.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3495" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-scrz-m4nx-mkcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106108?format=api", "vulnerability_id": "VCID-vv5t-yn1y-kkfn", "summary": "PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and earlier allows local HVM guest OS kernels to cause a denial of service (host crash) and possibly read hypervisor or guest memory via vectors related to a missing range check of map->index.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3498.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3498.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3498", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21024", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21107", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21094", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.21048", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.20985", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00068", "scoring_system": "epss", "scoring_elements": "0.20995", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-3498" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3498", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3498" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764", "reference_id": "686764", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686764" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=851193", "reference_id": "851193", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=851193" }, { "reference_url": "https://security.gentoo.org/glsa/201309-24", "reference_id": "GLSA-201309-24", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201309-24" }, { "reference_url": "https://security.gentoo.org/glsa/201604-03", "reference_id": "GLSA-201604-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201604-03" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-16.html", "reference_id": "XSA-16", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-16.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/135926?format=api", "purl": "pkg:deb/debian/xen@4.1.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135902?format=api", "purl": "pkg:deb/debian/xen@4.14.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-27xc-hy1s-n7bf" }, { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-2wu6-2tup-2ub2" }, { "vulnerability": "VCID-339r-nmjn-gfa2" }, { "vulnerability": "VCID-3nb3-3wud-jfhv" }, { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-6uvb-67h4-1fgy" }, { "vulnerability": "VCID-7yrz-z3a2-vkgg" }, { "vulnerability": "VCID-8gj8-dga7-gkht" }, { "vulnerability": "VCID-8r4d-1tcs-13gd" }, { "vulnerability": "VCID-9g21-rc3r-5uer" }, { "vulnerability": "VCID-c58r-gesb-f7hq" }, { "vulnerability": "VCID-cgzn-pdre-1bec" }, { "vulnerability": "VCID-cvj7-478z-x3b1" }, { "vulnerability": "VCID-dke6-vwb6-fuf4" }, { "vulnerability": "VCID-dwq4-9tk2-8yfp" }, { "vulnerability": "VCID-f7v4-85sw-1keq" }, { "vulnerability": "VCID-fwx8-9f5e-v7hw" }, { "vulnerability": "VCID-jcpf-68kx-67fr" }, { "vulnerability": "VCID-jm1q-fxpu-qbg3" }, { "vulnerability": "VCID-k3xq-ruut-3yhw" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" }, { "vulnerability": "VCID-k6gh-hx5m-wba2" }, { "vulnerability": "VCID-kcwp-bu7h-6kds" }, { "vulnerability": "VCID-kpyj-6qpe-pbep" }, { "vulnerability": "VCID-ma7k-xrxw-vubd" }, { "vulnerability": "VCID-ma9d-b2uy-jkft" }, { "vulnerability": "VCID-mvnt-qc9z-jygu" }, { "vulnerability": "VCID-navq-t6wp-xqaf" }, { "vulnerability": "VCID-rm4s-2uwv-tkac" }, { "vulnerability": "VCID-rw5e-3s13-hycn" }, { "vulnerability": "VCID-su6k-nv2m-yqac" }, { "vulnerability": "VCID-swjx-x5hb-n3c2" }, { "vulnerability": "VCID-sx9z-gbkd-8fgv" }, { "vulnerability": "VCID-t5nz-98gp-7fa1" }, { "vulnerability": "VCID-t63z-5wwn-1bh9" }, { "vulnerability": "VCID-t9tt-yd4b-r3cy" }, { "vulnerability": "VCID-u4yc-hhne-2kaz" }, { "vulnerability": "VCID-vj8v-zms6-gug9" }, { "vulnerability": "VCID-vkt6-fjzc-4uay" }, { "vulnerability": "VCID-w8sx-m2vx-1ucv" }, { "vulnerability": "VCID-wuca-6w96-kfdp" }, { "vulnerability": "VCID-x9md-fcrv-y7d8" }, { "vulnerability": "VCID-xa2b-k4ye-e7d3" }, { "vulnerability": "VCID-yqrw-w2g9-2kf9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.14.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135900?format=api", "purl": "pkg:deb/debian/xen@4.17.5%2B72-g01140da4e8-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2qbn-f381-abhx" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" }, { "vulnerability": "VCID-k5qj-xcvq-5ke1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.17.5%252B72-g01140da4e8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135904?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-0%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/135903?format=api", "purl": "pkg:deb/debian/xen@4.20.2%2B37-g61ff35323e-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5qmr-dc83-fqb1" }, { "vulnerability": "VCID-67uu-vpqg-gbc9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.20.2%252B37-g61ff35323e-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-3498" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vv5t-yn1y-kkfn" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xen@4.1.3-2%3Fdistro=trixie" }