{"url":"http://public2.vulnerablecode.io/api/packages/352425?format=json","purl":"pkg:deb/debian/mah-jong@1.11-2?distro=trixie","type":"deb","namespace":"debian","name":"mah-jong","version":"1.11-2","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.17-1","latest_non_vulnerable_version":"1.17.2-3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79663?format=json","vulnerability_id":"VCID-45w2-e87g-dbby","summary":"Unknown vulnerability in mah-jong 1.5.6 and earlier allows remote attackers to cause a denial of service (tight loop).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0706","reference_id":"","reference_type":"","scores":[{"value":"0.05902","scoring_system":"epss","scoring_elements":"0.90742","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0706"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0706","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0706"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/23116.pl","reference_id":"CVE-2003-0706;OSVDB-6587","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/23116.pl"},{"reference_url":"https://www.securityfocus.com/bid/8558/info","reference_id":"CVE-2003-0706;OSVDB-6587","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/8558/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/352426?format=json","purl":"pkg:deb/debian/mah-jong@1.5.6-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.5.6-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352425?format=json","purl":"pkg:deb/debian/mah-jong@1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352428?format=json","purl":"pkg:deb/debian/mah-jong@1.17-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352427?format=json","purl":"pkg:deb/debian/mah-jong@1.17.2-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17.2-3%3Fdistro=trixie"}],"aliases":["CVE-2003-0706"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-45w2-e87g-dbby"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79662?format=json","vulnerability_id":"VCID-chgg-v74b-3bc6","summary":"Buffer overflow in mah-jong 1.5.6 and earlier allows remote attackers to execute arbitrary code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0705","reference_id":"","reference_type":"","scores":[{"value":"0.09421","scoring_system":"epss","scoring_elements":"0.92927","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2003-0705"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0705","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0705"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23115.c","reference_id":"CVE-2003-0705;OSVDB-6586","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/23115.c"},{"reference_url":"https://www.securityfocus.com/bid/8557/info","reference_id":"CVE-2003-0705;OSVDB-6586","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/8557/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/352426?format=json","purl":"pkg:deb/debian/mah-jong@1.5.6-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.5.6-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352425?format=json","purl":"pkg:deb/debian/mah-jong@1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352428?format=json","purl":"pkg:deb/debian/mah-jong@1.17-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352427?format=json","purl":"pkg:deb/debian/mah-jong@1.17.2-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17.2-3%3Fdistro=trixie"}],"aliases":["CVE-2003-0705"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-chgg-v74b-3bc6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/79729?format=json","vulnerability_id":"VCID-ueyu-8raw-hfek","summary":"mah-jong before 1.6.2 allows remote attackers to cause a denial of service (server crash) via a missing argument, which triggers a null pointer dereference.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0458","reference_id":"","reference_type":"","scores":[{"value":"0.01605","scoring_system":"epss","scoring_elements":"0.82032","published_at":"2026-05-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0458"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0458","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0458"},{"reference_url":"http://www.securityfocus.com/bid/10343","reference_id":"10343","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T17:35:36Z/"}],"url":"http://www.securityfocus.com/bid/10343"},{"reference_url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16143","reference_id":"16143","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T17:35:36Z/"}],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16143"},{"reference_url":"http://www.debian.org/security/2004/dsa-503","reference_id":"dsa-503","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-01-16T17:35:36Z/"}],"url":"http://www.debian.org/security/2004/dsa-503"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/352429?format=json","purl":"pkg:deb/debian/mah-jong@1.6.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.6.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352425?format=json","purl":"pkg:deb/debian/mah-jong@1.11-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.11-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352428?format=json","purl":"pkg:deb/debian/mah-jong@1.17-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/352427?format=json","purl":"pkg:deb/debian/mah-jong@1.17.2-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.17.2-3%3Fdistro=trixie"}],"aliases":["CVE-2004-0458"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ueyu-8raw-hfek"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/mah-jong@1.11-2%3Fdistro=trixie"}