{"url":"http://public2.vulnerablecode.io/api/packages/370788?format=json","purl":"pkg:rpm/redhat/texinfo@4.7-5.el4?arch=2","type":"rpm","namespace":"redhat","name":"texinfo","version":"4.7-5.el4","qualifiers":{"arch":"2"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/200207?format=json","vulnerability_id":"VCID-1tf3-n7tn-mkeq","summary":"The sort_offline function for texindex in texinfo 4.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3011.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2005-3011.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3011","reference_id":"","reference_type":"","scores":[{"value":"0.00043","scoring_system":"epss","scoring_elements":"0.1368","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2005-3011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3011"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617775","reference_id":"1617775","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617775"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=328365","reference_id":"328365","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=328365"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0727","reference_id":"RHSA-2006:0727","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0727"},{"reference_url":"https://usn.ubuntu.com/194-1/","reference_id":"USN-194-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/194-1/"}],"fixed_packages":[],"aliases":["CVE-2005-3011"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1tf3-n7tn-mkeq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/181322?format=json","vulnerability_id":"VCID-sj3b-rk38-mfdf","summary":"Texinfo is vulnerable to a buffer overflow that could lead to the execution\n    of arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4810.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4810.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4810","reference_id":"","reference_type":"","scores":[{"value":"0.00162","scoring_system":"epss","scoring_elements":"0.36949","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4810"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4810","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4810"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618203","reference_id":"1618203","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618203"},{"reference_url":"https://security.gentoo.org/glsa/200611-16","reference_id":"GLSA-200611-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200611-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0727","reference_id":"RHSA-2006:0727","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0727"},{"reference_url":"https://usn.ubuntu.com/379-1/","reference_id":"USN-379-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/379-1/"}],"fixed_packages":[],"aliases":["CVE-2006-4810"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sj3b-rk38-mfdf"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/texinfo@4.7-5.el4%3Farch=2"}