Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community

Type apk

Namespace alpine

Name libcaca

Version 0.99_beta19-r3

Qualifiers

arch	s390x
distroversion	v3.14
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-4jg1-4wxa-uubx

vulnerability_id VCID-4jg1-4wxa-uubx

summary There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0.99.beta19 for the default bpp case.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20546

reference_id

reference_type

scores

value	0.02273
scoring_system	epss
scoring_elements	0.84987
published_at	2026-06-06T12:55:00Z

value	0.02273
scoring_system	epss
scoring_elements	0.84986
published_at	2026-06-09T12:55:00Z

value	0.02273
scoring_system	epss
scoring_elements	0.84982
published_at	2026-06-05T12:55:00Z

value	0.02273
scoring_system	epss
scoring_elements	0.84958
published_at	2026-06-04T12:55:00Z

value	0.02273
scoring_system	epss
scoring_elements	0.84981
published_at	2026-06-07T12:55:00Z

value	0.02273
scoring_system	epss
scoring_elements	0.84971
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20546

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20546
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20546

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20546

risk_score 1.0

exploitability 0.5

weighted_severity 2.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4jg1-4wxa-uubx

url VCID-4spv-n71v-5be8

vulnerability_id VCID-4spv-n71v-5be8

summary There is an illegal WRITE memory access at caca/file.c (function caca_file_read) in libcaca 0.99.beta19.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20549

reference_id

reference_type

scores

value	0.00923
scoring_system	epss
scoring_elements	0.76407
published_at	2026-06-06T12:55:00Z

value	0.00923
scoring_system	epss
scoring_elements	0.76409
published_at	2026-06-09T12:55:00Z

value	0.00923
scoring_system	epss
scoring_elements	0.76406
published_at	2026-06-05T12:55:00Z

value	0.00923
scoring_system	epss
scoring_elements	0.76378
published_at	2026-06-04T12:55:00Z

value	0.00923
scoring_system	epss
scoring_elements	0.76397
published_at	2026-06-07T12:55:00Z

value	0.00923
scoring_system	epss
scoring_elements	0.76386
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20549

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20549
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20549

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20549

risk_score 1.0

exploitability 0.5

weighted_severity 2.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4spv-n71v-5be8

url VCID-8xkb-d4gd-6bgh

vulnerability_id VCID-8xkb-d4gd-6bgh

summary There is floating point exception at caca/dither.c (function caca_dither_bitmap) in libcaca 0.99.beta19.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20544

reference_id

reference_type

scores

value	0.00647
scoring_system	epss
scoring_elements	0.71189
published_at	2026-06-06T12:55:00Z

value	0.00647
scoring_system	epss
scoring_elements	0.71182
published_at	2026-06-09T12:55:00Z

value	0.00647
scoring_system	epss
scoring_elements	0.71183
published_at	2026-06-05T12:55:00Z

value	0.00647
scoring_system	epss
scoring_elements	0.7114
published_at	2026-06-04T12:55:00Z

value	0.00647
scoring_system	epss
scoring_elements	0.71172
published_at	2026-06-07T12:55:00Z

value	0.00647
scoring_system	epss
scoring_elements	0.71157
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20544

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20544
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20544

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20544

risk_score 1.0

exploitability 0.5

weighted_severity 2.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8xkb-d4gd-6bgh

url VCID-ft2m-4kfw-17gh

vulnerability_id VCID-ft2m-4kfw-17gh

summary There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0.99.beta19 for 24bpp data.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20547

reference_id

reference_type

scores

value	0.01001
scoring_system	epss
scoring_elements	0.7739
published_at	2026-06-06T12:55:00Z

value	0.01001
scoring_system	epss
scoring_elements	0.77391
published_at	2026-06-09T12:55:00Z

value	0.01001
scoring_system	epss
scoring_elements	0.7738
published_at	2026-06-05T12:55:00Z

value	0.01001
scoring_system	epss
scoring_elements	0.77352
published_at	2026-06-04T12:55:00Z

value	0.01001
scoring_system	epss
scoring_elements	0.77379
published_at	2026-06-07T12:55:00Z

value	0.01001
scoring_system	epss
scoring_elements	0.77369
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20547

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20547
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20547

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20547

risk_score 1.2

exploitability 0.5

weighted_severity 2.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ft2m-4kfw-17gh

url VCID-t2uh-qq1t-xubw

vulnerability_id VCID-t2uh-qq1t-xubw

summary There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 1bpp data.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20548

reference_id

reference_type

scores

value	0.00811
scoring_system	epss
scoring_elements	0.74636
published_at	2026-06-06T12:55:00Z

value	0.00811
scoring_system	epss
scoring_elements	0.74634
published_at	2026-06-09T12:55:00Z

value	0.00811
scoring_system	epss
scoring_elements	0.74631
published_at	2026-06-05T12:55:00Z

value	0.00811
scoring_system	epss
scoring_elements	0.746
published_at	2026-06-04T12:55:00Z

value	0.00811
scoring_system	epss
scoring_elements	0.74625
published_at	2026-06-07T12:55:00Z

value	0.00811
scoring_system	epss
scoring_elements	0.74607
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20548

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20548
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20548

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20548

risk_score 1.0

exploitability 0.5

weighted_severity 2.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t2uh-qq1t-xubw

url VCID-wxvn-dg7p-k7hc

vulnerability_id VCID-wxvn-dg7p-k7hc

summary There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 4bpp data.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-20545

reference_id

reference_type

scores

value	0.01898
scoring_system	epss
scoring_elements	0.8359
published_at	2026-06-06T12:55:00Z

value	0.01898
scoring_system	epss
scoring_elements	0.83592
published_at	2026-06-09T12:55:00Z

value	0.01898
scoring_system	epss
scoring_elements	0.83589
published_at	2026-06-05T12:55:00Z

value	0.01898
scoring_system	epss
scoring_elements	0.83565
published_at	2026-06-04T12:55:00Z

value	0.01898
scoring_system	epss
scoring_elements	0.83587
published_at	2026-06-07T12:55:00Z

value	0.01898
scoring_system	epss
scoring_elements	0.83579
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-20545

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20545
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20545

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807
reference_id	917807
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917807

reference_url	https://usn.ubuntu.com/3860-1/
reference_id	USN-3860-1
reference_type
scores
url	https://usn.ubuntu.com/3860-1/

reference_url	https://usn.ubuntu.com/3860-2/
reference_id	USN-3860-2
reference_type
scores
url	https://usn.ubuntu.com/3860-2/

fixed_packages

url	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/libcaca@0.99_beta19-r3?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

aliases CVE-2018-20545

risk_score 1.0

exploitability 0.5

weighted_severity 2.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wxvn-dg7p-k7hc

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/libcaca@0.99_beta19-r3%3Farch=s390x&distroversion=v3.14&reponame=community

Package Instance