{"url":"http://public2.vulnerablecode.io/api/packages/397069?format=json","purl":"pkg:apk/alpine/xen@4.7.1-r3?arch=aarch64&distroversion=v3.17&reponame=main","type":"apk","namespace":"alpine","name":"xen","version":"4.7.1-r3","qualifiers":{"arch":"aarch64","distroversion":"v3.17","reponame":"main"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"4.7.1-r4","latest_non_vulnerable_version":"4.16.6-r3","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/224?format=json","vulnerability_id":"VCID-vjpf-9s8r-dyh6","summary":"x86 CMPXCHG8B emulation fails to ignore operand size override","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9932.json","reference_id":"","reference_type":"","scores":[{"value":"5.0","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9932.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9932","reference_id":"","reference_type":"","scores":[{"value":"0.00069","scoring_system":"epss","scoring_elements":"0.21442","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9932"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10013","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10013"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10024","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10024"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9932","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9932"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7228","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7228"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8903","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8903"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8904","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8904"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8905","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8905"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"1","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:S/C:P/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399745","reference_id":"1399745","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399745"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848081","reference_id":"848081","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=848081"},{"reference_url":"https://security.gentoo.org/glsa/201612-56","reference_id":"GLSA-201612-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201612-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-200.html","reference_id":"XSA-200","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-200.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/397069?format=json","purl":"pkg:apk/alpine/xen@4.7.1-r3?arch=aarch64&distroversion=v3.17&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.7.1-r3%3Farch=aarch64&distroversion=v3.17&reponame=main"}],"aliases":["CVE-2016-9932","XSA-200"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vjpf-9s8r-dyh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/228?format=json","vulnerability_id":"VCID-yhz4-cga6-dyem","summary":"ARM guests may induce host asynchronous abort","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9818.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-9818.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9818","reference_id":"","reference_type":"","scores":[{"value":"0.0011","scoring_system":"epss","scoring_elements":"0.2908","published_at":"2026-05-30T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-9818"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399746","reference_id":"1399746","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1399746"},{"reference_url":"https://security.gentoo.org/glsa/201612-56","reference_id":"GLSA-201612-56","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201612-56"},{"reference_url":"https://xenbits.xen.org/xsa/advisory-201.html","reference_id":"XSA-201","reference_type":"","scores":[],"url":"https://xenbits.xen.org/xsa/advisory-201.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/397069?format=json","purl":"pkg:apk/alpine/xen@4.7.1-r3?arch=aarch64&distroversion=v3.17&reponame=main","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.7.1-r3%3Farch=aarch64&distroversion=v3.17&reponame=main"}],"aliases":["CVE-2016-9818","XSA-201"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yhz4-cga6-dyem"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/xen@4.7.1-r3%3Farch=aarch64&distroversion=v3.17&reponame=main"}