Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/flvmeta@1.2.2-2?distro=trixie

Type deb

Namespace debian

Name flvmeta

Version 1.2.2-2

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-ypmp-sd6f-gkf8

vulnerability_id VCID-ypmp-sd6f-gkf8

summary FLVMeta v1.2.1 was discovered to contain a buffer overflow via the xml_on_metadata_tag_only function at dump_xml.c.

references

reference_url

reference_id

reference_type

scores

url

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36243
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36243

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038977
reference_id	1038977
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038977

reference_url

reference_id

reference_type

scores

url

fixed_packages

url	pkg:deb/debian/flvmeta@1.2.2-1?distro=trixie
purl	pkg:deb/debian/flvmeta@1.2.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/flvmeta@1.2.2-1%3Fdistro=trixie

url	pkg:deb/debian/flvmeta@1.2.2-2?distro=trixie
purl	pkg:deb/debian/flvmeta@1.2.2-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/flvmeta@1.2.2-2%3Fdistro=trixie

aliases CVE-2023-36243

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ypmp-sd6f-gkf8

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/flvmeta@1.2.2-2%3Fdistro=trixie

Package Instance