{"url":"http://public2.vulnerablecode.io/api/packages/43432?format=json","purl":"pkg:deb/debian/glibc@2.19-4?distro=trixie","type":"deb","namespace":"debian","name":"glibc","version":"2.19-4","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"2.19-6","latest_non_vulnerable_version":"2.42-16","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201821?format=json","vulnerability_id":"VCID-npqn-m7te-quej","summary":"The regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (application crash) via a regular expression containing adjacent bounded repetitions that bypass the intended RE_DUP_MAX limitation, as demonstrated by a {10,}{10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD, related to a \"RE_DUP_MAX overflow.\"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4051.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4051.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4051","reference_id":"","reference_type":"","scores":[{"value":"0.04658","scoring_system":"epss","scoring_elements":"0.89551","published_at":"2026-06-11T12:55:00Z"},{"value":"0.04658","scoring_system":"epss","scoring_elements":"0.89585","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4051"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4051","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4051"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=645859","reference_id":"645859","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=645859"},{"reference_url":"http://securityreason.com/securityalert/8003","reference_id":"CVE-2010-4051;CVE-2010-4052","reference_type":"exploit","scores":[],"url":"http://securityreason.com/securityalert/8003"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/15935.c","reference_id":"CVE-2010-4051;CVE-2010-4052","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/15935.c"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/43432?format=json","purl":"pkg:deb/debian/glibc@2.19-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.19-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43409?format=json","purl":"pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3gqp-mfwh-9bae"},{"vulnerability":"VCID-xu7u-sm36-bffw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43407?format=json","purl":"pkg:deb/debian/glibc@2.36-9%2Bdeb12u14?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u14%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43411?format=json","purl":"pkg:deb/debian/glibc@2.41-12%2Bdeb13u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43410?format=json","purl":"pkg:deb/debian/glibc@2.42-16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-16%3Fdistro=trixie"}],"aliases":["CVE-2010-4051"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-npqn-m7te-quej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/201823?format=json","vulnerability_id":"VCID-thh8-7e8e-77be","summary":"Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (resource exhaustion) via a regular expression containing adjacent repetition operators, as demonstrated by a {10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4052.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4052.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4052","reference_id":"","reference_type":"","scores":[{"value":"0.09951","scoring_system":"epss","scoring_elements":"0.93199","published_at":"2026-06-11T12:55:00Z"},{"value":"0.09951","scoring_system":"epss","scoring_elements":"0.93221","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4052"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4052","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4052"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=645859","reference_id":"645859","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=645859"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35061.c","reference_id":"CVE-2010-4052;OSVDB-70447","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/35061.c"},{"reference_url":"https://www.securityfocus.com/bid/45233/info","reference_id":"CVE-2010-4052;OSVDB-70447","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/45233/info"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/43432?format=json","purl":"pkg:deb/debian/glibc@2.19-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.19-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43409?format=json","purl":"pkg:deb/debian/glibc@2.31-13%2Bdeb11u11?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3gqp-mfwh-9bae"},{"vulnerability":"VCID-xu7u-sm36-bffw"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.31-13%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43407?format=json","purl":"pkg:deb/debian/glibc@2.36-9%2Bdeb12u14?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.36-9%252Bdeb12u14%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43411?format=json","purl":"pkg:deb/debian/glibc@2.41-12%2Bdeb13u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.41-12%252Bdeb13u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/43410?format=json","purl":"pkg:deb/debian/glibc@2.42-16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.42-16%3Fdistro=trixie"}],"aliases":["CVE-2010-4052"],"risk_score":0.2,"exploitability":"2.0","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-thh8-7e8e-77be"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/glibc@2.19-4%3Fdistro=trixie"}