{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","type":"deb","namespace":"debian","name":"groff","version":"1.22.4-6","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"1.22.4-10","latest_non_vulnerable_version":"1.24.1-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182073?format=json","vulnerability_id":"VCID-445u-fhne-c3bp","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5044.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5044.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5044","reference_id":"","reference_type":"","scores":[{"value":"0.00067","scoring_system":"epss","scoring_elements":"0.20922","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5044"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5044","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5044"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538330","reference_id":"538330","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538330"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=709413","reference_id":"709413","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=709413"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5044"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-445u-fhne-c3bp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182076?format=json","vulnerability_id":"VCID-6mtp-85e1-sbhj","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5080.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5080.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5080","reference_id":"","reference_type":"","scores":[{"value":"0.00073","scoring_system":"epss","scoring_elements":"0.22338","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5080"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538330","reference_id":"538330","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538330"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720058","reference_id":"720058","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720058"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5080"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6mtp-85e1-sbhj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182078?format=json","vulnerability_id":"VCID-9qxp-rhfv-akb7","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5082.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5082.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5082","reference_id":"","reference_type":"","scores":[{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09358","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5082"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538338","reference_id":"538338","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538338"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5082"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9qxp-rhfv-akb7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182077?format=json","vulnerability_id":"VCID-af7a-46aj-uuga","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5081.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5081.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5081","reference_id":"","reference_type":"","scores":[{"value":"0.00114","scoring_system":"epss","scoring_elements":"0.29699","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5081"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720057","reference_id":"720057","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720057"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5081"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-af7a-46aj-uuga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199758?format=json","vulnerability_id":"VCID-f3qn-ghq4-f7ht","summary":"The groffer script in the Groff package 1.18 and later versions, as used in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0969","reference_id":"","reference_type":"","scores":[{"value":"0.00122","scoring_system":"epss","scoring_elements":"0.30914","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0969"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0969","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0969"},{"reference_url":"https://usn.ubuntu.com/13-1/","reference_id":"USN-13-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/13-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44487?format=json","purl":"pkg:deb/debian/groff@1.18.1.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.18.1.1-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2004-0969"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f3qn-ghq4-f7ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182074?format=json","vulnerability_id":"VCID-jdns-egr4-byg7","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5078.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5078.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5078","reference_id":"","reference_type":"","scores":[{"value":"0.01318","scoring_system":"epss","scoring_elements":"0.80281","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5078"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5078","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5078"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538338","reference_id":"538338","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538338"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=720053","reference_id":"720053","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=720053"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5078"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jdns-egr4-byg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199832?format=json","vulnerability_id":"VCID-jgwr-mwa7-byd2","summary":"The (1) eqn2graph and (2) pic2graph scripts in groff 1.18.1 allow local users to overwrite arbitrary files via a symlink attack on temporary files.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1296.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1296.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1296","reference_id":"","reference_type":"","scores":[{"value":"0.00185","scoring_system":"epss","scoring_elements":"0.40206","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-1296"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1296","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1296"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44491?format=json","purl":"pkg:deb/debian/groff@1.18.1.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.18.1.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2004-1296"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jgwr-mwa7-byd2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/182075?format=json","vulnerability_id":"VCID-txjx-dm21-p3fp","summary":"Multiple vulnerabilities have been found in Groff, allowing\n    context-dependent attackers to conduct symlink attacks.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5079.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-5079.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5079","reference_id":"","reference_type":"","scores":[{"value":"0.00036","scoring_system":"epss","scoring_elements":"0.11107","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5079"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5079","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5079"},{"reference_url":"https://security.gentoo.org/glsa/201310-14","reference_id":"GLSA-201310-14","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201310-14"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44492?format=json","purl":"pkg:deb/debian/groff@1.20.1-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.20.1-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44488?format=json","purl":"pkg:deb/debian/groff@1.22.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44486?format=json","purl":"pkg:deb/debian/groff@1.22.4-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44490?format=json","purl":"pkg:deb/debian/groff@1.23.0-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.23.0-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44489?format=json","purl":"pkg:deb/debian/groff@1.24.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.24.1-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5079"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-txjx-dm21-p3fp"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/groff@1.22.4-6%3Fdistro=trixie"}