Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/47480?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "type": "deb", "namespace": "debian", "name": "imlib2", "version": "1.10.0-4+deb12u1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": "1.12.4-2", "latest_non_vulnerable_version": "1.12.6-1", "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18344?format=api", "vulnerability_id": "VCID-1raa-jddd-fqap", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25448", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.28911", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25448" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25448", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25448" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-19T16:20:13Z/" } ], "url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20" }, { "reference_url": "https://github.com/derf/feh/issues/711", "reference_id": "711", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-19T16:20:13Z/" } ], "url": "https://github.com/derf/feh/issues/711" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47506?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-25448" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1raa-jddd-fqap" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/181871?format=api", "vulnerability_id": "VCID-2m7c-kkcs-f7ga", "summary": "imlib2 contains several vulnerabilities that could lead to the remote\n execution of arbitrary code or a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4808.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4808.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4808", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04588", "scoring_system": "epss", "scoring_elements": "0.8947", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4808" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4808", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4808" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371", "reference_id": "397371", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371" }, { "reference_url": "https://security.gentoo.org/glsa/200612-20", "reference_id": "GLSA-200612-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200612-20" }, { "reference_url": "https://usn.ubuntu.com/376-1/", "reference_id": "USN-376-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/376-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47494?format=api", "purl": "pkg:deb/debian/imlib2@1.3.0.0debian1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.3.0.0debian1-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-4808" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2m7c-kkcs-f7ga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/276?format=api", "vulnerability_id": "VCID-43kc-uk15-bkgw", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0117", "scoring_system": "epss", "scoring_elements": "0.79077", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820206", "reference_id": "820206", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820206" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47503?format=api", "purl": "pkg:deb/debian/imlib2@1.4.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9771" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-43kc-uk15-bkgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18345?format=api", "vulnerability_id": "VCID-4kwy-2jun-6bgm", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25450", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21491", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25450" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25450", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25450" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-27T17:40:58Z/" } ], "url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20" }, { "reference_url": "https://github.com/derf/feh/issues/712", "reference_id": "712", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-27T17:40:58Z/" } ], "url": "https://github.com/derf/feh/issues/712" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47506?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-25450" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4kwy-2jun-6bgm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/199733?format=api", "vulnerability_id": "VCID-6a1f-ykk7-37db", "summary": "Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0802", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06287", "scoring_system": "epss", "scoring_elements": "0.91138", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-0802" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0802", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0802" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47482?format=api", "purl": "pkg:deb/debian/imlib2@1.1.0-12.4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.1.0-12.4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2004-0802" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6a1f-ykk7-37db" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/207690?format=api", "vulnerability_id": "VCID-7fqv-euwj-rubh", "summary": "modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12761", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00433", "scoring_system": "epss", "scoring_elements": "0.6325", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12761" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12761", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12761" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960192", "reference_id": "960192", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960192" }, { "reference_url": "https://usn.ubuntu.com/5099-1/", "reference_id": "USN-5099-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5099-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47505?format=api", "purl": "pkg:deb/debian/imlib2@1.6.1-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.6.1-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-12761" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7fqv-euwj-rubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/217471?format=api", "vulnerability_id": "VCID-8dq1-zqf3-pyh7", "summary": "Multiple heap-based buffer overflows in imlib2 1.4.3 allow context-dependent attackers to execute arbitrary code via a crafted (1) ARGB, (2) XPM, or (3) BMP file, related to the IMAGE_DIMENSIONS_OK macro in lib/image.h.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0991", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01452", "scoring_system": "epss", "scoring_elements": "0.81222", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0991" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47498?format=api", "purl": "pkg:deb/debian/imlib2@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-0991" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8dq1-zqf3-pyh7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/101513?format=api", "vulnerability_id": "VCID-8zwk-puv7-w3aa", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09628", "scoring_system": "epss", "scoring_elements": "0.93062", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-4024" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=821732", "reference_id": "821732", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=821732" }, { "reference_url": "https://security.gentoo.org/glsa/201611-12", "reference_id": "GLSA-201611-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201611-12" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47499?format=api", "purl": "pkg:deb/debian/imlib2@1.4.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-4024" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8zwk-puv7-w3aa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/199786?format=api", "vulnerability_id": "VCID-9ffe-dr1g-83ez", "summary": "Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service (application crash) and execute arbitrary code via certain image files.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1026.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-1026.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2004-1026", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02681", "scoring_system": "epss", "scoring_elements": "0.8617", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2004-1026" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1026", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1026" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617355", "reference_id": "1617355", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2004:651", "reference_id": "RHSA-2004:651", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2004:651" }, { "reference_url": "https://usn.ubuntu.com/53-1/", "reference_id": "USN-53-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/53-1/" }, { "reference_url": "https://usn.ubuntu.com/55-1/", "reference_id": "USN-55-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/55-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47493?format=api", "purl": "pkg:deb/debian/imlib2@1.1.2-2.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.1.2-2.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2004-1026" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9ffe-dr1g-83ez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/273?format=api", "vulnerability_id": "VCID-9tc1-k1cm-dbdq", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9762", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02826", "scoring_system": "epss", "scoring_elements": "0.86486", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://security.gentoo.org/glsa/201611-12", "reference_id": "GLSA-201611-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201611-12" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47503?format=api", "purl": "pkg:deb/debian/imlib2@1.4.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9762" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9tc1-k1cm-dbdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/114254?format=api", "vulnerability_id": "VCID-hcgr-j5ah-quf4", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9763", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01885", "scoring_system": "epss", "scoring_elements": "0.83572", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764" }, { "reference_url": "https://security.gentoo.org/glsa/201611-12", "reference_id": "GLSA-201611-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201611-12" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47503?format=api", "purl": "pkg:deb/debian/imlib2@1.4.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9763" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hcgr-j5ah-quf4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/181872?format=api", "vulnerability_id": "VCID-mymq-1j4g-ufa5", "summary": "imlib2 contains several vulnerabilities that could lead to the remote\n execution of arbitrary code or a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4809.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06102", "scoring_system": "epss", "scoring_elements": "0.90974", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4809" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371", "reference_id": "397371", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371" }, { "reference_url": "https://security.gentoo.org/glsa/200612-20", "reference_id": "GLSA-200612-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200612-20" }, { "reference_url": "https://usn.ubuntu.com/376-1/", "reference_id": "USN-376-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/376-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47494?format=api", "purl": "pkg:deb/debian/imlib2@1.3.0.0debian1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.3.0.0debian1-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-4809" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mymq-1j4g-ufa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/18343?format=api", "vulnerability_id": "VCID-nvnp-n3yd-m3a9", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0011", "scoring_system": "epss", "scoring_elements": "0.28911", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-25447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25447" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20", "reference_id": "20", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:20:46Z/" } ], "url": "https://git.enlightenment.org/old/legacy-imlib2/issues/20" }, { "reference_url": "https://github.com/derf/feh/issues/709", "reference_id": "709", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track*", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-05-08T17:20:46Z/" } ], "url": "https://github.com/derf/feh/issues/709" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47506?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-25447" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nvnp-n3yd-m3a9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1222?format=api", "vulnerability_id": "VCID-pdng-beq7-d7cm", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00993", "scoring_system": "epss", "scoring_elements": "0.7734", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:P" }, { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=785369", "reference_id": "785369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=785369" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47499?format=api", "purl": "pkg:deb/debian/imlib2@1.4.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-3994" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pdng-beq7-d7cm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/182252?format=api", "vulnerability_id": "VCID-ssx6-wnpf-23cs", "summary": "A buffer overflow vulnerability has been discovered in Imlib2.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5187.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-5187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02012", "scoring_system": "epss", "scoring_elements": "0.84083", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-5187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5187" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=472576", "reference_id": "472576", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=472576" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505714", "reference_id": "505714", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=505714" }, { "reference_url": "https://security.gentoo.org/glsa/200812-23", "reference_id": "GLSA-200812-23", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200812-23" }, { "reference_url": "https://usn.ubuntu.com/683-1/", "reference_id": "USN-683-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/683-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47496?format=api", "purl": "pkg:deb/debian/imlib2@1.4.0-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.0-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-5187" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ssx6-wnpf-23cs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/101509?format=api", "vulnerability_id": "VCID-uanv-5fe6-rfg4", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01098", "scoring_system": "epss", "scoring_elements": "0.78431", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=639414", "reference_id": "639414", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=639414" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47499?format=api", "purl": "pkg:deb/debian/imlib2@1.4.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-5326" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uanv-5fe6-rfg4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/1221?format=api", "vulnerability_id": "VCID-us5n-endc-xuf1", "summary": "", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01098", "scoring_system": "epss", "scoring_elements": "0.78431", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5326" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9771" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3993" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3994" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4024" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819818", "reference_id": "819818", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819818" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47499?format=api", "purl": "pkg:deb/debian/imlib2@1.4.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2016-3993" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-us5n-endc-xuf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/181870?format=api", "vulnerability_id": "VCID-wdgt-9vcu-tqfu", "summary": "imlib2 contains several vulnerabilities that could lead to the remote\n execution of arbitrary code or a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4807.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4807.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4807", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03253", "scoring_system": "epss", "scoring_elements": "0.8742", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4807" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4807", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4807" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371", "reference_id": "397371", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371" }, { "reference_url": "https://security.gentoo.org/glsa/200612-20", "reference_id": "GLSA-200612-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200612-20" }, { "reference_url": "https://usn.ubuntu.com/376-1/", "reference_id": "USN-376-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/376-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47494?format=api", "purl": "pkg:deb/debian/imlib2@1.3.0.0debian1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.3.0.0debian1-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-4807" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdgt-9vcu-tqfu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/114256?format=api", "vulnerability_id": "VCID-wrz5-4t8m-7qcz", "summary": "security update", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9764", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01599", "scoring_system": "epss", "scoring_elements": "0.82108", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-9764" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9762" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9763" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9764" }, { "reference_url": "https://security.gentoo.org/glsa/201611-12", "reference_id": "GLSA-201611-12", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201611-12" }, { "reference_url": "https://usn.ubuntu.com/3075-1/", "reference_id": "USN-3075-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3075-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47503?format=api", "purl": "pkg:deb/debian/imlib2@1.4.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-9764" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrz5-4t8m-7qcz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/201291?format=api", "vulnerability_id": "VCID-wykv-qwzu-13hh", "summary": "imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to \"several heap and stack based buffer overflows - partly due to integer overflows.\"", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-6079.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-6079.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-6079", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02022", "scoring_system": "epss", "scoring_elements": "0.84138", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-6079" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6079", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6079" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=467838", "reference_id": "467838", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=467838" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469", "reference_id": "576469", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576469" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47497?format=api", "purl": "pkg:deb/debian/imlib2@1.4.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-6079" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wykv-qwzu-13hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/177633?format=api", "vulnerability_id": "VCID-zaqf-bevh-dyhv", "summary": "Two vulnerabilities in Imlib 2 may allow for the execution of arbitrary\n code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2426.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2426.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2426", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07262", "scoring_system": "epss", "scoring_elements": "0.91824", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2426" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2426", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2426" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=449073", "reference_id": "449073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=449073" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=483816", "reference_id": "483816", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=483816" }, { "reference_url": "https://security.gentoo.org/glsa/200806-03", "reference_id": "GLSA-200806-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-03" }, { "reference_url": "https://usn.ubuntu.com/697-1/", "reference_id": "USN-697-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/697-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47495?format=api", "purl": "pkg:deb/debian/imlib2@1.4.0-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.4.0-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-2426" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zaqf-bevh-dyhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/181869?format=api", "vulnerability_id": "VCID-zgs9-gz4m-vyb2", "summary": "imlib2 contains several vulnerabilities that could lead to the remote\n execution of arbitrary code or a Denial of Service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4806.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10166", "scoring_system": "epss", "scoring_elements": "0.93282", "published_at": "2026-06-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4806" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371", "reference_id": "397371", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397371" }, { "reference_url": "https://security.gentoo.org/glsa/200612-20", "reference_id": "GLSA-200612-20", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200612-20" }, { "reference_url": "https://usn.ubuntu.com/376-1/", "reference_id": "USN-376-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/376-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/47494?format=api", "purl": "pkg:deb/debian/imlib2@1.3.0.0debian1-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.3.0.0debian1-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47484?format=api", "purl": "pkg:deb/debian/imlib2@1.7.1-2%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.7.1-2%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47480?format=api", "purl": "pkg:deb/debian/imlib2@1.10.0-4%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47489?format=api", "purl": "pkg:deb/debian/imlib2@1.12.4-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.4-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/47487?format=api", "purl": "pkg:deb/debian/imlib2@1.12.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.12.6-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-4806" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zgs9-gz4m-vyb2" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/imlib2@1.10.0-4%252Bdeb12u1%3Fdistro=trixie" }