Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/ffmpeg4@4.1.1-r0?arch=loongarch64&distroversion=v3.21&reponame=community

Type apk

Namespace alpine

Name ffmpeg4

Version 4.1.1-r0

Qualifiers

arch	loongarch64
distroversion	v3.21
reponame	community

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.1.3-r0

Latest_non_vulnerable_version 4.4.1-r0

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-b8ar-xfwp-kybk

vulnerability_id VCID-b8ar-xfwp-kybk

summary FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbs_av1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in after commit b97a4b658814b2de8b9f2a3bce491c002d34de31.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-1000016

reference_id

reference_type

scores

value	0.00285
scoring_system	epss
scoring_elements	0.52082
published_at	2026-06-04T12:55:00Z

value	0.00285
scoring_system	epss
scoring_elements	0.52143
published_at	2026-06-05T12:55:00Z

value	0.00285
scoring_system	epss
scoring_elements	0.52152
published_at	2026-06-06T12:55:00Z

value	0.00285
scoring_system	epss
scoring_elements	0.52132
published_at	2026-06-07T12:55:00Z

value	0.00285
scoring_system	epss
scoring_elements	0.521
published_at	2026-06-08T12:55:00Z

value	0.00285
scoring_system	epss
scoring_elements	0.5212
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-1000016

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1000016
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1000016

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922066
reference_id	922066
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922066

fixed_packages

url	pkg:apk/alpine/ffmpeg4@4.1.1-r0?arch=loongarch64&distroversion=v3.21&reponame=community
purl	pkg:apk/alpine/ffmpeg4@4.1.1-r0?arch=loongarch64&distroversion=v3.21&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ffmpeg4@4.1.1-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community

aliases CVE-2019-1000016

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b8ar-xfwp-kybk

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ffmpeg4@4.1.1-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community

Package Instance