Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/libtool@1.5.26-4%2Blenny1

Type deb

Namespace debian

Name libtool

Version 1.5.26-4+lenny1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 2.2.6b-2

Latest_non_vulnerable_version 2.2.6b-2

Affected_by_vulnerabilities

url VCID-crrp-38db-67ez

vulnerability_id VCID-crrp-38db-67ez

summary ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3736.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3736

reference_id

reference_type

scores

value	0.00121
scoring_system	epss
scoring_elements	0.30649
published_at	2026-06-04T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30722
published_at	2026-06-05T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30689
published_at	2026-06-06T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30656
published_at	2026-06-07T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30624
published_at	2026-06-08T12:55:00Z

value	0.00121
scoring_system	epss
scoring_elements	0.30641
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3736

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3736

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=537941
reference_id	537941
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=537941

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797
reference_id	559797
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559797

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801
reference_id	559801
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559801

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806
reference_id	559806
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559806

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809
reference_id	559809
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559809

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811
reference_id	559811
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559811

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814
reference_id	559814
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559814

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815
reference_id	559815
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559815

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816
reference_id	559816
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559816

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819
reference_id	559819
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559819

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822
reference_id	559822
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559822

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824
reference_id	559824
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559824

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825
reference_id	559825
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559825

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826
reference_id	559826
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559826

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829
reference_id	559829
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559829

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831
reference_id	559831
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559831

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832
reference_id	559832
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559832

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833
reference_id	559833
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559833

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834
reference_id	559834
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559834

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835
reference_id	559835
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559835

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836
reference_id	559836
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559836

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837
reference_id	559837
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559837

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840
reference_id	559840
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559840

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844
reference_id	559844
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559844

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845
reference_id	559845
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559845

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436
reference_id	702436
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702436

reference_url	https://security.gentoo.org/glsa/201311-10
reference_id	GLSA-201311-10
reference_type
scores
url	https://security.gentoo.org/glsa/201311-10

reference_url	https://security.gentoo.org/glsa/201412-08
reference_id	GLSA-201412-08
reference_type
scores
url	https://security.gentoo.org/glsa/201412-08

reference_url	https://access.redhat.com/errata/RHSA-2009:1646
reference_id	RHSA-2009:1646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1646

reference_url	https://access.redhat.com/errata/RHSA-2010:0039
reference_id	RHSA-2010:0039
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0039

fixed_packages

url	pkg:deb/debian/libtool@2.2.6b-2
purl	pkg:deb/debian/libtool@2.2.6b-2
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtool@2.2.6b-2

aliases CVE-2009-3736

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-crrp-38db-67ez

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libtool@1.5.26-4%252Blenny1

Package Instance