{"url":"http://public2.vulnerablecode.io/api/packages/9772?format=json","purl":"pkg:pypi/capstone@3.0.3","type":"pypi","namespace":"","name":"capstone","version":"3.0.3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"3.0.5rc2","latest_non_vulnerable_version":"3.0.5rc2","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/35040?format=json","vulnerability_id":"VCID-drcr-9t7z-63bx","summary":"Integer overflow in the cs_winkernel_malloc function in winkernel_mm.c in Capstone 3.0.4 and earlier allows attackers to cause a denial of service (heap-based buffer overflow in a kernel driver) or possibly have unspecified other impact via a large value.","references":[{"reference_url":"https://github.com/aquynh/capstone/commit/6fe86eef621b9849f51a5e1e5d73258a93440403","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"https://github.com/aquynh/capstone/commit/6fe86eef621b9849f51a5e1e5d73258a93440403"},{"reference_url":"http://www.securityfocus.com/bid/97323","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}],"url":"http://www.securityfocus.com/bid/97323"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/9774?format=json","purl":"pkg:pypi/capstone@3.0.5rc2","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/capstone@3.0.5rc2"}],"aliases":["CVE-2017-6952","PYSEC-2017-113"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-drcr-9t7z-63bx"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:pypi/capstone@3.0.3"}