Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-fhu5-ad1t-bubx

Summary

Improper Restriction of Operations within the Bounds of a Memory Buffer
Buffer overflow in the png_set_PLTE function in libpng  allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a small bit-depth value in an IHDR (aka image header) chunk in a PNG image. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8126.

Aliases

alias	CVE-2015-8472

Fixed_packages

url pkg:deb/debian/libpng@1.2.49-1%2Bdeb7u2

purl pkg:deb/debian/libpng@1.2.49-1%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.49-1%252Bdeb7u2

url	pkg:deb/debian/libpng@1.2.50-2%2Bdeb8u3
purl	pkg:deb/debian/libpng@1.2.50-2%2Bdeb8u3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.50-2%252Bdeb8u3

url	pkg:deb/debian/libpng1.6@1.6.20-1?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.20-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.20-1%3Fdistro=trixie

url pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie

purl pkg:deb/debian/libpng1.6@1.6.37-3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5q66-zeyz-rfdb

vulnerability	VCID-5rgq-xe5s-kkfc

vulnerability	VCID-gk3z-6dp9-73cd

vulnerability	VCID-gtdx-fb61-ykbv

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.37-3%3Fdistro=trixie

url pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/libpng1.6@1.6.39-2%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5q66-zeyz-rfdb

vulnerability	VCID-gtdx-fb61-ykbv

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.39-2%252Bdeb12u5%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.48-1%2Bdeb13u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.48-1%252Bdeb13u5%3Fdistro=trixie

url	pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
purl	pkg:deb/debian/libpng1.6@1.6.58-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng1.6@1.6.58-1%3Fdistro=trixie

url pkg:nuget/libpng@1.6.18.1

purl pkg:nuget/libpng@1.6.18.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fmt1-496f-9qf3

vulnerability	VCID-y21n-ekwz-ayep

vulnerability	VCID-yk3y-m6rn-ukbd

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.6.18.1

Affected_packages

url pkg:deb/debian/libpng@1.0.0-0.1

purl pkg:deb/debian/libpng@1.0.0-0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.0.0-0.1

url pkg:deb/debian/libpng@1.0.2b-0.1

purl pkg:deb/debian/libpng@1.0.2b-0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.0.2b-0.1

url pkg:deb/debian/libpng@1.0.12-3.woody.9

purl pkg:deb/debian/libpng@1.0.12-3.woody.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.0.12-3.woody.9

url pkg:deb/debian/libpng@1.0.18-1

purl pkg:deb/debian/libpng@1.0.18-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.0.18-1

url pkg:deb/debian/libpng@1.2.15~beta5-1

purl pkg:deb/debian/libpng@1.2.15~beta5-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.15~beta5-1

url pkg:deb/debian/libpng@1.2.15~beta5-1%2Betch2

purl pkg:deb/debian/libpng@1.2.15~beta5-1%2Betch2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.15~beta5-1%252Betch2

url pkg:deb/debian/libpng@1.2.27-2%2Blenny5

purl pkg:deb/debian/libpng@1.2.27-2%2Blenny5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.27-2%252Blenny5

url pkg:deb/debian/libpng@1.2.44-1%2Bsqueeze4

purl pkg:deb/debian/libpng@1.2.44-1%2Bsqueeze4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.44-1%252Bsqueeze4

url pkg:deb/debian/libpng@1.2.44-1%2Bsqueeze6

purl pkg:deb/debian/libpng@1.2.44-1%2Bsqueeze6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.44-1%252Bsqueeze6

url pkg:deb/debian/libpng@1.2.49-1%2Bdeb7u2

purl pkg:deb/debian/libpng@1.2.49-1%2Bdeb7u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.49-1%252Bdeb7u2

url pkg:deb/debian/libpng@1.2.50-2

purl pkg:deb/debian/libpng@1.2.50-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libpng@1.2.50-2

url pkg:nuget/libpng@1.0.64

purl pkg:nuget/libpng@1.0.64

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.0.64

url pkg:nuget/libpng@1.5.10.9

purl pkg:nuget/libpng@1.5.10.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9whv-nakg-7uep

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-fmt1-496f-9qf3

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-y21n-ekwz-ayep

vulnerability	VCID-yfe1-js79-y3hv

vulnerability	VCID-yk3y-m6rn-ukbd

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.5.10.9

url pkg:nuget/libpng@1.5.10.11

purl pkg:nuget/libpng@1.5.10.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9whv-nakg-7uep

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-fmt1-496f-9qf3

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-y21n-ekwz-ayep

vulnerability	VCID-yfe1-js79-y3hv

vulnerability	VCID-yk3y-m6rn-ukbd

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.5.10.11

url pkg:nuget/libpng@1.5.10.13

purl pkg:nuget/libpng@1.5.10.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9whv-nakg-7uep

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-fmt1-496f-9qf3

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-y21n-ekwz-ayep

vulnerability	VCID-yfe1-js79-y3hv

vulnerability	VCID-yk3y-m6rn-ukbd

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.5.10.13

url pkg:nuget/libpng@1.6.6

purl pkg:nuget/libpng@1.6.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/libpng@1.6.6

url pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1?arch=el5

purl pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1%3Farch=el5

url pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1?arch=el6_7

purl pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-ibm@1:1.6.0.16.20-1jpp.1%3Farch=el6_7

url pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3?arch=el6_7

purl pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3%3Farch=el6_7

url pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3?arch=el5_11

purl pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3?arch=el5_11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.6.0-sun@1:1.6.0.111-1jpp.3%3Farch=el5_11

url pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.30-1jpp.1?arch=el5

purl pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.30-1jpp.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.30-1jpp.1%3Farch=el5

url pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.40-1jpp.1?arch=el5

purl pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.40-1jpp.1?arch=el5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18k6-m8r3-hqe9

vulnerability	VCID-2ggk-ruwd-ukbb

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-3hng-5n5z-7faw

vulnerability	VCID-3n4u-ey7g-uygu

vulnerability	VCID-4mmp-rx6d-77gg

vulnerability	VCID-5mnb-3rr2-abfa

vulnerability	VCID-69e8-3nzj-w3es

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-8rxt-8gjb-m7h8

vulnerability	VCID-bkd7-2ykp-17bf

vulnerability	VCID-drnp-42fd-gucn

vulnerability	VCID-e1nx-bgcd-dbh2

vulnerability	VCID-fbh3-d5uy-jbbf

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-gz8b-5fw4-1qfu

vulnerability	VCID-k9a7-m2a8-g7b9

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-meha-t254-u7gn

vulnerability	VCID-mwt7-s82h-3bcs

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-qbdy-bkkp-qufn

vulnerability	VCID-qewe-eez4-n3gh

vulnerability	VCID-qq4y-fhru-8kgw

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-rnu5-pfjp-7qa1

vulnerability	VCID-s3r7-mezb-cbce

vulnerability	VCID-swg9-xqr4-cqd9

vulnerability	VCID-u1px-fgqu-cyd5

vulnerability	VCID-u48r-qufx-rkeu

vulnerability	VCID-uhfg-g9xr-vqb9

vulnerability	VCID-v8qb-njk7-53ae

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-xyz5-6u8j-zqb7

vulnerability	VCID-yd8g-f8g7-yfb1

vulnerability	VCID-z7uy-uene-gkb8

vulnerability	VCID-z7y1-aw1c-cqed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-ibm@1:1.7.0.9.40-1jpp.1%3Farch=el5

url pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1?arch=el5_11

purl pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1?arch=el5_11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1%3Farch=el5_11

url pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1?arch=el6_7

purl pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.1%3Farch=el6_7

url pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.2?arch=el7

purl pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.2?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.0-oracle@1:1.7.0.95-1jpp.2%3Farch=el7

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.2?arch=el6_7

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.2?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.30-1jpp.2%3Farch=el6_7

url pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.40-1jpp.1?arch=el6_7

purl pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.40-1jpp.1?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18k6-m8r3-hqe9

vulnerability	VCID-2ggk-ruwd-ukbb

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-3hng-5n5z-7faw

vulnerability	VCID-3n4u-ey7g-uygu

vulnerability	VCID-4mmp-rx6d-77gg

vulnerability	VCID-5mnb-3rr2-abfa

vulnerability	VCID-69e8-3nzj-w3es

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-8rxt-8gjb-m7h8

vulnerability	VCID-bkd7-2ykp-17bf

vulnerability	VCID-drnp-42fd-gucn

vulnerability	VCID-e1nx-bgcd-dbh2

vulnerability	VCID-fbh3-d5uy-jbbf

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-gz8b-5fw4-1qfu

vulnerability	VCID-k9a7-m2a8-g7b9

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-meha-t254-u7gn

vulnerability	VCID-mwt7-s82h-3bcs

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-qbdy-bkkp-qufn

vulnerability	VCID-qewe-eez4-n3gh

vulnerability	VCID-qq4y-fhru-8kgw

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-rnu5-pfjp-7qa1

vulnerability	VCID-s3r7-mezb-cbce

vulnerability	VCID-swg9-xqr4-cqd9

vulnerability	VCID-u1px-fgqu-cyd5

vulnerability	VCID-u48r-qufx-rkeu

vulnerability	VCID-uhfg-g9xr-vqb9

vulnerability	VCID-v8qb-njk7-53ae

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-xyz5-6u8j-zqb7

vulnerability	VCID-yd8g-f8g7-yfb1

vulnerability	VCID-z7uy-uene-gkb8

vulnerability	VCID-z7y1-aw1c-cqed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.7.1-ibm@1:1.7.1.3.40-1jpp.1%3Farch=el6_7

url pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.2.10-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.2.10-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-nygp-1w75-mqfn

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-ibm@1:1.8.0.2.10-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1?arch=el7

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-nygp-1w75-mqfn

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1%3Farch=el7

url pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1?arch=el6_7

purl pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-nygp-1w75-mqfn

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/java-1.8.0-oracle@1:1.8.0.71-1jpp.1%3Farch=el6_7

url pkg:rpm/redhat/libpng@2:1.2.49-2?arch=el6_7

purl pkg:rpm/redhat/libpng@2:1.2.49-2?arch=el6_7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.2.49-2%3Farch=el6_7

url pkg:rpm/redhat/libpng@2:1.5.13-7?arch=el7_2

purl pkg:rpm/redhat/libpng@2:1.5.13-7?arch=el7_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng@2:1.5.13-7%3Farch=el7_2

url pkg:rpm/redhat/libpng12@1.2.50-7?arch=el7_2

purl pkg:rpm/redhat/libpng12@1.2.50-7?arch=el7_2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-z7uy-uene-gkb8

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/libpng12@1.2.50-7%3Farch=el7_2

url pkg:rpm/redhat/spacewalk-java@2.0.2-109?arch=el5sat

purl pkg:rpm/redhat/spacewalk-java@2.0.2-109?arch=el5sat

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18k6-m8r3-hqe9

vulnerability	VCID-2ggk-ruwd-ukbb

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-3hng-5n5z-7faw

vulnerability	VCID-3n4u-ey7g-uygu

vulnerability	VCID-4mmp-rx6d-77gg

vulnerability	VCID-5mnb-3rr2-abfa

vulnerability	VCID-69e8-3nzj-w3es

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-8rxt-8gjb-m7h8

vulnerability	VCID-bkd7-2ykp-17bf

vulnerability	VCID-drnp-42fd-gucn

vulnerability	VCID-e1nx-bgcd-dbh2

vulnerability	VCID-fbh3-d5uy-jbbf

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-gz8b-5fw4-1qfu

vulnerability	VCID-k9a7-m2a8-g7b9

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-meha-t254-u7gn

vulnerability	VCID-mwt7-s82h-3bcs

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-qbdy-bkkp-qufn

vulnerability	VCID-qewe-eez4-n3gh

vulnerability	VCID-qq4y-fhru-8kgw

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-rnu5-pfjp-7qa1

vulnerability	VCID-s3r7-mezb-cbce

vulnerability	VCID-swg9-xqr4-cqd9

vulnerability	VCID-u1px-fgqu-cyd5

vulnerability	VCID-u48r-qufx-rkeu

vulnerability	VCID-uhfg-g9xr-vqb9

vulnerability	VCID-v8qb-njk7-53ae

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-xyz5-6u8j-zqb7

vulnerability	VCID-yd8g-f8g7-yfb1

vulnerability	VCID-z7uy-uene-gkb8

vulnerability	VCID-z7y1-aw1c-cqed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/spacewalk-java@2.0.2-109%3Farch=el5sat

url pkg:rpm/redhat/spacewalk-java@2.3.8-146?arch=el6sat

purl pkg:rpm/redhat/spacewalk-java@2.3.8-146?arch=el6sat

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-18k6-m8r3-hqe9

vulnerability	VCID-2ggk-ruwd-ukbb

vulnerability	VCID-33gv-gtx1-1ya7

vulnerability	VCID-349d-wsmy-quhk

vulnerability	VCID-3hng-5n5z-7faw

vulnerability	VCID-3n4u-ey7g-uygu

vulnerability	VCID-4mmp-rx6d-77gg

vulnerability	VCID-5mnb-3rr2-abfa

vulnerability	VCID-69e8-3nzj-w3es

vulnerability	VCID-6grx-g6uw-yybd

vulnerability	VCID-81zk-xrsj-cufe

vulnerability	VCID-8rxt-8gjb-m7h8

vulnerability	VCID-bkd7-2ykp-17bf

vulnerability	VCID-drnp-42fd-gucn

vulnerability	VCID-e1nx-bgcd-dbh2

vulnerability	VCID-fbh3-d5uy-jbbf

vulnerability	VCID-fhu5-ad1t-bubx

vulnerability	VCID-gz8b-5fw4-1qfu

vulnerability	VCID-k9a7-m2a8-g7b9

vulnerability	VCID-kjgx-4qsy-myb5

vulnerability	VCID-meha-t254-u7gn

vulnerability	VCID-mwt7-s82h-3bcs

vulnerability	VCID-n5g7-w6qw-bkft

vulnerability	VCID-p2gz-v2eb-n3bs

vulnerability	VCID-qbdy-bkkp-qufn

vulnerability	VCID-qewe-eez4-n3gh

vulnerability	VCID-qq4y-fhru-8kgw

vulnerability	VCID-ramh-2g3a-t7a7

vulnerability	VCID-rnu5-pfjp-7qa1

vulnerability	VCID-s3r7-mezb-cbce

vulnerability	VCID-swg9-xqr4-cqd9

vulnerability	VCID-u1px-fgqu-cyd5

vulnerability	VCID-u48r-qufx-rkeu

vulnerability	VCID-uhfg-g9xr-vqb9

vulnerability	VCID-v8qb-njk7-53ae

vulnerability	VCID-x39f-cumm-1ue1

vulnerability	VCID-xyz5-6u8j-zqb7

vulnerability	VCID-yd8g-f8g7-yfb1

vulnerability	VCID-z7uy-uene-gkb8

vulnerability	VCID-z7y1-aw1c-cqed

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/spacewalk-java@2.3.8-146%3Farch=el6sat

References

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8472.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-8472.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-8472

reference_id

reference_type

scores

value	0.04094
scoring_system	epss
scoring_elements	0.8878
published_at	2026-06-04T12:55:00Z

value	0.04094
scoring_system	epss
scoring_elements	0.88797
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-8472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8540

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1281756
reference_id	1281756
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1281756

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807112
reference_id	807112
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807112

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2015-8472
reference_id	CVE-2015-8472
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2015-8472

reference_url	https://access.redhat.com/errata/RHSA-2015:2594
reference_id	RHSA-2015:2594
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2594

reference_url	https://access.redhat.com/errata/RHSA-2015:2595
reference_id	RHSA-2015:2595
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2595

reference_url	https://access.redhat.com/errata/RHSA-2015:2596
reference_id	RHSA-2015:2596
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:2596

reference_url	https://access.redhat.com/errata/RHSA-2016:0055
reference_id	RHSA-2016:0055
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0055

reference_url	https://access.redhat.com/errata/RHSA-2016:0056
reference_id	RHSA-2016:0056
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0056

reference_url	https://access.redhat.com/errata/RHSA-2016:0057
reference_id	RHSA-2016:0057
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0057

reference_url	https://access.redhat.com/errata/RHSA-2016:0098
reference_id	RHSA-2016:0098
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0098

reference_url	https://access.redhat.com/errata/RHSA-2016:0099
reference_id	RHSA-2016:0099
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0099

reference_url	https://access.redhat.com/errata/RHSA-2016:0100
reference_id	RHSA-2016:0100
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0100

reference_url	https://access.redhat.com/errata/RHSA-2016:0101
reference_id	RHSA-2016:0101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:0101

reference_url	https://access.redhat.com/errata/RHSA-2016:1430
reference_id	RHSA-2016:1430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2016:1430

reference_url	https://usn.ubuntu.com/2861-1/
reference_id	USN-2861-1
reference_type
scores
url	https://usn.ubuntu.com/2861-1/

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	119
name	Improper Restriction of Operations within the Bounds of a Memory Buffer
description	The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	120
name	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
description	The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

Exploits

Severity_range_score null

Exploitability 0.5

Weighted_severity 0.0

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fhu5-ad1t-bubx

Vulnerability Instance