Search for packages
Package details: pkg:deb/debian/bzr@2.6.0%2Bbzr6595-6%2Bdeb8u1
purl pkg:deb/debian/bzr@2.6.0%2Bbzr6595-6%2Bdeb8u1
Next non-vulnerable version 2.7.0+bzr6622-15
Latest non-vulnerable version 2.7.0+bzr6622-15
Risk 4.2
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-v7ad-3uep-aaar
Aliases:
CVE-2017-14176
Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands via a bzr+ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-16228, CVE-2017-1000116, and CVE-2017-1000117.
2.7.0+bzr6619-7+deb9u1
Affected by 1 other vulnerability.
2.7.0+bzr6622-15
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-v7ad-3uep-aaar Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands via a bzr+ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-16228, CVE-2017-1000116, and CVE-2017-1000117. CVE-2017-14176

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T13:09:35.777664+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T10:53:46.739041+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 36.1.3
2025-06-21T10:05:59.324131+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-20T19:55:13.575759+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar None 36.1.3
2025-06-20T19:51:29.924029+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar None 36.1.3
2025-06-08T06:04:25.895813+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:28:27.858069+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 36.1.0
2025-06-08T03:55:09.176133+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-07T13:45:29.812214+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar None 36.1.0
2025-06-07T13:42:54.137256+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar None 36.1.0
2025-04-12T20:07:52.496090+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T04:36:25.477250+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T02:58:36.746005+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 36.0.0
2025-04-08T02:23:01.221227+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-07T12:20:43.404972+00:00 Debian Oval Importer Affected by VCID-v7ad-3uep-aaar None 36.0.0
2025-04-07T12:18:12.583638+00:00 Debian Oval Importer Fixing VCID-v7ad-3uep-aaar None 36.0.0