Search for packages
Package details: pkg:deb/debian/mono@3.2.8%2Bdfsg-10
purl pkg:deb/debian/mono@3.2.8%2Bdfsg-10
Next non-vulnerable version 6.8.0.105+dfsg-3.3~deb11u1
Latest non-vulnerable version 6.8.0.105+dfsg-3.3~deb11u1
Risk 10.0
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-9hk3-5wyf-aaae
Aliases:
CVE-2023-26314
The mono package before 6.8.0.105+dfsg-3.3 for Debian allows arbitrary code execution because the application/x-ms-dos-executable MIME type is associated with an un-sandboxed Mono CLR interpreter.
6.8.0.105+dfsg-3.3~deb11u1
Affected by 0 other vulnerabilities.
VCID-hq4z-qnux-aaag
Aliases:
CVE-2009-0689
Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
4.6.2.7+dfsg-1
Affected by 2 other vulnerabilities.
VCID-w1m8-n281-aaam
Aliases:
CVE-2018-1002208
GHSA-cqj4-m2pc-v9m5
SharpZipLib before 1.0 RC1 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
5.18.0.240+dfsg-3
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-4gvf-mcv9-aaab The TLS stack in Mono before 3.12.1 allows remote attackers to have unspecified impact via vectors related to client-side SSLv2 fallback. CVE-2015-2320
VCID-6qds-tekv-aaaj The TLS stack in Mono before 3.12.1 makes it easier for remote attackers to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted TLS traffic, related to the "FREAK" issue, a different vulnerability than CVE-2015-0204. CVE-2015-2319
VCID-qs89-w1wn-aaar The TLS stack in Mono before 3.12.1 allows man-in-the-middle attackers to conduct message skipping attacks and consequently impersonate clients by leveraging missing handshake state validation, aka a "SMACK SKIP-TLS" issue. CVE-2015-2318

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:07:50.687822+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:59:13.943622+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:23:24.839558+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:17:03.146540+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:21:06.748250+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:15:03.480276+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:18:51.552571+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:44:51.611078+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:41:26.363500+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T07:40:25.711241+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae None 36.1.3
2025-06-21T00:58:49.700776+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj None 36.1.3
2025-06-20T23:18:48.501173+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar None 36.1.3
2025-06-20T23:10:13.444729+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.1.3
2025-06-20T23:05:25.256723+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam None 36.1.3
2025-06-20T21:44:33.403996+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab None 36.1.3
2025-06-08T11:36:53.622850+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:28:34.862931+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:54:08.445842+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T09:58:17.059981+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:07:16.057314+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:08:51.697874+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:13:24.243804+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:40:11.948811+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:37:22.288832+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T01:20:21.113332+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae None 36.1.0
2025-06-07T18:21:14.235590+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj None 36.1.0
2025-06-07T16:41:47.818237+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar None 36.1.0
2025-06-07T16:33:22.126642+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.1.0
2025-06-07T16:28:36.898667+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam None 36.1.0
2025-06-07T15:07:32.080733+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab None 36.1.0
2025-04-12T21:45:24.907096+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:16:02.039344+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:07:54.650319+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:21:26.886761+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:12:48.572086+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:36:38.791567+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T08:30:30.809457+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:39:04.211940+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:40:51.643871+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:45:36.319782+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:11:52.056019+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:08:55.925497+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T23:53:05.042212+00:00 Debian Oval Importer Affected by VCID-9hk3-5wyf-aaae None 36.0.0
2025-04-07T16:58:50.631255+00:00 Debian Oval Importer Fixing VCID-6qds-tekv-aaaj None 36.0.0
2025-04-07T15:14:13.120444+00:00 Debian Oval Importer Fixing VCID-qs89-w1wn-aaar None 36.0.0
2025-04-07T15:05:27.505492+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.0.0
2025-04-07T15:00:30.553638+00:00 Debian Oval Importer Affected by VCID-w1m8-n281-aaam None 36.0.0
2025-04-07T13:39:16.459410+00:00 Debian Oval Importer Fixing VCID-4gvf-mcv9-aaab None 36.0.0
2024-11-27T01:20:54.510479+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-12T23:28:17.267085+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-20T18:27:21.003122+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1