Search for packages
Package details: pkg:deb/debian/musl@1.1.21-2
purl pkg:deb/debian/musl@1.1.21-2
Next non-vulnerable version 1.2.5-3
Latest non-vulnerable version 1.2.5-3
Risk 4.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-axyb-6k5x-aaak
Aliases:
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).
1.2.2-1
Affected by 1 other vulnerability.
VCID-kppj-ay2n-aaap
Aliases:
CVE-2019-14697
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.
1.2.2-1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-svkm-2b47-aaaq musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query. CVE-2017-15650

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T17:21:12.773414+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 36.1.3
2025-06-21T11:39:09.931426+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T04:16:13.936850+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.1.3
2025-06-21T04:01:05.891809+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.1.3
2025-06-21T01:33:45.337017+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-21T01:17:09.229723+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq None 36.1.3
2025-06-20T23:05:17.204405+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 36.1.3
2025-06-20T21:05:41.810804+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-08T04:56:17.725110+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T21:52:05.291087+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.1.0
2025-06-07T21:36:26.285988+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.1.0
2025-06-07T18:39:51.449103+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq None 36.1.0
2025-04-12T22:20:14.827880+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T22:02:16.831345+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:24:56.779575+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T03:27:21.613327+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T20:22:25.543638+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.0.0
2025-04-07T20:05:49.595386+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.0.0
2025-04-07T17:17:40.517937+00:00 Debian Oval Importer Fixing VCID-svkm-2b47-aaaq None 36.0.0
2025-04-06T13:04:55.331059+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 36.0.0
2025-04-05T13:41:30.352156+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 36.0.0
2025-04-04T04:18:11.678635+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-04-04T01:45:04.790815+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 36.0.0
2025-04-03T23:45:39.671334+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-19T16:14:43.713893+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-19T16:14:43.032428+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 35.1.0
2025-02-19T06:46:55.513644+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 35.1.0
2025-02-19T06:46:53.429792+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 35.1.0
2025-02-18T20:53:32.963475+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 35.1.0
2024-11-22T04:12:42.135047+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-11-22T04:12:40.059517+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 35.0.0
2024-11-21T18:39:41.215490+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 35.0.0
2024-11-20T02:50:49.127108+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.3.2
2024-11-20T02:50:47.052554+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.3.2
2024-11-19T17:54:40.659761+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.3.2
2024-10-09T03:46:18.057487+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-10-09T03:46:15.940352+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.2
2024-10-08T19:20:56.773268+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.0.2
2024-09-18T15:12:06.446873+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.0.1
2024-09-18T15:12:04.365628+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.1
2024-09-18T07:25:08.763126+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.0.1
2024-04-24T19:37:41.436284+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T19:37:40.587843+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 34.0.0rc4
2024-04-24T14:31:31.738639+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.0.0rc4
2024-04-24T14:31:29.465352+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc4
2024-04-24T11:04:35.100398+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.0.0rc4
2024-01-10T21:04:34.363886+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T21:04:31.110341+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 34.0.0rc2
2024-01-10T17:12:44.485225+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.0.0rc2
2024-01-10T17:12:42.137852+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc2
2024-01-10T12:54:24.094333+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.0.0rc2
2024-01-04T10:22:18.079348+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T10:22:14.914832+00:00 Debian Importer Affected by VCID-axyb-6k5x-aaak None 34.0.0rc1
2024-01-04T06:53:14.216621+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap https://security-tracker.debian.org/tracker/data/json 34.0.0rc1
2024-01-04T06:53:11.828788+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc1
2024-01-04T04:28:47.020696+00:00 Debian Importer Fixing VCID-svkm-2b47-aaaq None 34.0.0rc1