VulnerableCode Package Details - pkg:deb/debian/poco@1.7.6%2Bdfsg1-5%2Bdeb9u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/poco@1.7.6%2Bdfsg1-5%2Bdeb9u1

purl	pkg:deb/debian/poco@1.7.6%2Bdfsg1-5%2Bdeb9u1

Next non-vulnerable version	1.14.2-6
Latest non-vulnerable version	1.14.2-6
Risk	4.4

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-2yhr-1v3n-p7a4 Aliases: CVE-2023-52389	Integer Overflow or Wraparound UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer overflow because Poco::UTF32Encoding::convert() and Poco::UTF32::queryConvert() may return a negative integer if a UTF-32 byte sequence evaluates to a value of 0x80000000 or higher. This is fixed in 1.11.8p2, 1.12.5p2, and 1.13.0.	1.11.0-3+deb12u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-9tkd-v4dq-2bd4 Aliases: CVE-2017-1000472	security update	1.9.0-5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-9tkd-v4dq-2bd4	security update	CVE-2017-1000472

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:46:31.016736+00:00	Debian Oval Importer	Affected by	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:50:12.446143+00:00	Debian Oval Importer	Affected by	VCID-2yhr-1v3n-p7a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T14:35:55.034947+00:00	Debian Oval Importer	Fixing	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-11T23:21:07.354979+00:00	Debian Oval Importer	Affected by	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:36:13.973726+00:00	Debian Oval Importer	Affected by	VCID-2yhr-1v3n-p7a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:24:11.722839+00:00	Debian Oval Importer	Fixing	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-08T22:54:25.189372+00:00	Debian Oval Importer	Affected by	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:23:44.985543+00:00	Debian Oval Importer	Affected by	VCID-2yhr-1v3n-p7a4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T22:57:43.626460+00:00	Debian Oval Importer	Fixing	VCID-9tkd-v4dq-2bd4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0