Search for packages
| purl | pkg:deb/debian/pound@2.6-6 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4qww-3wn9-aaag
Aliases: CVE-2014-3566 |
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. |
Affected by 3 other vulnerabilities. |
|
VCID-55ga-282t-aaah
Aliases: CVE-2009-3555 GHSA-f7w7-6pjc-wwm6 VC-OPENSSL-20091105-CVE-2009-3555 VU#120541 |
The renegotiation vulnerability in SSL protocol |
Affected by 3 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-835z-95xm-aaas
Aliases: CVE-2018-21245 |
Pound before 2.8 allows HTTP request smuggling, a related issue to CVE-2016-10711. |
Affected by 0 other vulnerabilities. |
|
VCID-9dxv-6zus-aaan
Aliases: CVE-2012-4929 |
The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack. |
Affected by 3 other vulnerabilities. |
|
VCID-ekez-5d4t-aaaf
Aliases: CVE-2016-10711 |
Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4qww-3wn9-aaag | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue. |
CVE-2014-3566
|
| VCID-9dxv-6zus-aaan | The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack. |
CVE-2012-4929
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T09:59:54.151895+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T09:51:10.022564+00:00 | Debian Oval Importer | Affected by | VCID-4qww-3wn9-aaag | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T09:34:28.936438+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T06:28:38.296431+00:00 | Debian Oval Importer | Affected by | VCID-ekez-5d4t-aaaf | None | 36.1.3 |
| 2025-06-21T05:03:19.220637+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | None | 36.1.3 |
| 2025-06-21T04:40:38.275070+00:00 | Debian Oval Importer | Affected by | VCID-835z-95xm-aaas | None | 36.1.3 |
| 2025-06-21T04:30:15.917948+00:00 | Debian Oval Importer | Fixing | VCID-4qww-3wn9-aaag | None | 36.1.3 |
| 2025-06-20T19:48:11.265826+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | None | 36.1.3 |
| 2025-06-08T12:02:18.111886+00:00 | Debian Oval Importer | Affected by | VCID-835z-95xm-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T03:48:59.697337+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-08T03:39:49.675986+00:00 | Debian Oval Importer | Affected by | VCID-4qww-3wn9-aaag | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-08T03:23:03.263682+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-08T00:07:50.786612+00:00 | Debian Oval Importer | Affected by | VCID-ekez-5d4t-aaaf | None | 36.1.0 |
| 2025-06-07T22:40:47.645443+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | None | 36.1.0 |
| 2025-06-07T22:17:29.614028+00:00 | Debian Oval Importer | Affected by | VCID-835z-95xm-aaas | None | 36.1.0 |
| 2025-06-07T22:06:39.586188+00:00 | Debian Oval Importer | Fixing | VCID-4qww-3wn9-aaag | None | 36.1.0 |
| 2025-06-07T13:40:17.544436+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | None | 36.1.0 |
| 2025-04-12T21:22:48.371507+00:00 | Debian Oval Importer | Fixing | VCID-4qww-3wn9-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:43:38.372328+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:46:27.271508+00:00 | Debian Oval Importer | Affected by | VCID-ekez-5d4t-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:40:10.543060+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:47:39.558937+00:00 | Debian Oval Importer | Affected by | VCID-835z-95xm-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T02:16:47.525947+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-08T02:07:38.316651+00:00 | Debian Oval Importer | Affected by | VCID-4qww-3wn9-aaag | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-08T01:50:26.333960+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-07T22:40:10.140965+00:00 | Debian Oval Importer | Affected by | VCID-ekez-5d4t-aaaf | None | 36.0.0 |
| 2025-04-07T21:12:28.937987+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | None | 36.0.0 |
| 2025-04-07T20:48:58.341173+00:00 | Debian Oval Importer | Affected by | VCID-835z-95xm-aaas | None | 36.0.0 |
| 2025-04-07T20:37:59.457962+00:00 | Debian Oval Importer | Fixing | VCID-4qww-3wn9-aaag | None | 36.0.0 |
| 2025-04-07T12:15:38.633545+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | None | 36.0.0 |
| 2024-11-29T08:54:17.707856+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-29T08:54:14.073042+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 35.0.0 |
| 2024-11-27T08:00:48.963911+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T08:00:44.683443+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 35.0.0 |
| 2024-10-14T16:39:39.966086+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-14T16:39:36.152187+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 34.0.2 |
| 2024-10-13T04:02:36.043849+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-13T04:02:31.716954+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 34.0.2 |
| 2024-09-21T10:34:35.241526+00:00 | Debian Oval Importer | Fixing | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-21T10:34:31.585496+00:00 | Debian Oval Importer | Affected by | VCID-9dxv-6zus-aaan | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 34.0.1 |
| 2024-09-20T20:07:02.614780+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T20:06:57.647024+00:00 | Debian Oval Importer | Affected by | VCID-55ga-282t-aaah | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 34.0.1 |