VulnerableCode Package Details - pkg:alpm/archlinux/apr@1.6.2-1

Search for packages

Package details: pkg:alpm/archlinux/apr@1.6.2-1

Essentials
History (3)

purl	pkg:alpm/archlinux/apr@1.6.2-1

Next non-vulnerable version	1.6.3-1
Latest non-vulnerable version	1.6.3-1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-7ctq-1dck-aaap Aliases: CVE-2017-12613	When apr_time_exp() or apr_os_exp_time() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input.	1.6.3-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:56.900818+00:00	Arch Linux Importer	Affected by	VCID-7ctq-1dck-aaap	https://security.archlinux.org/AVG-469	36.0.0
2024-09-18T02:02:18.249986+00:00	Arch Linux Importer	Affected by	VCID-7ctq-1dck-aaap	https://security.archlinux.org/AVG-469	34.0.1
2024-01-03T22:28:20.062305+00:00	Arch Linux Importer	Affected by	VCID-7ctq-1dck-aaap	https://security.archlinux.org/AVG-469	34.0.0rc1