Search for packages
Package details: pkg:deb/debian/apr-util@1.4.1-3
purl pkg:deb/debian/apr-util@1.4.1-3
Next non-vulnerable version 1.6.1-5+deb11u1
Latest non-vulnerable version 1.6.1-5+deb11u1
Risk 3.1
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-5pbq-sddx-aaar
Aliases:
CVE-2017-12618
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
1.6.1-4
Affected by 1 other vulnerability.
VCID-pchy-8zhu-aaap
Aliases:
CVE-2022-25147
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions.
1.6.1-5+deb11u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:31:46.664055+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T14:50:15.201258+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:48:27.025123+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T07:38:17.325753+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.1.3
2025-06-20T20:36:08.633248+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.1.3
2025-06-08T12:48:16.143684+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:02:13.902845+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T07:43:36.304092+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:43:30.001618+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T01:18:13.118184+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.1.0
2025-06-07T14:08:39.923971+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.1.0
2025-04-12T18:35:11.733069+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:45:09.063120+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T06:16:06.620376+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:15:13.600883+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T23:50:49.872246+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.0.0
2025-04-07T12:42:11.705801+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.0.0