Search for packages
Package details: pkg:deb/debian/apr-util@1.5.4-1
purl pkg:deb/debian/apr-util@1.5.4-1
Next non-vulnerable version 1.6.1-5+deb11u1
Latest non-vulnerable version 1.6.1-5+deb11u1
Risk 3.1
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-5pbq-sddx-aaar
Aliases:
CVE-2017-12618
Apache Portable Runtime Utility (APR-util) 1.6.0 and prior fail to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial of service.
1.6.1-4
Affected by 1 other vulnerability.
VCID-pchy-8zhu-aaap
Aliases:
CVE-2022-25147
Integer Overflow or Wraparound vulnerability in apr_base64 functions of Apache Portable Runtime Utility (APR-util) allows an attacker to write beyond bounds of a buffer. This issue affects Apache Portable Runtime Utility (APR-util) 1.6.1 and prior versions.
1.6.1-5+deb11u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:31:46.666158+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T14:50:15.203017+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:48:27.027285+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T07:38:17.328096+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.1.3
2025-06-20T20:36:08.634928+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.1.3
2025-06-08T12:48:16.145473+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:02:13.904338+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T07:43:36.305613+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:43:30.003106+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T01:18:13.120050+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.1.0
2025-06-07T14:08:39.925479+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.1.0
2025-04-12T18:35:11.737544+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:45:09.068025+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T06:16:06.625391+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:15:13.605743+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T23:50:49.878029+00:00 Debian Oval Importer Affected by VCID-pchy-8zhu-aaap None 36.0.0
2025-04-07T12:42:11.712630+00:00 Debian Oval Importer Affected by VCID-5pbq-sddx-aaar None 36.0.0