Search for packages
| purl | pkg:deb/debian/bcel@6.0~rc3-1 |
| Next non-vulnerable version | 6.5.0-1+deb11u1 |
| Latest non-vulnerable version | 6.5.0-1+deb11u1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2kq3-s3q7-vbcn
Aliases: CVE-2022-42920 GHSA-97xg-phpr-rg8q |
Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllable data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected. Update to Apache Commons BCEL 6.6.0. |
Affected by 0 other vulnerabilities. |
|
VCID-nx7d-y26j-t3bk
Aliases: CVE-2022-34169 GHSA-9339-86wc-4qgf |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-08-01T16:22:50.125951+00:00 | Debian Oval Importer | Affected by | VCID-2kq3-s3q7-vbcn | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |
| 2025-08-01T12:22:51.700647+00:00 | Debian Oval Importer | Affected by | VCID-nx7d-y26j-t3bk | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 37.0.0 |