Search for packages
Package details: pkg:deb/debian/bzip2@1.0.6-8.1
purl pkg:deb/debian/bzip2@1.0.6-8.1
Next non-vulnerable version 1.0.6-9.2~deb10u1
Latest non-vulnerable version 1.0.6-9.2~deb10u1
Risk 4.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-8urm-9ubj-aaac
Aliases:
CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.
1.0.6-9
Affected by 1 other vulnerability.
1.0.6-9.2~deb10u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-ftyp-se1c-aaab Use-after-free vulnerability in bzip2recover in bzip2 1.0.6 allows remote attackers to cause a denial of service (crash) via a crafted bzip2 file, related to block ends set to before the start of the block. CVE-2016-3189

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-22T12:54:09.384157+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 36.1.3
2025-06-21T14:21:35.900334+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:33:59.105041+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T01:07:02.447651+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac None 36.1.3
2025-06-20T22:00:41.823604+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab None 36.1.3
2025-06-08T07:14:42.889478+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:28:02.546134+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T18:29:38.482418+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac None 36.1.0
2025-06-07T15:24:16.101907+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab None 36.1.0
2025-04-12T21:52:54.619841+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:47:12.648955+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T05:47:16.713594+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:00:21.342782+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T17:07:18.230116+00:00 Debian Oval Importer Affected by VCID-8urm-9ubj-aaac None 36.0.0
2025-04-07T13:55:34.104896+00:00 Debian Oval Importer Fixing VCID-ftyp-se1c-aaab None 36.0.0
2025-04-06T06:19:24.388592+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 36.0.0
2025-02-19T05:46:02.591322+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 35.1.0
2024-04-24T14:05:58.919808+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 34.0.0rc4
2024-01-10T16:48:57.483077+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 34.0.0rc2
2024-01-04T06:31:11.459201+00:00 Debian Importer Affected by VCID-8urm-9ubj-aaac None 34.0.0rc1