VulnerableCode Package Details - pkg:deb/debian/collectd@5.7.0-3~bpo7%2B2

Search for packages

Vulnerability	Summary	Fixed by
VCID-9pq9-7x2w-aaab Aliases: CVE-2017-7401	Incorrect interaction of the parse_packet() and parse_part_sign_sha256() functions in network.c in collectd 5.7.1 and earlier allows remote attackers to cause a denial of service (infinite loop) of a collectd instance (configured with "SecurityLevel None" and with empty "AuthFile" options) via a crafted UDP packet.	5.8.1-1.3 Affected by 0 other vulnerabilities.
VCID-fq4u-zhrw-aaas Aliases: CVE-2017-16820	The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).	5.8.1-1.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-9pq9-7x2w-aaab
Aliases:
CVE-2017-7401

Incorrect interaction of the parse_packet() and parse_part_sign_sha256() functions in network.c in collectd 5.7.1 and earlier allows remote attackers to cause a denial of service (infinite loop) of a collectd instance (configured with "SecurityLevel None" and with empty "AuthFile" options) via a crafted UDP packet.

5.8.1-1.3
Affected by 0 other vulnerabilities.

VCID-fq4u-zhrw-aaas
Aliases:
CVE-2017-16820

The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).

5.8.1-1.3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2rc2-7f1t-aaag	Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.	CVE-2016-6254

Vulnerability

Summary

Aliases

VCID-2rc2-7f1t-aaag

Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet.

CVE-2016-6254

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T18:18:08.225749+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T16:42:03.072848+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:54:32.079324+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T11:19:02.060736+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-20T23:17:21.749594+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	None	36.1.3
2025-06-20T20:29:23.034332+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	None	36.1.3
2025-06-20T20:01:01.635443+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	None	36.1.3
2025-06-08T12:07:29.424704+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T10:49:11.090086+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T09:27:20.709709+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:48:50.662359+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:42:59.424139+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-07T16:40:25.231384+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	None	36.1.0
2025-06-07T14:03:22.341658+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	None	36.1.0
2025-06-07T13:49:54.799437+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	None	36.1.0
2025-04-12T22:30:14.251592+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:53:02.126675+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T16:31:23.888109+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-08T07:59:43.662276+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:21:14.548656+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:14:00.983162+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-07T15:12:46.383332+00:00	Debian Oval Importer	Affected by	VCID-9pq9-7x2w-aaab	None	36.0.0
2025-04-07T12:37:23.984687+00:00	Debian Oval Importer	Affected by	VCID-fq4u-zhrw-aaas	None	36.0.0
2025-04-07T12:24:52.526487+00:00	Debian Oval Importer	Fixing	VCID-2rc2-7f1t-aaag	None	36.0.0