Search for packages
Package details: pkg:deb/debian/flightgear@3.0.0-5%2Bdeb8u3
purl pkg:deb/debian/flightgear@3.0.0-5%2Bdeb8u3
Next non-vulnerable version 1:2020.3.16+dfsg-1+deb12u1
Latest non-vulnerable version 1:2020.3.16+dfsg-1+deb12u1
Risk 3.4
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-1j2q-k2gh-pqdk
Aliases:
CVE-2025-0781
An attacker can bypass the sandboxing of Nasal scripts and arbitrarily write to any file path that the user has permission to modify at the operating-system level.
1:2020.3.16+dfsg-1+deb12u1
Affected by 0 other vulnerabilities.
VCID-7txw-7t76-aaab
Aliases:
CVE-2017-8921
In FlightGear before 2017.2.1, the FGCommand interface allows overwriting any file the user has write access to, but not with arbitrary data: only with the contents of a FlightGear flightplan (XML). A resource such as a malicious third-party aircraft could exploit this to damage files belonging to the user. Both this issue and CVE-2016-9956 are directory traversal vulnerabilities in Autopilot/route_mgr.cxx - this one exists because of an incomplete fix for CVE-2016-9956.
1:2016.4.4+dfsg-3+deb9u1
Affected by 2 other vulnerabilities.
VCID-jx8t-94cp-aaas
Aliases:
CVE-2016-9956
The route manager in FlightGear before 2016.4.4 allows remote attackers to write to arbitrary files via a crafted Nasal script.
1:2016.4.4+dfsg-3+deb9u1
Affected by 2 other vulnerabilities.
VCID-vm83-ajzg-aaan
Aliases:
CVE-2017-13709
In FlightGear before version 2017.3.1, Main/logger.cxx in the FGLogger subsystem allows one to overwrite any file via a resource that affects the contents of the global Property Tree.
1:2018.3.2+dfsg-2
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-jx8t-94cp-aaas The route manager in FlightGear before 2016.4.4 allows remote attackers to write to arbitrary files via a crafted Nasal script. CVE-2016-9956

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:05:58.670219+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T14:40:30.040230+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:06:44.763711+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:23:46.237087+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T09:49:25.528871+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T00:03:17.884598+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan None 36.1.3
2025-06-20T22:56:51.103608+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas None 36.1.3
2025-06-20T22:47:34.055322+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab None 36.1.3
2025-06-20T19:39:55.371577+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas None 36.1.3
2025-06-08T11:35:05.705123+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T07:33:42.313124+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:01:37.767168+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:25:27.867921+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T03:38:04.860313+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-07T17:26:05.583173+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan None 36.1.0
2025-06-07T16:20:07.141811+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas None 36.1.0
2025-06-07T16:11:28.393394+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab None 36.1.0
2025-06-07T13:34:03.746081+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas None 36.1.0
2025-04-13T03:10:21.657355+00:00 Debian Oval Importer Affected by VCID-1j2q-k2gh-pqdk https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:45:02.399761+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:00:48.528070+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:19:34.191532+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T06:06:25.422127+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:33:34.163487+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:56:36.810378+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T02:05:50.299107+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-07T16:00:26.351537+00:00 Debian Oval Importer Affected by VCID-vm83-ajzg-aaan None 36.0.0
2025-04-07T14:51:48.145795+00:00 Debian Oval Importer Affected by VCID-jx8t-94cp-aaas None 36.0.0
2025-04-07T14:42:51.225113+00:00 Debian Oval Importer Affected by VCID-7txw-7t76-aaab None 36.0.0
2025-04-07T12:09:29.785014+00:00 Debian Oval Importer Fixing VCID-jx8t-94cp-aaas None 36.0.0