Search for packages
Package details: pkg:deb/debian/http-parser@2.1-2~bpo70%2B1
purl pkg:deb/debian/http-parser@2.1-2~bpo70%2B1
Next non-vulnerable version 2.9.4-4+deb11u1
Latest non-vulnerable version 2.9.4-4+deb11u1
Risk 4.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-6uvj-k3c9-aaab
Aliases:
CVE-2019-15605
HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed
2.8.1-1~bpo9+1
Affected by 0 other vulnerabilities.
2.8.1-1+deb10u2
Affected by 2 other vulnerabilities.
2.9.4-4+deb11u1
Affected by 0 other vulnerabilities.
VCID-d15h-ng65-aaab
Aliases:
CVE-2020-8287
Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies of a header field in an HTTP request (for example, two Transfer-Encoding header fields). In this case, Node.js identifies the first header field and ignores the second. This can lead to HTTP Request Smuggling.
2.9.4-4+deb11u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T14:16:29.123542+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:04:16.038133+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T02:27:03.406275+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab None 36.1.3
2025-06-20T21:47:04.118299+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab None 36.1.3
2025-06-08T12:59:21.276866+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T07:09:51.469505+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:12:28.439729+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T19:50:58.670056+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab None 36.1.0
2025-06-07T15:10:07.508266+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab None 36.1.0
2025-04-12T20:37:10.518497+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:46:41.458778+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T05:42:24.134719+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:43:26.012829+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T18:28:48.730110+00:00 Debian Oval Importer Affected by VCID-d15h-ng65-aaab None 36.0.0
2025-04-07T13:41:50.913142+00:00 Debian Oval Importer Affected by VCID-6uvj-k3c9-aaab None 36.0.0