VulnerableCode Package Details - pkg:deb/debian/jython@2.5.3-16%2Bdeb9u1

Search for packages

Vulnerability	Summary	Fixed by
VCID-7fcf-99zp-aaab Aliases: CVE-2013-2027 GHSA-9347-9w64-q5wp	Jython 2.2.1 uses the current umask to set the privileges of the class cache files, which allows local users to bypass intended access restrictions via unspecified vectors.	2.7.1+repack1-4~deb10u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-s37h-9fw6-aaab Aliases: CVE-2016-4000 GHSA-6r7r-jj8h-pq6v	Deserialization Gadget This package allows attackers to execute arbitrary code via a crafted serialized PyFunction object.	2.7.1+repack1-4~deb10u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-7fcf-99zp-aaab
Aliases:
CVE-2013-2027
GHSA-9347-9w64-q5wp

Jython 2.2.1 uses the current umask to set the privileges of the class cache files, which allows local users to bypass intended access restrictions via unspecified vectors.

2.7.1+repack1-4~deb10u1
Affected by 1 other vulnerability.

VCID-s37h-9fw6-aaab
Aliases:
CVE-2016-4000
GHSA-6r7r-jj8h-pq6v

Deserialization Gadget This package allows attackers to execute arbitrary code via a crafted serialized PyFunction object.

2.7.1+repack1-4~deb10u1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-s37h-9fw6-aaab	Deserialization Gadget This package allows attackers to execute arbitrary code via a crafted serialized PyFunction object.	CVE-2016-4000 GHSA-6r7r-jj8h-pq6v

Vulnerability

Summary

Aliases

VCID-s37h-9fw6-aaab

Deserialization Gadget This package allows attackers to execute arbitrary code via a crafted serialized PyFunction object.

CVE-2016-4000
GHSA-6r7r-jj8h-pq6v

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-22T19:07:13.600723+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	36.1.3
2025-06-21T17:54:29.615715+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T12:03:25.667906+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T10:41:45.378728+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-21T01:14:16.990050+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	None	36.1.3
2025-06-20T23:41:14.041050+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	None	36.1.3
2025-06-20T19:56:15.532859+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	None	36.1.3
2025-06-08T10:26:17.639884+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T05:11:54.595896+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:21:15.442936+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-07T18:36:56.735432+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	None	36.1.0
2025-06-07T17:04:08.958933+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	None	36.1.0
2025-06-07T13:46:32.735139+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	None	36.1.0
2025-04-12T22:35:56.485440+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T20:38:49.799739+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T16:07:25.939711+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:42:51.408683+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T02:50:51.270960+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-07T17:14:42.817675+00:00	Debian Oval Importer	Affected by	VCID-s37h-9fw6-aaab	None	36.0.0
2025-04-07T15:37:30.044423+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	None	36.0.0
2025-04-07T12:21:41.667707+00:00	Debian Oval Importer	Fixing	VCID-s37h-9fw6-aaab	None	36.0.0
2025-04-06T11:16:50.116236+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	36.0.0
2025-02-18T11:15:55.844213+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	35.1.0
2024-12-08T13:59:55.664268+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	35.0.0
2024-10-15T06:05:09.494622+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.2
2024-10-05T04:16:20.202582+00:00	Debian Oval Importer	Affected by	VCID-7fcf-99zp-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	34.0.1
2024-04-24T08:28:25.101381+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	34.0.0rc4
2024-01-10T10:27:42.439652+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	34.0.0rc2
2024-01-04T02:52:59.633857+00:00	Debian Importer	Affected by	VCID-7fcf-99zp-aaab	None	34.0.0rc1