Search for packages
Package details: pkg:deb/debian/musl@1.1.16-3
purl pkg:deb/debian/musl@1.1.16-3
Next non-vulnerable version 1.2.5-3
Latest non-vulnerable version 1.2.5-3
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-axyb-6k5x-aaak
Aliases:
CVE-2020-28928
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).
1.2.2-1
Affected by 1 other vulnerability.
VCID-kppj-ay2n-aaap
Aliases:
CVE-2019-14697
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.
1.2.2-1
Affected by 1 other vulnerability.
VCID-svkm-2b47-aaaq
Aliases:
CVE-2017-15650
musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query.
1.1.21-2
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-gpw2-43be-aaag Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. CVE-2016-8859

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T17:21:12.770861+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 36.1.3
2025-06-21T14:24:32.230188+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:39:09.929503+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T04:16:13.934625+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.1.3
2025-06-21T04:01:05.890089+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.1.3
2025-06-21T01:17:09.227713+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq None 36.1.3
2025-06-21T00:43:54.144184+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag None 36.1.3
2025-06-08T07:17:37.022785+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:56:17.722351+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T21:52:05.289504+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.1.0
2025-06-07T21:36:26.283885+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.1.0
2025-06-07T18:39:51.447089+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq None 36.1.0
2025-06-07T18:06:27.067439+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag None 36.1.0
2025-04-12T22:20:14.823034+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T22:02:16.826112+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:20:42.606800+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:24:56.774255+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T05:50:11.639731+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:27:21.608332+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T20:22:25.538691+00:00 Debian Oval Importer Affected by VCID-axyb-6k5x-aaak None 36.0.0
2025-04-07T20:05:49.590496+00:00 Debian Oval Importer Affected by VCID-kppj-ay2n-aaap None 36.0.0
2025-04-07T17:17:40.511207+00:00 Debian Oval Importer Affected by VCID-svkm-2b47-aaaq None 36.0.0
2025-04-07T16:43:36.351803+00:00 Debian Oval Importer Fixing VCID-gpw2-43be-aaag None 36.0.0
2025-04-06T13:04:55.325971+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 36.0.0
2025-04-05T13:41:30.347640+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 36.0.0
2025-02-19T06:46:56.201021+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 35.1.0
2025-02-18T20:53:32.958962+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 35.1.0
2024-11-22T04:12:42.806413+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 35.0.0
2024-11-21T18:39:41.209138+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 35.0.0
2024-11-20T02:50:49.813108+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.3.2
2024-11-19T17:54:40.654731+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.3.2
2024-10-09T03:46:18.732609+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.2
2024-10-08T19:20:56.766905+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.0.2
2024-09-18T15:12:07.114451+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.1
2024-09-18T07:25:08.757251+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.0.1
2024-04-24T14:31:32.516607+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc4
2024-04-24T11:04:35.094609+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.0.0rc4
2024-01-10T17:12:45.302853+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc2
2024-01-10T12:54:24.088809+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.0.0rc2
2024-01-04T06:53:15.036782+00:00 Debian Importer Affected by VCID-kppj-ay2n-aaap None 34.0.0rc1
2024-01-04T04:28:47.014979+00:00 Debian Importer Affected by VCID-svkm-2b47-aaaq None 34.0.0rc1