Search for packages
| purl | pkg:deb/debian/musl@1.1.5-2%2Bdeb8u1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-axyb-6k5x-aaak
Aliases: CVE-2020-28928 |
In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow). |
Affected by 1 other vulnerability. |
|
VCID-gpw2-43be-aaag
Aliases: CVE-2016-8859 |
Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. |
Affected by 3 other vulnerabilities. |
|
VCID-kppj-ay2n-aaap
Aliases: CVE-2019-14697 |
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code. |
Affected by 1 other vulnerability. |
|
VCID-svkm-2b47-aaaq
Aliases: CVE-2017-15650 |
musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query. |
Affected by 2 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T14:24:32.227610+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:39:09.927618+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T04:16:13.932597+00:00 | Debian Oval Importer | Affected by | VCID-axyb-6k5x-aaak | None | 36.1.3 |
| 2025-06-21T04:01:05.888300+00:00 | Debian Oval Importer | Affected by | VCID-kppj-ay2n-aaap | None | 36.1.3 |
| 2025-06-21T01:17:09.225824+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | None | 36.1.3 |
| 2025-06-21T00:43:54.141398+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | None | 36.1.3 |
| 2025-06-08T07:17:37.020940+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:56:17.710495+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T21:52:05.287917+00:00 | Debian Oval Importer | Affected by | VCID-axyb-6k5x-aaak | None | 36.1.0 |
| 2025-06-07T21:36:26.280685+00:00 | Debian Oval Importer | Affected by | VCID-kppj-ay2n-aaap | None | 36.1.0 |
| 2025-06-07T18:39:51.445526+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | None | 36.1.0 |
| 2025-06-07T18:06:27.064805+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | None | 36.1.0 |
| 2025-04-12T22:20:14.818079+00:00 | Debian Oval Importer | Affected by | VCID-kppj-ay2n-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T22:02:16.821221+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:20:42.601812+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:24:56.769256+00:00 | Debian Oval Importer | Affected by | VCID-axyb-6k5x-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T05:50:11.634655+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:27:21.603356+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T20:22:25.533072+00:00 | Debian Oval Importer | Affected by | VCID-axyb-6k5x-aaak | None | 36.0.0 |
| 2025-04-07T20:05:49.585346+00:00 | Debian Oval Importer | Affected by | VCID-kppj-ay2n-aaap | None | 36.0.0 |
| 2025-04-07T17:17:40.506324+00:00 | Debian Oval Importer | Affected by | VCID-svkm-2b47-aaaq | None | 36.0.0 |
| 2025-04-07T16:43:36.346352+00:00 | Debian Oval Importer | Affected by | VCID-gpw2-43be-aaag | None | 36.0.0 |