Search for packages
Package details: pkg:deb/debian/nspr@4.7.1-5
purl pkg:deb/debian/nspr@4.7.1-5
Next non-vulnerable version 2:4.12-1+debu8u1
Latest non-vulnerable version 2:4.12-1+debu8u1
Risk 10.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-7eg2-huv5-aaaf
Aliases:
CVE-2009-2463
Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger buffer overflows.
4.8.6-1+squeeze1
Affected by 4 other vulnerabilities.
VCID-8cyj-ttsy-aaaj
Aliases:
CVE-2013-5607
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.
2:4.9.2-1+deb7u3
Affected by 4 other vulnerabilities.
2:4.10.7-1
Affected by 2 other vulnerabilities.
VCID-8z64-29q3-aaac
Aliases:
CVE-2016-1951
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function.
2:4.12-1+debu8u1
Affected by 0 other vulnerabilities.
VCID-hgt2-fb1s-aaae
Aliases:
CVE-2015-7183
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
2:4.9.2-1+deb7u3
Affected by 4 other vulnerabilities.
2:4.12-1+debu8u1
Affected by 0 other vulnerabilities.
VCID-hq4z-qnux-aaag
Aliases:
CVE-2009-0689
Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number.
4.8.6-1+squeeze1
Affected by 4 other vulnerabilities.
VCID-y6xc-vsep-aaak
Aliases:
CVE-2014-1545
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions.
2:4.9.2-1+deb7u3
Affected by 4 other vulnerabilities.
2:4.10.7-1
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T19:11:12.028702+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:50:26.458568+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:49:26.668202+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:47:09.466274+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:21:29.919023+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:07:46.193495+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:42:39.162499+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:06:13.994571+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T10:09:32.543266+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:49:04.872741+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:22:23.086536+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:14:59.959162+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:06:08.442339+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-20T22:32:11.324165+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf None 36.1.3
2025-06-20T21:04:26.073964+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.1.3
2025-06-20T19:49:04.628545+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac None 36.1.3
2025-06-20T19:35:19.836649+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae None 36.1.3
2025-06-20T19:33:39.438674+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj None 36.1.3
2025-06-20T19:26:33.053645+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak None 36.1.3
2025-06-08T11:52:44.891697+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:40:05.540247+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:20:17.076159+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:22:23.129131+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:32:23.684130+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:15:44.393653+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:01:16.543673+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:35:56.533089+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:00:02.792509+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T03:58:38.653004+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:37:44.838849+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:10:15.071785+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:02:42.358435+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T02:53:17.232591+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-07T15:56:18.172086+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf None 36.1.0
2025-06-07T14:30:36.498257+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.1.0
2025-06-07T13:41:12.763584+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac None 36.1.0
2025-06-07T13:30:31.344643+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae None 36.1.0
2025-06-07T13:29:33.502529+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj None 36.1.0
2025-06-07T13:24:30.174452+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak None 36.1.0
2025-06-03T13:23:47.710165+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak None 36.1.2
2025-04-12T22:08:00.755611+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:31:59.563502+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:23:59.790185+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:37:49.647444+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:24:46.898552+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:04:15.556854+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:03:23.177499+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:04:47.538188+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:47:20.649398+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:33:35.859518+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:08:32.243375+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:32:40.400422+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T02:26:46.136827+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T02:05:29.256490+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T01:37:36.041041+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:29:49.725732+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:20:31.920216+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T14:27:19.250927+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf None 36.0.0
2025-04-07T13:02:47.365800+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag None 36.0.0
2025-04-07T12:16:31.844615+00:00 Debian Oval Importer Affected by VCID-8z64-29q3-aaac None 36.0.0
2025-04-07T12:05:58.017413+00:00 Debian Oval Importer Affected by VCID-hgt2-fb1s-aaae None 36.0.0
2025-04-07T12:05:01.729415+00:00 Debian Oval Importer Affected by VCID-8cyj-ttsy-aaaj None 36.0.0
2025-04-07T12:00:00.291427+00:00 Debian Oval Importer Affected by VCID-y6xc-vsep-aaak None 36.0.0
2024-11-27T05:39:53.137810+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T01:20:53.802638+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-13T02:25:30.380724+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T23:28:16.527934+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-20T19:31:09.412424+00:00 Debian Oval Importer Affected by VCID-7eg2-huv5-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T18:27:20.275146+00:00 Debian Oval Importer Affected by VCID-hq4z-qnux-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1