Search for packages
| purl | pkg:deb/debian/nspr@4.8.6-1%2Bsqueeze1 |
| Next non-vulnerable version | 2:4.12-1+debu8u1 |
| Latest non-vulnerable version | 2:4.12-1+debu8u1 |
| Risk | 4.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-8cyj-ttsy-aaaj
Aliases: CVE-2013-5607 |
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741. |
Affected by 4 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-8z64-29q3-aaac
Aliases: CVE-2016-1951 |
Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable Runtime (NSPR) before 4.12 allow remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long string to a PR_*printf function. |
Affected by 0 other vulnerabilities. |
|
VCID-hgt2-fb1s-aaae
Aliases: CVE-2015-7183 |
Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors. |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-y6xc-vsep-aaak
Aliases: CVE-2014-1545 |
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and console functions. |
Affected by 4 other vulnerabilities. Affected by 2 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-7eg2-huv5-aaaf | Multiple integer overflows in the (1) PL_Base64Decode and (2) PL_Base64Encode functions in nsprpub/lib/libc/src/base64.c in Mozilla Firefox before 3.0.12, Thunderbird before 2.0.0.24, and SeaMonkey before 1.1.19 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors that trigger buffer overflows. |
CVE-2009-2463
|
| VCID-hq4z-qnux-aaag | Array index error in the (1) dtoa implementation in dtoa.c (aka pdtoa.c) and the (2) gdtoa (aka new dtoa) implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4, K-Meleon 1.5.3, SeaMonkey 1.1.8, and other products, allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large precision value in the format argument to a printf function, which triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point number. |
CVE-2009-0689
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:11:12.030611+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T18:50:26.461218+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T17:49:26.671387+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:47:09.468476+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:21:29.921093+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:07:46.196260+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:42:39.165267+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:06:13.997580+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T10:09:32.545705+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T09:49:04.874783+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.3 |
| 2025-06-21T09:22:23.088702+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:14:59.961175+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-21T09:06:08.445984+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.3 |
| 2025-06-20T22:32:11.326129+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | None | 36.1.3 |
| 2025-06-20T21:04:26.075663+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | None | 36.1.3 |
| 2025-06-20T19:49:04.630309+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | None | 36.1.3 |
| 2025-06-20T19:35:19.838495+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | None | 36.1.3 |
| 2025-06-20T19:33:39.440404+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | None | 36.1.3 |
| 2025-06-20T19:26:33.055587+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | None | 36.1.3 |
| 2025-06-08T11:52:44.893617+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:40:05.542165+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:20:17.078046+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:22:23.130806+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:32:23.685818+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:15:44.395557+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:01:16.545589+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:35:56.534952+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T07:00:02.802537+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T03:58:38.654745+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-08T03:37:44.841373+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.1.0 |
| 2025-06-08T03:10:15.073423+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T03:02:42.360543+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-08T02:53:17.235146+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.1.0 |
| 2025-06-07T15:56:18.174005+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | None | 36.1.0 |
| 2025-06-07T14:30:36.508337+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | None | 36.1.0 |
| 2025-06-07T13:41:12.765729+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | None | 36.1.0 |
| 2025-06-07T13:30:31.346315+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | None | 36.1.0 |
| 2025-06-07T13:29:33.504135+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | None | 36.1.0 |
| 2025-06-07T13:24:30.176643+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | None | 36.1.0 |
| 2025-06-03T13:23:47.712027+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | None | 36.1.2 |
| 2025-04-12T22:08:00.760601+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:31:59.568500+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:23:59.795202+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:37:49.652482+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:24:46.903554+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:04:15.561242+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:03:23.182540+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T08:04:47.543181+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:47:20.654311+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:33:35.864606+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:08:32.248728+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:32:40.404837+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T02:26:46.142186+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-08T02:05:29.261128+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 | 36.0.0 |
| 2025-04-08T01:37:36.046022+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:29:49.730756+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-08T01:20:31.925238+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 | 36.0.0 |
| 2025-04-07T14:27:19.255973+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | None | 36.0.0 |
| 2025-04-07T13:02:47.370659+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | None | 36.0.0 |
| 2025-04-07T12:16:31.849915+00:00 | Debian Oval Importer | Affected by | VCID-8z64-29q3-aaac | None | 36.0.0 |
| 2025-04-07T12:05:58.022059+00:00 | Debian Oval Importer | Affected by | VCID-hgt2-fb1s-aaae | None | 36.0.0 |
| 2025-04-07T12:05:01.734108+00:00 | Debian Oval Importer | Affected by | VCID-8cyj-ttsy-aaaj | None | 36.0.0 |
| 2025-04-07T12:00:00.296802+00:00 | Debian Oval Importer | Affected by | VCID-y6xc-vsep-aaak | None | 36.0.0 |
| 2024-11-27T05:39:53.142199+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-27T01:20:53.807793+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-13T02:25:30.385901+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T23:28:16.532879+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-20T19:31:09.418103+00:00 | Debian Oval Importer | Fixing | VCID-7eg2-huv5-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T18:27:20.281536+00:00 | Debian Oval Importer | Fixing | VCID-hq4z-qnux-aaag | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |