Search for packages
Package details: pkg:deb/debian/php-phpseclib3@3.0.19-1%2Bdeb12u3
purl pkg:deb/debian/php-phpseclib3@3.0.19-1%2Bdeb12u3
Next non-vulnerable version 3.0.43-2
Latest non-vulnerable version 3.0.43-2
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-gq37-jebb-aaad
Aliases:
CVE-2023-52892
GHSA-ff7q-6vwh-v9m4
In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before 3.0.33, some characters in Subject Alternative Name fields in TLS certificates are incorrectly allowed to have a special meaning in regular expressions (such as a + wildcard), leading to name confusion in X.509 certificate host verification.
3.0.41-1
Affected by 0 other vulnerabilities.
3.0.42-1
Affected by 0 other vulnerabilities.
3.0.43-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T22:43:07.576936+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-04-04T01:22:14.921435+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-21T16:54:10.228235+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 35.1.0
2024-11-24T05:36:56.960592+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-10-11T02:30:08.124452+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-09-20T06:46:16.408127+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 34.0.1