Search for packages
Package details: pkg:deb/debian/phpseclib@1.0.20-1%2Bdeb12u2
purl pkg:deb/debian/phpseclib@1.0.20-1%2Bdeb12u2
Next non-vulnerable version 1.0.23-6
Latest non-vulnerable version 1.0.23-6
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-gq37-jebb-aaad
Aliases:
CVE-2023-52892
GHSA-ff7q-6vwh-v9m4
In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before 3.0.33, some characters in Subject Alternative Name fields in TLS certificates are incorrectly allowed to have a special meaning in regular expressions (such as a + wildcard), leading to name confusion in X.509 certificate host verification.
1.0.23-2
Affected by 0 other vulnerabilities.
1.0.23-3
Affected by 0 other vulnerabilities.
1.0.23-6
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-20T20:59:02.997733+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 36.1.3
2025-06-05T14:42:20.544297+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 36.1.0
2025-04-03T23:40:29.357561+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 36.0.0
2025-02-21T16:54:09.546699+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 35.1.0
2024-11-24T05:36:56.270104+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 35.0.0
2024-10-11T02:30:10.163935+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 34.0.2
2024-09-20T06:46:18.493373+00:00 Debian Importer Affected by VCID-gq37-jebb-aaad https://security-tracker.debian.org/tracker/data/json 34.0.1