Search for packages
Package details: pkg:deb/debian/pound@1.8.2-1sarge1
purl pkg:deb/debian/pound@1.8.2-1sarge1
Next non-vulnerable version 3.0-2
Latest non-vulnerable version 3.0-2
Risk 10.0
Vulnerabilities affecting this package (8)
Vulnerability Summary Fixed by
VCID-4qww-3wn9-aaag
Aliases:
CVE-2014-3566
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
VCID-55ga-282t-aaah
Aliases:
CVE-2009-3555
GHSA-f7w7-6pjc-wwm6
VC-OPENSSL-20091105-CVE-2009-3555
VU#120541
The renegotiation vulnerability in SSL protocol
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
2.7-1.3+deb9u1
Affected by 2 other vulnerabilities.
VCID-835z-95xm-aaas
Aliases:
CVE-2018-21245
Pound before 2.8 allows HTTP request smuggling, a related issue to CVE-2016-10711.
3.0-2
Affected by 0 other vulnerabilities.
VCID-9dxv-6zus-aaan
Aliases:
CVE-2012-4929
The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack.
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
2.6-6
Affected by 5 other vulnerabilities.
2.6-6+deb8u1
Affected by 3 other vulnerabilities.
VCID-ekez-5d4t-aaaf
Aliases:
CVE-2016-10711
Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.
3.0-2
Affected by 0 other vulnerabilities.
VCID-h1b2-ae85-aaaa
Aliases:
CVE-2005-1391
Buffer overflow in the add_port function in APSIS Pound 1.8.2 and earlier allows remote attackers to execute arbitrary code via a long Host HTTP header.
2.0-1.2
Affected by 6 other vulnerabilities.
VCID-uynu-zf1g-aaae
Aliases:
CVE-2011-3389
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HTTP headers via a blockwise chosen-boundary attack (BCBA) on an HTTPS session, in conjunction with JavaScript code that uses (1) the HTML5 WebSocket API, (2) the Java URLConnection API, or (3) the Silverlight WebClient API, aka a "BEAST" attack.
2.6-2+deb7u1
Affected by 5 other vulnerabilities.
VCID-y7ke-6uza-aaaa
Aliases:
CVE-2005-3751
HTTP request smuggling vulnerability in Pound before 1.9.4 allows remote attackers to poison web caches, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with conflicting Content-length and Transfer-encoding headers.
2.0-1.2
Affected by 6 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T09:59:54.135667+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:51:10.008979+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:34:28.922836+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.3
2025-06-21T09:18:42.995140+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:14:30.548308+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T09:06:04.231284+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.3
2025-06-21T06:28:38.284231+00:00 Debian Oval Importer Affected by VCID-ekez-5d4t-aaaf None 36.1.3
2025-06-21T05:38:03.620579+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa None 36.1.3
2025-06-21T05:03:19.207695+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan None 36.1.3
2025-06-21T04:40:38.263551+00:00 Debian Oval Importer Affected by VCID-835z-95xm-aaas None 36.1.3
2025-06-21T04:30:15.904383+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag None 36.1.3
2025-06-21T03:57:41.407267+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa None 36.1.3
2025-06-21T02:22:46.744560+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae None 36.1.3
2025-06-20T19:20:49.695340+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah None 36.1.3
2025-06-08T12:02:18.101050+00:00 Debian Oval Importer Affected by VCID-835z-95xm-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T03:48:59.687173+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:39:49.665049+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:23:03.253656+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.1.0
2025-06-08T03:06:32.515644+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T03:02:11.464557+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T02:53:12.656867+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.1.0
2025-06-08T00:07:50.775868+00:00 Debian Oval Importer Affected by VCID-ekez-5d4t-aaaf None 36.1.0
2025-06-07T23:16:09.326885+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa None 36.1.0
2025-06-07T22:40:47.631753+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan None 36.1.0
2025-06-07T22:17:29.602827+00:00 Debian Oval Importer Affected by VCID-835z-95xm-aaas None 36.1.0
2025-06-07T22:06:39.573981+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag None 36.1.0
2025-06-07T21:32:56.150222+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa None 36.1.0
2025-06-07T19:46:37.525396+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae None 36.1.0
2025-06-07T13:20:22.755851+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah None 36.1.0
2025-06-03T13:19:49.725296+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah None 36.1.2
2025-04-12T21:22:48.341629+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:57:20.100580+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:50:50.495635+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:43:38.342860+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:46:27.238230+00:00 Debian Oval Importer Affected by VCID-ekez-5d4t-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:40:10.512430+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:20:31.568332+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:47:39.528415+00:00 Debian Oval Importer Affected by VCID-835z-95xm-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T02:16:47.496077+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T02:07:38.285458+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T01:50:26.304372+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 36.0.0
2025-04-08T01:33:46.064210+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:29:19.664692+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-08T01:20:27.285791+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 36.0.0
2025-04-07T22:40:10.109281+00:00 Debian Oval Importer Affected by VCID-ekez-5d4t-aaaf None 36.0.0
2025-04-07T21:48:06.951408+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa None 36.0.0
2025-04-07T21:12:28.907707+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan None 36.0.0
2025-04-07T20:48:58.309015+00:00 Debian Oval Importer Affected by VCID-835z-95xm-aaas None 36.0.0
2025-04-07T20:37:59.425011+00:00 Debian Oval Importer Affected by VCID-4qww-3wn9-aaag None 36.0.0
2025-04-07T20:02:08.958574+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa None 36.0.0
2025-04-07T18:24:26.675306+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae None 36.0.0
2025-04-07T11:55:55.092451+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah None 36.0.0
2024-11-29T08:54:17.675069+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-29T08:54:14.040758+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 35.0.0
2024-11-29T08:54:13.341414+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 35.0.0
2024-11-28T11:52:43.726943+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T08:00:48.931174+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-27T08:00:44.651245+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 35.0.0
2024-11-27T08:00:43.942313+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 35.0.0
2024-11-25T12:43:03.744125+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-25T07:43:37.714062+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-14T16:39:39.937330+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-14T16:39:36.122932+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 34.0.2
2024-10-14T16:39:35.424989+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.2
2024-10-13T23:17:32.751977+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-13T04:02:36.014701+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-13T04:02:31.685723+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 34.0.2
2024-10-13T04:02:30.968733+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.2
2024-10-11T23:13:14.629316+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-11T19:56:27.641466+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-21T10:34:35.209661+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-21T10:34:31.553404+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 34.0.1
2024-09-21T10:34:30.845266+00:00 Debian Oval Importer Affected by VCID-9dxv-6zus-aaan https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.1
2024-09-21T03:53:46.492480+00:00 Debian Oval Importer Affected by VCID-uynu-zf1g-aaae https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T20:07:02.586295+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T20:06:57.616585+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2 34.0.1
2024-09-20T20:06:56.910513+00:00 Debian Oval Importer Affected by VCID-55ga-282t-aaah https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2 34.0.1
2024-09-20T11:30:04.447564+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T10:53:05.283383+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-06-23T05:17:17.671150+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc4
2024-06-23T05:06:24.447182+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa None 34.0.0rc4
2024-02-07T02:20:27.479405+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-07T02:10:25.234265+00:00 Debian Oval Importer Affected by VCID-y7ke-6uza-aaaa None 34.0.0rc2
2024-02-01T10:51:39.958123+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-01T10:41:46.532945+00:00 Debian Oval Importer Affected by VCID-h1b2-ae85-aaaa None 34.0.0rc2