VulnerableCode Package Details - pkg:deb/debian/uwsgi@2.0.18-1

Search for packages

Package details: pkg:deb/debian/uwsgi@2.0.18-1

Essentials
History (2)

purl	pkg:deb/debian/uwsgi@2.0.18-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-crdw-b2xz-sugu	The uwsgi_expand_path function in core/utils.c in Unbit uWSGI through 2.0.15 has a stack-based buffer overflow via a large directory length.	CVE-2018-6758
VCID-yknv-cdfj-rbhj	uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.	CVE-2018-7490 GHSA-h2vm-c85r-5vh5 PYSEC-2018-78

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T13:42:48.503450+00:00	Debian Oval Importer	Fixing	VCID-yknv-cdfj-rbhj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:05:33.604187+00:00	Debian Oval Importer	Fixing	VCID-crdw-b2xz-sugu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0