VulnerableCode Package Details - pkg:deb/debian/vino@2.28.2-2%2Bsqueeze1

Search for packages

Package details: pkg:deb/debian/vino@2.28.2-2%2Bsqueeze1

Essentials
History (7)

purl	pkg:deb/debian/vino@2.28.2-2%2Bsqueeze1

Next non-vulnerable version	3.22.0-6
Latest non-vulnerable version	3.22.0-6
Risk	4.4

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-6cas-bpxb-z3gt Aliases: CVE-2011-0905		3.4.2-1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9f9d-nnkx-1uby Aliases: CVE-2013-5745		3.14.0-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-f418-pw5w-zkew Aliases: CVE-2012-4429		3.14.0-2 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-fm5c-rpf1-pyb1 Aliases: CVE-2011-0904		3.4.2-1 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-kr7e-s1j9-uuha Aliases: CVE-2014-6053		3.22.0-6 Affected by 0 other vulnerabilities.
VCID-vjz6-kw2t-cucm Aliases: CVE-2019-15681	LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.	3.22.0-6 Affected by 0 other vulnerabilities.
VCID-w91q-2f69-7fe9 Aliases: CVE-2018-7225	An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.	3.22.0-6 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T20:07:17.861258+00:00	Debian Oval Importer	Affected by	VCID-fm5c-rpf1-pyb1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T19:51:44.327451+00:00	Debian Oval Importer	Affected by	VCID-f418-pw5w-zkew	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:19:34.399399+00:00	Debian Oval Importer	Affected by	VCID-vjz6-kw2t-cucm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:51:37.485557+00:00	Debian Oval Importer	Affected by	VCID-6cas-bpxb-z3gt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:33:16.650266+00:00	Debian Oval Importer	Affected by	VCID-9f9d-nnkx-1uby	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:02:32.086458+00:00	Debian Oval Importer	Affected by	VCID-kr7e-s1j9-uuha	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T12:32:46.608979+00:00	Debian Oval Importer	Affected by	VCID-w91q-2f69-7fe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0