VulnerableCode Package Details - pkg:deb/ubuntu/tre@0.7.2-1

Search for packages

Package details: pkg:deb/ubuntu/tre@0.7.2-1

purl	pkg:deb/ubuntu/tre@0.7.2-1

Next non-vulnerable version	0.8.0-6
Latest non-vulnerable version	0.8.0-6
Risk	4.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-gpw2-43be-aaag Aliases: CVE-2016-8859	Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write.	0.8.0-6 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version