 @@ -1,1000 +1,1000 @@
-# $NetBSD: pkg-vulnerabilities,v 1.52 2023/10/19 13:31:51 wiz Exp $
+# $NetBSD: pkg-vulnerabilities,v 1.53 2023/10/20 18:36:59 wiz Exp $
+#
 #FORMAT 1.0.0
+#
 # Please read "Handling packages with security problems" in the pkgsrc
 # guide before editing this file.
+#
 # Note: NEVER remove entries from this file; this should document *all*
 # known package vulnerabilities so it is entirely appropriate to have
 # multiple entries in this file for a single package, and to contain
 # entries for packages which have been removed from pkgsrc.
+#
 # New entries should be added at the end of this file.
+#
 # Please ask pkgsrc-security to update the copy on ftp.NetBSD.org after
 # making changes to this file.
+#
 # The command to run for this update is "./pkg-vuln-update.sh", but it needs
 # access to the private GPG key for pkgsrc-security.
+#
 # If you have comments/additions/corrections, please contact
 # pkgsrc-security@NetBSD.org.
+#
 # Note: If this file format changes, please do not forget to update
 # pkgsrc/mk/scripts/genreadme.awk which also parses this file.
+#
 # package		type of exploit		URL
 cfengine<1.5.3nb3	remote-root-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2000-013.txt.asc
 navigator<4.75		remote-user-access	http://www.cert.org/advisories/CA-2000-15.html
 navigator<4.74		remote-user-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2000-011.txt.asc
 communicator<4.75	remote-user-access	http://www.cert.org/advisories/CA-2000-15.html
 communicator<4.74	remote-user-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2000-011.txt.asc
 pine<4.30		remote-user-shell	http://www.securityfocus.com/bid/1709
 pine<4.21nb1		denial-of-service	http://www.securityfocus.com/advisories/2646
 imap-uw<4.7c6		denial-of-service	http://www.securityfocus.com/advisories/2646
 screen<3.9.5nb1		local-root-shell	http://www.securityfocus.com/advisories/2634
 ntop<1.1		remote-root-shell	http://www.securityfocus.com/advisories/2520
 wu-ftpd<2.6.1		remote-root-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2000-010.txt.asc
 wu-ftpd<2.4.2b18.2	remote-root-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA1999-003.txt.asc
 xlockmore<4.17		local-root-file-view	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2000-003.txt.asc
 lsof<4.41		local-root-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA1999-005.txt.asc
 wu-ftpd<2.6.0		remote-root-shell	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA1999-003.txt.asc
 racoon<20001004a	local-root-file-view	http://mail-index.NetBSD.org/tech-net/2000/09/24/0000.html
 global<3.56		remote-user-access	http://www.NetBSD.org/cgi-bin/query-pr-single.pl?number=11165
 apache<1.3.14		remote-user-access	http://httpd.apache.org/dist/httpd/CHANGES_1.3
 apache6<1.3.14		remote-user-access	http://httpd.apache.org/dist/httpd/CHANGES_1.3
 thttpd<2.20		remote-user-access	http://www.dopesquad.net/security/advisories/20001002-thttpd-ssi.txt
 bind<8.2.2.7		denial-of-service	http://www.isc.org/products/BIND/bind-security.html
 gnupg<1.0.4		weak-authentication	http://www.gnupg.org/whatsnew.html#rn20001017
 pine<=4.21		remote-root-shell	ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc
 navigator<4.76		remote-root-shell	ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A66.netscape.asc
 navigator3<4.76		remote-root-shell	ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A66.netscape.asc
 openssh<2.3.0		weak-authentication	http://www.openbsd.org/errata27.html#sshforwarding
 ethereal<=0.8.13	remote-root-shell	http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Ffromthread%3D1%26end%3D2000-11-25%26mid%3D145761%26start%3D2000-11-19%26list%3D1%26threads%3D0%26
 php<3.0.17		remote-user-shell	http://www.php.net/ChangeLog.php3
 php-gd<3.0.17		remote-user-shell	http://www.php.net/ChangeLog.php3
 php-ldap<3.0.17		remote-user-shell	http://www.php.net/ChangeLog.php3
 php-mysql<3.0.17	remote-user-shell	http://www.php.net/ChangeLog.php3
 php-pgsql<3.0.17	remote-user-shell	http://www.php.net/ChangeLog.php3
 php-snmp<3.0.17		remote-user-shell	http://www.php.net/ChangeLog.php3
 racoon<20001211a	denial-of-service	http://www.kame.net/
 LPRng<3.6.25		remote-root-shell	http://www.cert.org/advisories/CA-2000-22.html
 jakarta-tomcat<3.1.1	remote-server-admin	http://jakarta.apache.org/site/news.html
 jakarta-tomcat<3.2.3	cross-site-html		http://www.securityfocus.com/bid/2982
 fsh<1.1			local-root-file-view	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1135
 bitchx<1.0.3.17nb1	remote-user-shell	http://www.securityfocus.com/bid/2087
 namazu<1.3.0.11		remote-file-creation	http://www.namazu.org/security.html.en
 zope<2.2.5		weak-authentication	http://www.zope.org/Products/Zope/
 bind<8.2.3		remote-root-shell	http://www.cert.org/advisories/CA-2001-02.html
 suse{,32}_base<6.4nb2	local-root-shell	http://www.suse.com/de/support/security/2001_001_glibc_txt.txt
 ja-micq<0.4.6.1		remote-user-shell	http://www.freebsd.org/security/#adv
 micq<0.4.6.1		remote-user-shell	http://www.freebsd.org/security/#adv
 ssh<1.2.27nb1		remote-root-shell	http://razor.bindview.com/publish/advisories/adv_ssh1crc.html
 ssh6<=1.2.31		remote-root-shell	http://razor.bindview.com/publish/advisories/adv_ssh1crc.html
 openssh<2.3.0		remote-root-shell	http://razor.bindview.com/publish/advisories/adv_ssh1crc.html
 camediaplay<20010211	local-user-shell	ftp://ftp.itojun.org/pub/digi-cam/C-400/unix/README
 analog<4.16		remote-user-shell	http://www.analog.cx/security2.html
 gnupg<1.0.4nb3		weak-authentication	http://www.gnupg.org/whatsnew.html#rn20001130
 xemacs<21.1.14		remote-user-shell	http://list-archive.xemacs.org/xemacs-announce/200102/msg00000.html
 sudo<1.6.3p6		local-root-shell	http://www.openbsd.org/errata36.html#sudo
 Mesa-glx<=20000813	local-root-shell	http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-029.php3?dis=7.2
 apache<1.3.19		remote-user-access	http://httpd.apache.org/dist/httpd/Announcement.html
 apache6<1.3.19		remote-user-access	http://httpd.apache.org/dist/httpd/Announcement.html
 exmh<2.3		local-symlink-race	http://www.beedub.com/exmh/symlink.html
 samba<2.0.8		local-symlink-race	http://www.securityfocus.com/templates/archive.pike?list=1&mid=177370
 hylafax<4.1b3		local-root-shell	http://www.securityfocus.com/archive/1/176716
 squirrelmail<1.0.5	remote-user-access	http://www.geocrawler.com/lists/3/SourceForge/599/500/5567091/
 kdelibs-2.1		local-root-shell	http://dot.kde.org/988663144/
 icecast<1.3.10		remote-user-access	http://www.securityfocus.com/bid/2264
 joe<2.8nb1		local-file-write	http://www.securityfocus.com/bid/1959
 joe<2.8nb1		local-user-shell	http://www.securityfocus.com/bid/2437
 openssh<2.9.2		remote-file-write	http://www.openbsd.org/errata.html#sshcookie
 w3m<0.2.1.0.19nb1	remote-user-shell	http://mi.med.tohoku.ac.jp/~satodai/w3m-dev-en/200106.month/537.html
 samba<2.0.10		local-root-shell	http://www.samba.org/samba/whatsnew/macroexploit.html
 samba-2.2.0		local-root-shell	http://www.samba.org/samba/whatsnew/macroexploit.html
 samba-2.2.0nb1		local-root-shell	http://www.samba.org/samba/whatsnew/macroexploit.html
 fetchmail<5.8.8		remote-user-access	http://www.securityfocus.com/vdb/?id=2877
 openldap<1.2.12		denial-of-service	http://www.cert.org/advisories/CA-2001-18.html
 horde<1.2.6		remote-user-shell	http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26mid%3D198495
 imp<1.2.6		remote-user-shell	http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26mid%3D198495
 fetchmail<5.8.17	remote-user-shell	http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26mid%3D203165
 windowmaker<0.65.1	remote-user-shell	http://www.debian.org/security/2001/dsa-074
 sendmail<8.11.6		local-root-shell	ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTES
 gnut<0.4.27		remote-script-inject	http://www.gnutelliums.com/linux_unix/gnut/
 screen<3.9.10		local-root-shell	http://lists.opensuse.org/opensuse-security-announce/2000-Sep/0005.html
 openssh<2.9.9.2		remote-user-access	http://www.securityfocus.com/cgi-bin/archive.pl?id=1&mid=216702&start=2001-09-23&end=2001-09-29
 w3m<0.2.1.0.19nb2	weak-authentication	http://mi.med.tohoku.ac.jp/~satodai/w3m-dev/200109.month/2226.html
 procmail<3.20		local-root-shell	http://www.somelist.com/mail.php/282/view/1200950
 slrn<0.9.7.2nb1		remote-script-inject	http://slrn.sourceforge.net/patches/index.html#subsect_decode
 nvi-m17n<1.79.19991117	local-user-shell	http://www.securityfocus.com/archive/1/221880
 mgetty<1.1.22		denial-of-service	ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A71.mgetty.asc
 kdeutils-2.2.1		local-root-shell	http://lists.kde.org/?l=kde-announce&m=100535642201983&w=2
 imp<2.2.7		remote-file-view	http://www.securityfocus.com/archive/1/225686
 libgtop<1.0.12nb1	remote-user-shell	http://www.intexxia.com/
 wu-ftpd<=2.6.1		remote-root-shell	http://msgs.securepoint.com/cgi-bin/get/bugtraq0111/199.html
 radius-3.6B		remote-user-shell	http://xforce.iss.net/alerts/advise87.php
 exim<3.34		remote-user-shell	http://www.exim.org/pipermail/exim-announce/2001q4/000048.html
 stunnel<3.22		remote-user-shell	http://www.stunnel.org/patches/desc/formatbug_ml.html
 mutt<1.2.5.1		remote-user-shell	http://www.mutt.org/announce/mutt-1.2.5.1-1.3.25.html
 mutt-1.3.1*		remote-user-shell	http://www.mutt.org/announce/mutt-1.2.5.1-1.3.25.html
 mutt-1.3.2[0-4]*	remote-user-shell	http://www.mutt.org/announce/mutt-1.2.5.1-1.3.25.html
 cyrus-sasl<1.5.27	remote-code-execution	http://www.securityfocus.com/bid/3498
 openldap<2.0.20		denial-of-service	http://www.openldap.org/lists/openldap-announce/200201/msg00002.html
 xchat<1.8.7		remote-command-injection	http://xchat.org/
 enscript<1.6.1nb1	local-file-write	http://www.securityfocus.com/bid/3920
 rsync<2.5.2		remote-code-execution	http://lists.samba.org/pipermail/rsync-announce/2002-January/000005.html
 squirrelmail-1.2.[0-3]	remote-code-execution	http://www.securityfocus.com/bid/3952
 gnuchess<5.03		remote-user-shell	http://linux.oreillynet.com/pub/a/linux/2002/01/28/insecurities.html
 ucd-snmp<4.2.3		weak-authentication	http://www.cert.org/advisories/CA-2002-03.html
 ucd-snmp<4.2.3		denial-of-service	http://www.cert.org/advisories/CA-2002-03.html
 ucd-snmp<4.2.3nb1	remote-user-shell	http://www.securityfocus.com/archive/1/248141
 squid<2.4.4		remote-user-shell	http://www.squid-cache.org/Advisories/SQUID-2002_1.txt
 ap-php<3.0.18nb1	remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php<3.0.18nb1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.1pl2		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.3pl1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.3pl1nb1	remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.4		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.4.1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.4.1nb1	remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.5		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.0.6		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.1.0		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 ap-php-4.1.1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.3pl1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.4		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.4.1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.4.1nb1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.5		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.0.6		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.1.0		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.1.1		remote-code-execution	http://security.e-matters.de/advisories/012002.html
 php-4.3.0		remote-code-execution	http://www.php.net/release_4_3_1.php
 radiusd-cistron<1.6.6	denial-of-service	http://www.kb.cert.org/vuls/id/936683
 radiusd-cistron<1.6.6	remote-code-execution	http://www.kb.cert.org/vuls/id/589523
 openssh<3.0.2.1nb2	local-root-shell	http://www.pine.nl/advisories/pine-cert-20020301.txt
 htdig<3.1.6		denial-of-service	http://online.securityfocus.com/bid/3410
 htdig<3.1.6		local-user-file-view	http://online.securityfocus.com/bid/3410
 fileutils<4.1.7		local-file-removal	http://mail.gnu.org/pipermail/bug-fileutils/2002-March/002433.html
 zlib<1.1.4		denial-of-service	http://www.zlib.org/advisory-2002-03-11.txt
 rsync<2.5.3		remote-user-file-view	http://lists.samba.org/pipermail/rsync-announce/2002-March/000006.html
 suse{,32}_base<6.4nb5	denial-of-service	http://www.zlib.org/advisory-2002-03-11.txt
 icecast<1.3.11		remote-root-shell	http://www.debian.org/security/2001/dsa-089
 sun-{jre,jdk}<1.3.1.0.2	remote-code-execution	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/218&type=0&nav=sec.sba
 analog<5.22		remote-script-inject	http://www.analog.cx/docs/whatsnew.html
 jakarta-tomcat<3.2.3nb1	cross-site-scripting	http://httpd.apache.org/info/css-security/
 sudo<1.6.6		local-root-shell	http://www.sudo.ws/sudo/alerts/prompt.html
 squirrelmail<1.2.6	remote-code-execution	http://cert.uni-stuttgart.de/archive/bugtraq/2002/03/msg00414.html
 analog<5.23		denial-of-service	http://www.analog.cx/security5.html
 icecast<1.3.12		denial-of-service	http://online.securityfocus.com/bid/4415
 qpopper<4.0.4		denial-of-service	http://online.securityfocus.com/bid/4295
 qpopper<4.0.4nb1	local-root-shell	http://online.securityfocus.com/bid/4614
 imap-uw<2001.1		local-root-shell	http://online.securityfocus.com/bid/4713
 fetchmail<5.9.10	remote-user-access	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0146
 gaim<0.58		local-user-file-view	http://online.securityfocus.com/archive/1/272180
 mozilla<1.0rc3		remote-user-file-view	http://groups.google.com/groups?as_umsgid=3CD095D4.9050003%40mozilla.org&hl=en
 ethereal<0.9.4		remote-user-access	http://www.ethereal.com/appnotes/enpa-sa-00004.html
 bind-9.[01].*		denial-of-service	http://www.cert.org/advisories/CA-2002-15.html
 bind-9.2.0*		denial-of-service	http://www.cert.org/advisories/CA-2002-15.html
 bind-9.2.1rc*		denial-of-service	http://www.cert.org/advisories/CA-2002-15.html
 bind-8.3.0		denial-of-service	http://www.isc.org/products/BIND/bind8.html
 xchat<1.8.9		remote-user-shell	http://www.linuxsecurity.com/advisories/redhat_advisory-2107.html
 apache<1.3.26		remote-root-shell	http://httpd.apache.org/info/security_bulletin_20020617.txt
 apache6<1.3.26		remote-root-shell	http://httpd.apache.org/info/security_bulletin_20020617.txt
 apache-2.0.1?		remote-root-shell	http://httpd.apache.org/info/security_bulletin_20020617.txt
 apache-2.0.2?		remote-root-shell	http://httpd.apache.org/info/security_bulletin_20020617.txt
 apache-2.0.3[0-8]*	remote-root-shell	http://httpd.apache.org/info/security_bulletin_20020617.txt
 irssi<0.8.5		denial-of-service	http://online.securityfocus.com/archive/1
 #ap-ssl<2.8.10		remote-root-shell	http://www.apache-ssl.org/advisory-20020620.txt
 ap-ssl<2.8.10		remote-root-shell	http://www.modssl.org/news/changelog.html
 apache<1.3.26nb1	remote-root-shell	http://www.apache-ssl.org/advisory-20020620.txt
 apache6<1.3.26nb1	remote-root-shell	http://www.apache-ssl.org/advisory-20020620.txt
 bind<4.9.7nb1		remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 #compat12<=1.2.1	remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 #compat13<=1.3.3nb1	remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 compat14<1.4.3.2	remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 openssh<3.4		remote-root-shell	https://nvd.nist.gov/vuln/detail/CVE-2002-0639
 #bind<=9.2.1		remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 bind<8.3.3		remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 socks5<1.0.2nb2		remote-root-shell	http://online.securityfocus.com/archive/1/9842
 socks5-1.0.[3-9]*	remote-root-shell	http://online.securityfocus.com/archive/2/9842
 socks5-1.0.1[0-1]*	remote-root-shell	http://online.securityfocus.com/archive/2/9842
 ipa<1.2.7		local-access		http://www.NetBSD.org/cgi-bin/query-pr-single.pl?number=17434
 ethereal<0.9.5		remote-root-shell	http://www.ethereal.com/appnotes/enpa-sa-00005.html
 squid<2.4.7		remote-user-shell	http://www.squid-cache.org/Advisories/SQUID-2002_3.txt
 nn<6.6.4		remote-user-shell	http://online.securityfocus.com/bid/5160
 inn<2.3.0		remote-user-shell	http://online.securityfocus.com/bid/2620
 cvsup-gui<=16.1.d	remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 cvsup<=16.1.d		remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 xpilot<4.5.1		remote-user-shell	http://online.securityfocus.com/bid/4534
 gnut<0.4.28		remote-user-shell	http://online.securityfocus.com/bid/3267/
 wwwoffle<2.7c		denial-of-service	http://bespin.org/~qitest1/adv/wwwoffle-2.7b.asc
 png<1.2.4		remote-user-shell	ftp://swrinde.nde.swri.edu/pub/png-group/archives/png-list.200207
 php-4.2.[01]		remote-user-shell	http://security.e-matters.de/advisories/022002.html
 ap-php-4.2.[01]		remote-user-shell	http://security.e-matters.de/advisories/022002.html
 srp_client<1.7.5	unknown			http://www-cs-students.stanford.edu/~tjw/srp/download.html
 hylafax<4.1.3		remote-root-shell	http://www.securityfocus.com/bid/3357
 openssl<0.9.6e		remote-root-shell	http://www.openssl.org/news/secadv_20020730.txt
 libmm<1.2.1		local-root-shell	http://online.securityfocus.com/bid/5352
 openssl<0.9.6f		denial-of-service	http://www.openssl.org/news/secadv_20020730.txt
 png<=1.0.12		remote-user-shell	http://online.securityfocus.com/bid/5409
 kdelibs-2.1.*		weak-ssl-authentication	http://online.securityfocus.com/archive/1/286290/2002-08-08/2002-08-14/2
 kdelibs-2.2.1*		weak-ssl-authentication	http://online.securityfocus.com/archive/1/286290/2002-08-08/2002-08-14/2
 kdelibs-2.2.2{,nb1}	weak-ssl-authentication	http://online.securityfocus.com/archive/1/286290/2002-08-08/2002-08-14/2
 kdelibs-3.0.[12]	weak-ssl-authentication	http://online.securityfocus.com/archive/1/286290/2002-08-08/2002-08-14/2
 arla<0.35.9		denial-of-service	http://www.stacken.kth.se/lists/arla-drinkers/2002-08/msg00019.html
 arla<0.35.9		remote-root-shell	http://www.stacken.kth.se/lists/arla-drinkers/2002-08/msg00019.html
 ethereal<0.9.6		remote-root-shell	http://www.ethereal.com/appnotes/enpa-sa-00006.html
 bind<4.9.10		remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 compat14<1.4.3.2	remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 compat14-crypto<1.4.3.2	remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 netbsd32_compat14<1.4.3.2	remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 compat15<1.5.3.1	remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 netbsd32_compat15<1.5.3.1	remote-root-shell	http://www.kb.cert.org/vuls/id/738331
 postgresql-server<7.2.2	remote-code-execution	http://online.securityfocus.com/archive/1/288998
 gaim<0.59.1		remote-code-execution	http://sourceforge.net/tracker/index.php?func=detail&aid=584252&group_id=235&atid=100235
 gaim-gnome<0.59.1	remote-code-execution	http://sourceforge.net/tracker/index.php?func=detail&aid=584252&group_id=235&atid=100235
 mozilla<1.1		remote-file-read	http://archives.neohapsis.com/archives/bugtraq/2002-07/0259.html
 mozilla<1.1		remote-file-read	http://www.geocities.co.jp/SiliconValley/1667/advisory03e.html
 freebsd_lib<=2.2.7	remote-root-shell	http://www.pine.nl/advisories/pine-cert-20020601.html
 opera<6.03		remote-user-shell	http://www.opera.com/linux/changelog/log603.html
 wmnet<1.06nb3		local-root-shell	http://www.securiteam.com/unixfocus/5HP0F1P8AM.html
 apache-2.0.3[0-9]*	denial-of-service	http://www.apacheweek.com/issues/02-09-27#apache2042
 apache-2.0.4[0-1]*	denial-of-service	http://www.apacheweek.com/issues/02-09-27#apache2042
 fetchmail<6.1.0		remote-code-execution	http://security.e-matters.de/advisories/032002.html
 unzip<=5.42		local-file-write	http://online.securityfocus.com/archive/1/196445
 apache-2.0.3[0-9]*	remote-root-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0840
 apache-2.0.4[0-2]*	remote-file-read	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0840
 net-snmp<5.0.5		denial-of-service	http://sourceforge.net/forum/forum.php?forum_id=215540
 sendmail<8.12.6nb1	local-user-shell	http://www.sendmail.org/smrsh.adv.txt
 apache<1.3.27		local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0843
 apache<1.3.27		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0839
 apache<1.3.27		local-file-read		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0840
 apache6<1.3.27		local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0843
 apache6<1.3.27		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0839
 apache6<1.3.27		local-file-read		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0840
 gv<3.5.8nb2		local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1569
 logsurfer<1.5.2		local-user-shell	http://www.cert.dfn.de/eng/team/wl/logsurf/
 suse{,32}_base<7.3nb1	remote-code-execution	http://www.suse.com/de/security/2002_031_glibc.html
 suse{,32}_devel<7.3nb1	remote-code-execution	http://www.suse.com/de/security/2002_031_glibc.html
 kdegraphics<2.2.2nb2	remote-code-execution	http://www.kde.org/info/security/advisory-20021008-1.txt
 kdegraphics-3.0.[123]*	remote-code-execution	http://www.kde.org/info/security/advisory-20021008-1.txt
 kdenetwork-3.0.[123]*	remote-file-read	http://www.kde.org/info/security/advisory-20021008-2.txt
 gtar-base<1.13.25	local-file-write	http://online.securityfocus.com/archive/1/196445
 kth-krb4<1.2.1		remote-code-execution	http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2002-002-kadm4.txt
 inn<2.3.3		local-user-shell	http://online.securityfocus.com/bid/6049
 inn<2.3.3		local-user-shell	http://online.securityfocus.com/bid/4501
 fetchmail<6.1.0		remote-user-shell	http://online.securityfocus.com/bid/5825
 fetchmail<6.1.0		denial-of-service	http://online.securityfocus.com/bid/5826
 fetchmail<6.1.0		remote-user-shell	http://online.securityfocus.com/bid/5827
 squirrelmail<1.2.8	remote-script-inject	http://online.securityfocus.com/bid/5763
 bind<4.9.10nb1		remote-root-shell	http://www.isc.org/products/BIND/bind-security.html
 bind<8.3.3nb1		remote-root-shell	http://www.isc.org/products/BIND/bind-security.html
 samba-2.2.[2-6]*	remote-root-shell	http://www.samba.org/samba/whatsnew/samba-2.2.7.html
 windowmaker<0.80.2	remote-user-shell	http://www.windowmaker.org/
 ssh<3.2.2		local-root-shell	http://www.kb.cert.org/vuls/id/740619
 w3m<0.3.2.1		remote-file-write	http://mi.med.tohoku.ac.jp/%7Esatodai/w3m-dev/200211.month/3492.html
 w3m-img<0.3.2.1		remote-file-write	http://mi.med.tohoku.ac.jp/%7Esatodai/w3m-dev/200211.month/3492.html
 Canna-server-bin<3.5.2nb3	remote-root-shell	http://canna.sourceforge.jp/sec/Canna-2002-01.txt
 windowmaker<0.80.2	local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1277
 kdelibs-2.1.*		remote-user-shell	http://www.kde.org/info/security/advisory-20021111-1.txt
 kdelibs-2.2.1*		remote-user-shell	http://www.kde.org/info/security/advisory-20021111-1.txt
 kdelibs-2.2.2{,nb[123]}	remote-user-shell	http://www.kde.org/info/security/advisory-20021111-1.txt
 kdelibs-3.0.[123]*	remote-user-shell	http://www.kde.org/info/security/advisory-20021111-1.txt
 kdelibs-3.0.4		remote-user-shell	http://www.kde.org/info/security/advisory-20021111-1.txt
 kdenetwork-2.[12]*	remote-root-shell	http://www.kde.org/info/security/advisory-20021111-2.txt
 kdenetwork-3.0.[123]*	remote-root-shell	http://www.kde.org/info/security/advisory-20021111-2.txt
 kdenetwork-3.0.4{,nb1}	remote-root-shell	http://www.kde.org/info/security/advisory-20021111-2.txt
 cyrus-imapd<2.0.17	remote-code-execution	http://www.securityfocus.com/bid/6298
 cyrus-imapd-2.1.9{,nb1}	remote-code-execution	http://www.securityfocus.com/bid/6298
 imap-uw<2002.1rc1	remote-code-execution	http://www.kb.cert.org/vuls/id/961489
 cyrus-sasl-2.1.9{,nb[12]}	remote-code-execution	http://online.securityfocus.com/archive/1/302603
 fetchmail<6.2.0		remote-code-execution	http://security.e-matters.de/advisories/052002.html
 mysql-client<3.23.49nb2	remote-code-execution	http://security.e-matters.de/advisories/042002.html
 mysql-server<3.23.49nb1	remote-code-execution	http://security.e-matters.de/advisories/042002.html
 pine<4.50		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1320
 w3m{,-img}<0.3.2.2	remote-file-read	http://sourceforge.net/project/shownotes.php?group_id=39518&release_id=126233
 ethereal<0.9.8		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00007.html
 wget<1.8.2		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1344
 wget<1.8.2		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1345
 ssh<=3.2.2		denial-of-service	http://www.rapid7.com/advisories/R7-0009.txt
 cups<1.1.18		remote-root-shell	http://www.idefense.com/advisory/12.19.02.txt
 png<1.2.5nb2		unknown			ftp://swrinde.nde.swri.edu/pub/png-group/archives/png-implement.200212
 leafnode<1.9.30		denial-of-service	http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0123.html
 cups<1.1.18		local-code-execution	http://online.securityfocus.com/bid/6475
 xpdf<=2.01		local-code-execution	http://online.securityfocus.com/bid/6475
 mhonarc<2.5.14		cross-site-scripting	http://www.mhonarc.org/archive/cgi-bin/mesg.cgi?a=mhonarc-users&i=200212220120.gBM1K8502180@mcguire.earlhood.com
 libmcrypt<2.5.5		remote-user-shell	http://online.securityfocus.com/archive/1/305162/2003-01-01/2003-01-07/0
 kdebase<3.0.5.1		remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdegames<3.0.5.1	remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdegraphics<3.0.5.1	remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdelibs<3.0.5.1		remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdemultimedia<3.0.5.1	remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdenetwork<3.0.5.1	remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdepim<3.0.5.1		remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdesdk<3.0.5.1		remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 kdeutils<3.0.5.1	remote-code-execution	http://www.kde.org/info/security/advisory-20021220-1.txt
 cvs<1.11.4nb1		remote-file-write	https://ccvs.cvshome.org/servlets/NewsItemView?newsItemID=51
 gabber<0.8.7nb4		privacy-leak		http://online.securityfocus.com/archive/1/307430
 spamassassin<2.43nb2	remote-code-execution	http://cert.uni-stuttgart.de/archive/bugtraq/2003/01/msg00254.html
 p5-Mail-SpamAssassin<2.43nb2	remote-code-execution	http://cert.uni-stuttgart.de/archive/bugtraq/2003/01/msg00254.html
 squirrelmail<1.2.11	cross-site-scripting	http://www.squirrelmail.org/
 openssl<0.9.6gnb1	weak-encryption		http://www.openssl.org/news/secadv_20030219.txt
 php-4.1.[3-9]*		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 php-4.2.[0-2]*		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 php-4.2.3{,nb1}		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 sendmail<8.11.6nb3	remote-code-execution	http://www.cert.org/advisories/CA-2003-07.html
 sendmail-8.12.[0-7]	remote-code-execution	http://www.cert.org/advisories/CA-2003-07.html
 sendmail-8.12.[0-7]nb*	remote-code-execution	http://www.cert.org/advisories/CA-2003-07.html
 snort<1.9.1		remote-code-execution	http://www.kb.cert.org/vuls/id/916785
 snort-pgsql<1.9.1	remote-code-execution	http://www.kb.cert.org/vuls/id/916785
 snort-mysql<1.9.1	remote-code-execution	http://www.kb.cert.org/vuls/id/916785
 hypermail<2.1.7		remote-code-execution	http://www.hypermail.org/mail-archive/2003/Feb/0025.html
 zlib<1.1.4nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0107
 ethereal-0.8.[7-9]	remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00008.html
 ethereal-0.9.[0-9]	remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00008.html
 qpopper<4.0.5		remote-user-shell	http://archives.neohapsis.com/archives/bugtraq/2003-03/0152.html
 ircII<20030313		remote-code-execution	http://eterna.com.au/ircii/
 samba<2.2.8		remote-code-execution	http://us1.samba.org/samba/whatsnew/samba-2.2.8.html
 openssl<0.9.6gnb2	remote-key-theft	http://www.openssl.org/news/secadv_20030317.txt
 openssl<0.9.6gnb2	remote-use-of-secret	http://www.openssl.org/news/secadv_20030319.txt
 mutt<1.4.1		remote-code-execution	http://www.securityfocus.com/archive/1/315771/2003-03-19/2003-03-25/0
 rxvt<2.7.10		remote-code-execution	http://marc.theaimsgroup.com/?l=bugtraq&m=104612710031920&w=2
 eterm<0.9.2		remote-code-execution	http://marc.theaimsgroup.com/?l=bugtraq&m=104612710031920&w=2
 apcupsd<3.8.6		remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1396
 apcupsd-3.10.[0-4]	remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1396
 ap-php-4.1.[3-9]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 ap-php-4.2.[0-2]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 ap-php-4.2.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1396
 ja-samba<2.2.7.1.1.1	remote-code-execution	http://www.samba.gr.jp/news-release/2003/20030317-2.html
 bitchx<1.0.3.19nb1	remote-code-execution	http://www.securityfocus.com/archive/1/315057
 apache-2.0.[0-3][0-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0132
 apache-2.0.4[0-4]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0132
 apcupsd<3.8.6		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0099
 apcupsd-3.10.[0-4]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0099
 setiathome<3.08		remote-code-execution	http://spoor12.edup.tudelft.nl/SkyLined%20v4.2/?Advisories/Seti@home
 samba<=2.2.8		remote-root-access	http://lists.samba.org/pipermail/samba-announce/2003-April/000065.html
 mgetty+sendfax<1.1.29	file-permissions	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1392
 mgetty+sendfax<1.1.29	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1391
 ja-samba<2.2.7.2.1.0	remote-code-execution	http://www.samba.gr.jp/news-release/2003/20030409-2.html
 kde<3.1.1nb1		remote-code-execution	http://www.kde.org/info/security/advisory-20030409-1.txt
 kdelibs<3.1.1nb1	remote-code-execution	http://www.kde.org/info/security/advisory-20030409-1.txt
 kdebase<3.1.1nb1	remote-code-execution	http://www.kde.org/info/security/advisory-20030409-1.txt
 kdegraphics<3.1.1nb2	remote-code-execution	http://www.kde.org/info/security/advisory-20030409-1.txt
 snort<2.0.0		remote-code-execution	http://www.securityfocus.com/archive/1/318669
 snort-pgsql<2.0.0	remote-code-execution	http://www.securityfocus.com/archive/1/318669
 snort-mysql<2.0.0	remote-code-execution	http://www.securityfocus.com/archive/1/318669
 poppassd<4.0.5nb1	local-root-shell	http://www.securityfocus.com/archive/1/319811/2003-04-26/2003-05-02/0
 ethereal<0.9.12		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00009.html
 gnupg<1.2.2		weak-authentication	http://www.securityfocus.com/archive/1/320444
 lv<4.49.5		local-code-execution	http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=no&bug=190941
 bitchx<1.0.3.19nb2	denial-of-service	http://www.securityfocus.com/archive/1/321093
 suse{,32}_libpng<7.3nb1	remote-user-shell	http://www.suse.com/de/security/2003_004_libpng.html
 apache-2.0.3[7-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0245
 apache-2.0.4[0-5]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0245
 suse{,32}_base<7.3nb4	remote-code-execution	http://www.suse.com/de/security/2003_027_glibc.html
 suse{,32}_devel<7.3nb2	remote-code-execution	http://www.suse.com/de/security/2003_027_glibc.html
 cups<1.1.19		denial-of-service	http://www.cups.org/str.php?L75
 speakfreely<=7.5	remote-code-execution	http://www.securityfocus.com/archive/1/324257/2003-06-06/2003-06-12/0
 ethereal<0.9.13		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00010.html
 xpdf<2.02pl1		remote-code-execution	http://lists.netsys.com/pipermail/full-disclosure/2003-June/010397.html
 acroread5<5.07		remote-code-execution	http://lists.netsys.com/pipermail/full-disclosure/2003-June/010397.html
 acroread5<5.08		remote-user-shell	http://lists.netsys.com/pipermail/full-disclosure/2003-July/006342.html
 ImageMagick<5.5.7.1	local-symlink-race	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0455
 apache-2.0.3[7-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0253
 apache-2.0.4[0-6]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0253
 falcons-eye<1.9.3nb3	local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0358
 xconq<7.4.1nb1		local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0607
 mhonarc<2.6.4		cross-site-scripting	http://savannah.nongnu.org/bugs/?func=detailbug&bug_id=3128&group_id=1968
 wu-ftpd<2.6.2nb1	remote-root-shell	http://isec.pl/vulnerabilities/isec-0011-wu-ftpd.txt
 lftp<2.5.3		remote-user-shell	http://freshmeat.net/releases/87364/
 postfix<1.1.13		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0468
 postfix<1.1.13		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0540
 xfstt<1.5		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0581
 xfstt<1.5.1		privacy-leak		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0625
 stunnel<3.25		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1563
 stunnel-4.0[0-3]*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1563
 ssh2<3.2.5		weak-authentication	http://www.ssh.com/company/newsroom/article/454/
 horde<2.2.4rc1		privacy-leak		http://www.securityfocus.com/archive/1/333114/2003-08-13/2003-08-19/0
 imp<3.2.2rc1		privacy-leak		http://www.securityfocus.com/archive/1/333114/2003-08-13/2003-08-19/0
 gopher<3.0.6		remote-root-shell	http://www.securityfocus.com/archive/1/328843/2003-08-18/2003-08-24/2
 unzip<5.50nb2		weak-path-validation	http://www.securityfocus.com/archive/1/334070/2003-08-18/2003-08-24/2
 xmule-[0-9]*		remote-user-shell	http://lists.netsys.com/pipermail/full-disclosure/2003-August/008449.html
 sendmail-8.12.[0-8]nb*	denial-of-service	http://www.sendmail.org/dnsmap1.html
 exim<3.36		remote-code-execution	http://www.exim.org/pipermail/exim-announce/2003q3/000094.html
 exim>=4<4.22		remote-code-execution	http://www.exim.org/pipermail/exim-announce/2003q3/000094.html
 leafnode<1.9.42		denial-of-service	http://www.securityfocus.com/archive/1/336186
 p5-Apache-Gallery<0.7	local-user-shell	http://www.securityfocus.com/archive/1/336583/2003-09-06/2003-09-12/0
 pine<4.58		remote-code-execution	http://www.idefense.com/advisory/09.10.03.txt
 net-snmp<5.0.9		privacy-leak		http://sourceforge.net/forum/forum.php?forum_id=308015
 gtkhtml<1.1.10		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0541
 sane-backends<1.0.11	weak-authentication	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0773
 sane-backends<1.0.11	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0774
 sane-backends<1.0.11	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0775
 sane-backends<1.0.11	unknown			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0776
 sane-backends<1.0.11	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0777
 sane-backends<1.0.11	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0778
 apache<1.3.28		denial-of-service	http://www.kb.cert.org/vuls/id/379828
 apache6<1.3.28		denial-of-service	http://www.kb.cert.org/vuls/id/379828
 mysql-server<3.23.49nb5	remote-code-execution	http://lists.netsys.com/pipermail/full-disclosure/2003-September/009819.html
 openssh<3.7.1		denial-of-service	http://www.openssh.org/txt/buffer.adv
 openssh+gssapi<3.6.1.2.20030430nb2	denial-of-service	http://www.openssh.org/txt/buffer.adv
 sendmail<8.12.10	unknown			http://www.sendmail.org/8.12.10.html
 thttpd<2.23.0.1nb1	remote-code-execution	http://marc.theaimsgroup.com/?l=thttpd&m=106402145912879&w=2
 openssh<3.7.1.2		remote-code-execution	http://www.openssh.com/txt/sshpam.adv
 proftpd<1.2.8nb2	remote-root-shell	http://xforce.iss.net/xforce/alerts/id/154
 cfengine-2.0.[0-7]*	remote-code-execution	http://www.securityfocus.com/archive/1/339083/2003-09-22/2003-09-28/0
 mplayer<1.0rc1nb1	remote-code-execution	http://www.mplayerhq.hu/homepage/news.html#vuln01
 gmplayer<1.0rc1nb1	remote-code-execution	http://www.mplayerhq.hu/homepage/news.html#vuln01
 marbles<1.0.2nb3	local-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0830
 ncftp3<3.1.6		remote-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1345
 openssl<0.9.6k		remote-root-shell	http://www.openssl.org/news/secadv_20030930.txt
 vmware3<3.2.1pl1	local-root-shell	http://marc.theaimsgroup.com/?l=gentoo-announce&m=106181867621048&w=2
 fetchmail<6.2.4nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0790
 kdelibs<2.2.2		denial-of-service	http://www.kde.org/info/security/
 kdebase<2.2.2		remote-code-execution	http://www.kde.org/info/security/
 kdebase<2.2.2		denial-of-service	http://www.kde.org/info/security/
 kdebase<2.2.2		remote-code-execution	http://www.kde.org/info/security/
 silc-client<0.9.13	denial-of-service	http://silcnet.org/txt/security_20031016_1.txt
 silc-server<0.9.14	denial-of-service	http://silcnet.org/txt/security_20031016_1.txt
 sylpheed-claws-0.9.4{,nb1}	denial-of-service	http://www.guninski.com/sylph.html
 vtun<2.6nb1		privacy-leak		ftp://ftp.netbsd.org/pub/NetBSD/packages/distfiles/LOCAL_PORTS/vtun-26to30.patch
 libnids<=1.17		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0850
 apache<1.3.28nb2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0542
 apache6<1.3.28nb2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0542
 apache-2.0.[0-3][0-9]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0254
 apache-2.0.4[0-7]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0254
 sun-{jre,jdk}13<1.0.9	privilege-escalation	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57221&zone_32=category%3Asecurity
 sun-{jre,jdk}14<2.0	privilege-escalation	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57221&zone_32=category%3Asecurity
 thttpd<2.24		remote-code-execution	http://www.texonet.com/advisories/TEXONET-20030908.txt
 coreutils<5.0nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0853
 coreutils<5.0nb3	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0854
 hylafax<4.1.8		remote-code-execution	http://www.securiteam.com/unixfocus/6O00D0K8UI.html
 quagga<0.96.3nb1	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0795
 zebra<0.93bnb1		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0795
 pan<0.13.4		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0855
 ethereal<0.9.15		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00011.html
 mozilla{,-bin}<1.5	remote-code-execution	http://www.mozilla.org/projects/security/known-vulnerabilities.html
 screen<4.0.1nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0972
 gnupg<1.2.3nb2		weak-authentication	http://lists.gnupg.org/pipermail/gnupg-announce/2003q4/000276.html
 rsync<2.5.7		remote-user-shell	http://www.mail-archive.com/rsync@lists.samba.org/msg08782.html
 audit-packages<1.26	no-exploit-but-less-integrity-so-please-upgrade	http://mail-index.netbsd.org/tech-pkg/2003/11/30/0001.html
 cvs<1.11.10		remote-file-write	https://ccvs.cvshome.org/servlets/NewsItemView?newsItemID=84
 lftp<2.6.10		remote-code-execution	http://lists.netsys.com/pipermail/full-disclosure/2003-December/014824.html
 opera<7.23		remote-file-delete	http://opera.rainyblue.org/modules/cjaycontent/index.php?id=1
 mgetty+sendfax<=1.1.30	file-permissions	http://mail-index.netbsd.org/tech-pkg/2003/11/18/0003.html
 cvs<1.11.11		privilege-escalation	https://ccvs.cvshome.org/servlets/NewsItemView?newsItemID=88
 ethereal<0.10.0		denial-of-service	http://www.ethereal.com/appnotes/enpa-sa-00012.html
 bind<8.4.3		cache-poisoning		http://www.kb.cert.org/vuls/id/734644
 mpg321<0.2.10nb3	remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0969
 mailman<2.1.4		cross-site-scripting	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0965
 racoon<20040116a	remote-sa-delete	http://www.securityfocus.com/archive/1/349756
 gaim<0.75nb1		remote-code-execution	http://security.e-matters.de/advisories/012004.html
 freeradius<0.9.3	denial-of-service	http://www.freeradius.org/security.html#0.9.2
 libtool-base<1.5.2nb3	local-symlink-race	http://www.securityfocus.com/archive/1/352519
 jitterbug<1.6.2nb1	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0028
 mpg123<0.59.18nb3	remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0865
 mpg123-esound<0.59.18nb1	remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0865
 mpg123-nas<0.59.18nb3	remote-user-shell	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0865
 clamav<0.66		denial-of-service	http://www.securityfocus.com/archive/1/353186
 mutt<1.4.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0078
 metamail<2.7nb2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0104
 xboing<2.4nb2		privilege-escalation	http://www.debian.org/security/2004/dsa-451
 libxml2<2.6.6		remote-user-shell	http://lists.gnome.org/archives/xml/2004-February/msg00070.html
 automake<1.8.3		privilege-escalation	http://www.securityfocus.com/archive/1/356574/2004-03-05/2004-03-11/2
 apache-2.0.?		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0113
 apache-2.0.[0-3][0-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0113
 apache-2.0.4[0-8]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0113
 apache-2.0.?		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0174
 apache-2.0.[0-3][0-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0174
 apache-2.0.4[0-8]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0174
 apache-2.0.?		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020
 apache-2.0.[0-3][0-9]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020
 apache-2.0.4[0-8]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020
 apache<1.3.29nb2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020
 apache6<1.3.29nb2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0020
 gdk-pixbuf<0.20		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0111
 openssl<0.9.6l		denial-of-service	http://www.openssl.org/news/secadv_20031104.txt
 openssl<0.9.6m		denial-of-service	http://www.openssl.org/news/secadv_20040317.txt
 isakmpd<=20030903nb1	denial-of-service	http://www.rapid7.com/advisories/R7-0018.html
 ghostscript-gnu<7.07	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0354
 ghostscript-gnu-nox11<7.07	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0354
 ghostscript-gnu-x11<7.07	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0354
 python22<2.2.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0150
 python22-pth<2.2.2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0150
 squid<2.5.5		weak-acl-enforcement	http://www.squid-cache.org/Advisories/SQUID-2004_1.txt
 ethereal<0.10.3		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00013.html
 mplayer<1.0rc3nb2	remote-code-execution	http://www.securityfocus.com/archive/1/359025
 gmplayer<1.0rc3nb2	remote-code-execution	http://www.securityfocus.com/archive/1/359025
 mencoder<1.0rc3nb2	remote-code-execution	http://www.securityfocus.com/archive/1/359025
 heimdal<0.6.1		remote-trust		http://www.pdc.kth.se/heimdal/advisory/2004-04-01/
 uulib<0.5.20		archive-code-execution	http://www.securityfocus.com/bid/9758
 racoon<20040408a	weak-authentication	http://www.vuxml.org/freebsd/d8769838-8814-11d8-90d1-0020ed76ef5a.html
 xchat<1.8.11nb7		remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 xchat-2.0.[0-7]		remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 xchat-2.0.[0-7]nb*	remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 xchat-2.0.8		remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 xchat-2.0.8nb1		remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 xchat-gnome<1.8.11nb7	remote-code-execution	http://mail.nl.linux.org/xchat-announce/2004-04/msg00000.html
 cvs<1.11.15		remote-file-write	https://ccvs.cvshome.org/servlets/NewsItemView?newsItemID=102
 neon<0.24.5		unknown			http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0179
 tla<1.2.1rc1		remote-code-execution	http://marc.theaimsgroup.com/?l=openpkg-announce&m=108213423102539&w=2
 cadaver<0.22.1		remote-code-execution	http://marc.theaimsgroup.com/?l=openpkg-announce&m=108213423102539&w=2
 lha<1.14i		local-code-execution	http://www2m.biglobe.ne.jp/~dolphin/lha/lha-unix.htm
 mplayer>=1.0rc0<1.0rc4	remote-code-execution	http://www.mplayerhq.hu/homepage/design6/news.html
 xine-lib-1rc[0-2]*	remote-file-write	http://www.xinehq.de/index.php/security/XSA-2004-1
 xine-lib-1rc3[ab]*	remote-file-write	http://www.xinehq.de/index.php/security/XSA-2004-1
 rsync<2.6.1		remote-file-write	http://rsync.samba.org/#security_apr04
 exim<3.36nb2		remote-code-execution	http://www.guninski.com/exim1.html
 exim>=4<4.30		remote-code-execution	http://www.guninski.com/exim1.html
 exim-exiscan-4.[0-2]*	remote-code-execution	http://www.guninski.com/exim1.html
 pine<4.58nb4		local-symlink-race	http://www.NetBSD.org/cgi-bin/query-pr-single.pl?number=22226
 xine-lib-1rc[0-3]*	remote-file-write	http://www.xinehq.de/index.php/security/XSA-2004-3
 global<4.6		remote-exec		http://savannah.gnu.org/forum/forum.php?forum_id=2029
 opera<7.50		remote-file-write	http://www.idefense.com/application/poi/display?id=104&type=vulnerabilities&flashstatus=true
 lha<114.9nb2		remote-code-execution	http://www.securityfocus.com/bid/10243
 apache<1.3.31		weak-authentication	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0987
 apache<1.3.31		weak-acl-enforcement	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0993
 apache<1.3.31		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0174
 apache6<1.3.31		weak-authentication	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0987
 apache6<1.3.31		weak-acl-enforcement	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0993
 apache6<1.3.31		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0174
 kdelibs<3.2.2nb2	remote-file-write	http://www.kde.org/info/security/advisory-20040517-1.txt
 subversion-base<1.0.3	denial-of-service	http://subversion.tigris.org/servlets/ReadMsg?list=announce&msgNo=125
 subversion-base<1.0.3	remote-code-execution	http://subversion.tigris.org/servlets/ReadMsg?list=announce&msgNo=125
 ap{2,22}-subversion<1.0.3	denial-of-service	http://subversion.tigris.org/servlets/ReadMsg?list=announce&msgNo=125
 ap{2,22}-subversion<1.0.3	remote-code-execution	http://subversion.tigris.org/servlets/ReadMsg?list=announce&msgNo=125
 neon<0.24.6		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0398
 cvs-1.11.[0-9]		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0396
 cvs-1.11.1[0-5]		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0396
 cadaver<0.22.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0398
 ap-ssl<2.8.18		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0488
 squirrelmail<1.4.3	cross-site-scripting	http://www.securityfocus.com/bid/10246/
 ethereal<0.10.4		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00014.html
 apache-2.0.49{,nb1}	remote-code-execution	http://www.securityfocus.com/bid/10355
 roundup<0.7.3		remote-file-read	http://cvs.sourceforge.net/viewcvs.py/*checkout*/roundup/roundup/CHANGES.txt?rev=1.533.2.21
 cvs-1.11.[0-9]		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0416
 cvs-1.11.[0-9]nb*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0416
 cvs-1.11.1[0-6]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0416
 subversion-base<1.0.5	denial-of-service	http://www.contactor.se/~dast/svn/archive-2004-06/0331.shtml
 racoon<20040617a	weak-authentication	http://www.securitytracker.com/alerts/2004/Jun/1010495.html
 mit-krb5<1.3.4		remote-code-execution	http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2004-001-an_to_ln.txt
 imp<3.2.4		cross-site-scripting	http://securityfocus.com/bid/10501/info/
 gmplayer<1.0rc4nb2	remote-code-execution	http://www.open-security.org/advisories/5
 ethereal<0.10.5		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00015.html
 courier-auth<0.45	remote-code-execution	http://www.securityfocus.com/bid/9845
 courier-imap<3.0.0	remote-code-execution	http://www.securityfocus.com/bid/9845
 sqwebmail<4.0.0		remote-code-execution	http://www.securityfocus.com/bid/9845
 ap-ssl<2.8.19		remote-code-execution	http://www.mail-archive.com/modssl-users@modssl.org/msg16853.html
 ap{2,22}-subversion<1.0.6	weak-acl-enforcement	http://www.contactor.se/~dast/svn/archive-2004-07/0814.shtml
 samba<2.2.10		remote-code-execution	http://www.samba.org/samba/whatsnew/samba-2.2.10.html
 samba-3.0.[0-4]{,a*,nb?}	remote-code-execution	http://www.samba.org/samba/whatsnew/samba-3.0.5.html
 ja-samba<2.2.9.1.0nb1	remote-code-execution	http://www.samba.org/samba/whatsnew/samba-2.2.10.html
 acroread5<5.09		arbitrary-code-execution	http://kb2.adobe.com/cps/322/322914.html
 png<1.2.6rc1		remote-code-execution	http://scary.beasts.org/security/CESA-2004-001.txt
 suse{,32}_libpng-7.3{,nb1}	remote-code-execution	http://scary.beasts.org/security/CESA-2004-001.txt
 suse{,32}_libpng-9.1		remote-code-execution	http://scary.beasts.org/security/CESA-2004-001.txt
 suse{,32}_libpng<=6.4	remote-code-execution	http://scary.beasts.org/security/CESA-2004-001.txt
 mozilla{,-gtk2}{,-bin}<1.7.2	ssl-certificate-spoofing	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0763
 mozilla{,-gtk2}{,-bin}<1.7.2	denial-of-service		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0758
 MozillaFirebird{,-gtk2}{,-bin}<0.9.3	ssl-certificate-spoofing	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0763
 firefox{,-gtk2}{,-bin}<0.9.3	ssl-certificate-spoofing	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0763
 MozillaFirebird{,-gtk2}{,-bin}<0.9.3	denial-of-service		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0758
 firefox{,-gtk2}{,-bin}<0.9.3	denial-of-service		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0758
 thunderbird{,-gtk2}{,-bin}<0.7.2	ssl-certificate-spoofing	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0763
 thunderbird{,-gtk2}{,-bin}<0.7.2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0758
 cfengine-2.0.*		remote-code-execution	http://www.securityfocus.org/advisories/7045
 cfengine-2.1.[0-7]	remote-code-execution	http://www.securityfocus.org/advisories/7045
 spamassassin<2.64	denial-of-service	http://marc.theaimsgroup.com/?l=spamassassin-announce&m=109168121628767&w=2
 kdelibs<3.2.3nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0689
 kdelibs<3.2.3nb2	local-account-compromise	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0690
 kdelibs<3.2.3nb2	http-frame-spoof	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0721
 kdebase<3.2.3nb1	http-frame-spoof	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0721
 opera<7.54		remote-file-read	http://www.greymagic.com/security/advisories/gm008-op/
 opera<7.54		www-address-spoof	http://secunia.com/advisories/12162/
 rsync<2.6.2nb1		remote-file-access	http://samba.org/rsync/#security_aug04
 lukemftpd-[0-9]*	remote-root-access	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2004-009.txt.asc
 tnftpd<20040810		remote-root-access	ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2004-009.txt.asc
 demime<1.1d		denial-of-service	http://scifi.squawk.com/demime.html
 kdelibs<3.2.3nb2	www-session-fixation	http://www.kde.org/info/security/advisory-20040823-1.txt
 fidogate<4.4.9nb1	local-file-write	http://sourceforge.net/tracker/index.php?func=detail&aid=1013726&group_id=10739&atid=310739
 qt3-libs<3.3.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0691
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=0
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=1
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=2
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=3
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=4
 gaim<0.82		remote-code-execution	http://gaim.sourceforge.net/security/index.php?id=5
 gaim<0.82		denial-of-service	http://gaim.sourceforge.net/security/index.php?id=6
 zlib<1.2.1nb2		denial-of-service	http://www.openpkg.org/security/OpenPKG-SA-2004.038-zlib.html
 imlib2<1.1.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0802
 mit-krb5<1.3.4nb2	remote-code-execution	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-002-dblfree.txt
 mit-krb5<1.3.4nb2	denial-of-service	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-003-asn1.txt
 mpg123<0.59.18nb4	remote-user-shell	http://www.securityfocus.com/archive/1/374433
 mpg123-esound<0.59.18nb2	remote-user-shell	http://www.securityfocus.com/archive/1/374433
 mpg123-nas<0.59.18nb4	remote-user-shell	http://www.securityfocus.com/archive/1/374433
 apache-2.0.[0-4]*	denial-of-service	http://issues.apache.org/bugzilla/show_bug.cgi?id=29964
 apache-2.0.50		denial-of-service	http://issues.apache.org/bugzilla/show_bug.cgi?id=29964
 apache-2.0.[0-4]*	denial-of-service	http://issues.apache.org/bugzilla/show_bug.cgi?id=30134
 apache-2.0.50		denial-of-service	http://issues.apache.org/bugzilla/show_bug.cgi?id=30134
 samba-3.0.[0-6]{,nb*}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0807
 samba-3.0.[0-6]{,nb*}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0808
 heimdal<0.6.3		remote-root-access	http://www.pdc.kth.se/heimdal/advisory/2004-09-13/
 MozillaFirebird{,-gtk2}{,-bin}<0.10	remote-code-execution	http://secunia.com/advisories/12526/
 firefox<0.10		remote-code-execution	http://secunia.com/advisories/12526/
 firefox-bin<0.10	remote-code-execution	http://secunia.com/advisories/12526/
 firefox-gtk2<0.10	remote-code-execution	http://secunia.com/advisories/12526/
 firefox-gtk2-bin<0.10	remote-code-execution	http://secunia.com/advisories/12526/
 mozilla<1.7.3		remote-code-execution	http://secunia.com/advisories/12526/
 mozilla-bin<1.7.3	remote-code-execution	http://secunia.com/advisories/12526/
 mozilla-gtk2<1.7.3	remote-code-execution	http://secunia.com/advisories/12526/
 thunderbird<0.8		remote-code-execution	http://secunia.com/advisories/12526/
 thunderbird-bin<0.8	remote-code-execution	http://secunia.com/advisories/12526/
 thunderbird-gtk2<0.8	remote-code-execution	http://secunia.com/advisories/12526/
 xpm<3.4knb2		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
 xpm<3.4knb2		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
 XFree86-libs<4.4.0nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
 XFree86-libs<4.4.0nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
 xorg-libs<6.7.0nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
 xorg-libs<6.7.0nb2	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
 openmotif<2.1.30nb3	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
 openmotif<2.1.30nb3	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
 sudo-1.6.8		local-file-read		http://www.sudo.ws/sudo/alerts/sudoedit.html
 apache-2.0.[0-4]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0747
 apache-2.0.50		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0747
 apache-2.0.50nb1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0747
 gdk-pixbuf<0.22		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753
 gtk2+<2.4.10		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753
 gdk-pixbuf<0.22		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782
 gtk2+<2.4.10		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782
 gdk-pixbuf<0.22		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0783
 gtk2+<2.4.10		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0783
 gdk-pixbuf<0.22		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788
 gtk2+<2.4.10		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788
 wv<=1.0.0nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0645
 apache-2.0.51		weak-acl-enforcement	http://nagoya.apache.org/bugzilla/show_bug.cgi?id=31315
 apache-1.3.2[5-9]*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache-1.3.30*		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache-1.3.31{,nb[1-4]}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache<1.3.33		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0940
 apache6-1.3.2[5-9]*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache6-1.3.30*		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache6-1.3.31{,nb[1-4]}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492
 apache6<1.3.33		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0940
 ImageMagick<6.0.6.2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0827
 ap{2,22}-subversion<1.0.8	metadata-leak	http://subversion.tigris.org/security/CAN-2004-0749-advisory.txt
 squid<2.5.6		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0832
 MozillaFirebird{,-gtk2}{,-bin}<0.10.1	local-file-write	http://www.mozilla.org/press/mozilla-2004-10-01-02.html
 firefox<0.10.1		local-file-write	http://www.mozilla.org/press/mozilla-2004-10-01-02.html
 firefox-bin<0.10.1	local-file-write	http://www.mozilla.org/press/mozilla-2004-10-01-02.html
 firefox-gtk2<0.10.1	local-file-write	http://www.mozilla.org/press/mozilla-2004-10-01-02.html
 firefox-gtk2-bin<0.10.1	local-file-write	http://www.mozilla.org/press/mozilla-2004-10-01-02.html
 gzip-base<1.2.4b	remote-code-execution	http://www.securityfocus.com/bid/3712
 squid<2.5.7		denial-of-service	http://www.idefense.com/application/poi/display?id=152&type=vulnerabilities
 tiff<3.6.1nb4		remote-code-execution	http://scary.beasts.org/security/CESA-2004-006.txt
 tiff<3.6.1nb4		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0804
 tiff<3.6.1nb4		denial-of-service	http://securitytracker.com/id?1011674
 ap-ssl<2.8.20		weak-acl-enforcement	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 sox<12.17.6		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0557
 ssmtp<2.61		remote-user-access	http://lists.debian.org/debian-security-announce-2004/msg00084.html
 kdegraphics-3.2.*	denial-of-service	http://www.kde.org/info/security/advisory-20041021-1.txt
 kdegraphics-3.3.{0,0nb1,1}	denial-of-service	http://www.kde.org/info/security/advisory-20041021-1.txt
 samba-2.2.[1-9]		denial-of-service	http://us1.samba.org/samba/history/samba-2.2.11.html
 samba-2.2.10		denial-of-service	http://us1.samba.org/samba/history/samba-2.2.11.html
 samba-2.2.[1-9]		remote-file-access	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0815
 samba-2.2.{10,11}	remote-file-access	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0815
 ja-samba<2.2.12.0.9.1	remote-file-access	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0815
 postgresql-server-7.3.[1-7]{,nb*}	local-symlink-race	http://www.postgresql.org/about/news.234
 postgresql73-server-7.3.[1-7]{,nb*}	local-symlink-race	http://www.postgresql.org/about/news.234
 postgresql74-server-7.4.[1-5]{,nb*}	local-symlink-race	http://www.postgresql.org/about/news.234
 cabextract<1.1		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0916
 mpg123<0.59.18nb5	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0982
 mpg123-esound<0.59.18nb4	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0982
 mpg123-nas<0.59.18nb5	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0982
 socat<1.4.0.3		privilege-escalation	http://www.nosystem.com.ar/advisories/advisory-07.txt
 ruby-base<1.6.8nb7	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0983
 gnats<4			privilege-escalation	http://www.securityfocus.com/archive/1/326337
 mozilla<1.7.3nb2	local-file-write	http://secunia.com/advisories/12956/
 mozilla-bin<1.7.3nb1	local-file-write	http://secunia.com/advisories/12956/
 mozilla-gtk2<1.7.3nb2	local-file-write	http://secunia.com/advisories/12956/
 MozillaFirebird{,-gtk2}{,-bin}<1.0	local-file-write	http://secunia.com/advisories/12956/
 firefox<1.0		local-file-write	http://secunia.com/advisories/12956/
 firefox-bin<1.0		local-file-write	http://secunia.com/advisories/12956/
 firefox-gtk2<1.0	local-file-write	http://secunia.com/advisories/12956/
 firefox-gtk2-bin<1.0	local-file-write	http://secunia.com/advisories/12956/
 thunderbird<0.8nb1	local-file-write	http://secunia.com/advisories/12956/
 thunderbird-gtk2<0.8nb1	local-file-write	http://secunia.com/advisories/12956/
 thunderbird-bin<0.8nb1	local-file-write	http://secunia.com/advisories/12956/
 sudo<1.6.8pl3		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1051
 gnats<4.0.1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0623
 freeradius<1.0.1	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0938
 freeradius<1.0.1	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0960
 freeradius<1.0.1	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0961
 samba<2.2.12nb2		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0930
 samba<2.2.12nb2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0882
 samba<2.2.12nb2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1154
 samba-3.0.[0-6]{,nb*}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0930
 samba-3.0.[0-7]{,nb*}	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0882
 samba-3.0.[0-9]{,nb*}	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1154
 ja-samba-[0-9]*		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0930
 ja-samba<2.2.12.0.9.1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0882
 ja-samba<2.2.12.0.9.1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1154
 squirrelmail<1.4.3anb1	cross-site-scripting	http://article.gmane.org/gmane.mail.squirrelmail.user/21169
 ja-squirrelmail<1.4.3anb3	cross-site-scripting	http://article.gmane.org/gmane.mail.squirrelmail.user/21169
 snownews<1.5		unsafe-umask		http://kiza.kcore.de/software/snownews/changes#150
 liferea<0.6.2		unsafe-umask		http://sourceforge.net/project/shownotes.php?release_id=282434
 libxml2<2.6.14		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0989
 libxml<1.8.17nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0989
 sun-{jre,jdk}14<2.6	remote-code-execution	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1
 sun-{jre,jdk}13<1.0.12nb1	remote-code-execution	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57591-1
 xpdf<3.00pl1		remote-code-execution	http://www.gentoo.org/security/en/glsa/glsa-200410-20.xml
 php-curl<4.3.2		local-file-read		http://www.securityfocus.com/bid/11557
 jabberd-2.0s[23]*	remote-code-execution	http://www.securityfocus.com/archive/1/382250
 jabberd-2.0s4		remote-code-execution	http://www.securityfocus.com/archive/1/382250
 jabberd<1.4.2nb4	denial-of-service	http://www.securityfocus.com/archive/1/375955
 imlib<1.9.15		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1025
 imlib<1.9.15nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1026
 kdelibs<3.3.2nb1	plain-text-password-exposure	http://www.kde.org/info/security/advisory-20041209-1.txt
 kdegraphics<3.3.2	denial-of-service	http://www.kde.org/info/security/advisory-20041209-2.txt
 kdelibs<3.3.2nb2	cross-site-scripting	http://www.kde.org/info/security/advisory-20041213-1.txt
 kdebase<3.3.2nb1	cross-site-scripting	http://www.kde.org/info/security/advisory-20041213-1.txt
 phpmyadmin-2.6.0-pl2	remote-code-execution	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 phpmyadmin-2.6.0pl2	remote-code-execution	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 phpmyadmin-2.[4-5]*	remote-file-read	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 phpmyadmin-2.6.0	remote-file-read	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 phpmyadmin-2.6.0pl2	remote-file-read	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 phpmyadmin-2.6.0-pl*	remote-file-read	http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2004-4
 namazu<2.0.14		cross-site-scripting	http://www.namazu.org/security.html.en
 {ap-,}php<4.3.10	remote-code-execution	http://www.hardened-php.net/advisories/012004.txt
 {ap-,}php-5.0.2*	remote-code-execution	http://www.hardened-php.net/advisories/012004.txt
 {ap-,}php<4.3.10	local-code-execution	http://www.hardened-php.net/advisories/012004.txt
 {ap-,}php-5.0.2*	local-code-execution	http://www.hardened-php.net/advisories/012004.txt
 cyrus-imapd-2.2.[4-8]{,nb*}	remote-code-execution	http://security.e-matters.de/advisories/152004.txt
 cyrus-imapd-2.2.[0-5]{,nb*}	remote-code-execution	http://security.e-matters.de/advisories/152004.txt
 cyrus-imapd-2.2.[0-7]{,nb*}	remote-code-execution	http://security.e-matters.de/advisories/152004.txt
 cyrus-imapd-2.2.[7-8]{,nb*}	remote-code-execution	http://security.e-matters.de/advisories/152004.txt
 cyrus-imapd-2.2.[0-9]{,nb*}	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0546
 cyrus-imapd-2.2.1[0-1]{,nb*}	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0546
 cyrus-imapd<2.1.18	remote-code-execution	http://security.e-matters.de/advisories/152004.txt
 cyrus-imapd<2.1.18	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0546
 ethereal-0.9.*		remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00016.html
 ethereal-0.10.[0-7]{,nb*}	remote-code-execution	http://www.ethereal.com/appnotes/enpa-sa-00016.html
 tcpdump<3.8.1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0989
 tcpdump<3.8.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0057
 tcpdump<3.8.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0183
 tcpdump<3.8.2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0184
 mc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0226
 gmc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0226
 mc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0231
 gmc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0231
 mc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0232
 gmc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0232
 netpbm<9.26		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0924
 pwlib<1.6.0		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0097
 leafnode<1.9.48		denial-of-service	http://leafnode.sourceforge.net/leafnode-SA-2004-01
 lbreakout<2.4beta2	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0158
 ap-python<2.7.9		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0973
 logcheck<1.1.1		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0404
 zope<2.5.2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0688
 flim<1.14.3		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0422
 gnome-vfs<1.0.1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0494
 cups<1.1.21		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0558
 openoffice<1.1.3	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0752
 openoffice-linux<1.1.3	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0752
 imlib<1.9.15		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0817
 apache-2.0.51*		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0811
 mysql-server<3.23.59	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.0.[0-9]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.0.[0-9]nb*	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.0.1[0-8]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.0.1[0-8]nb*	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.1.[01]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server-4.1.[01]nb*	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0835
 mysql-server<3.23.49	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.[0-9]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.[0-9]nb*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.1[0-9]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.1[0-9]nb*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.20	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server-4.0.20nb*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0836
 mysql-server<3.23.49	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.[0-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.[0-9]nb*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.1[0-9]	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.1[0-9]nb*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.20	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 mysql-server-4.0.20nb*	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0837
 cyrus-sasl<2.1.19	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0884
 cups<1.1.21		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0888
 cups<1.1.21		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0889
 cups<1.1.21		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0923
 apache-2.0.3[5-9]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 apache-2.0.3[5-9]nb*	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 apache-2.0.4[0-9]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 apache-2.0.4[0-9]nb*	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 apache-2.0.5[0-2]	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 apache-2.0.5[0-2]nb[1-4]	weak-cryptography	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0885
 openmotif<2.1.30nb3	denial-of-service	http://www.ics.com/developers/index.php?cont=xpm_security_alert
 catdoc<0.91.5-2		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0193
 gd<2.0.22		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0941
 gd<2.0.28		denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0990
 ImageMagick<6.1.0	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0981
 lesstif<0.93.96		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
 lesstif<0.93.96		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
 lesstif<0.94.0		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0914
 xorg-libs<6.8.1nb4	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0914
 XFree86-libs<4.4.1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0914
 xpm<3.4nb4		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0914
 groff<1.19.1nb2		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0969
 zip<2.3nb3		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1010
 openssl<0.9.6mnb2	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0975
 mplayer<1.0rc5pl2	remote-code-execution	http://www.idefense.com/application/poi/display?id=166&type=vulnerabilities
 mplayer<1.0rc5pl2	remote-code-execution	http://www.idefense.com/application/poi/display?id=167&type=vulnerabilities
 mplayer<1.0rc5pl2	remote-code-execution	http://www.idefense.com/application/poi/display?id=168&type=vulnerabilities
 cscope<15.4nb4		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0996
 acroread5<5.10		remote-code-execution	http://www.adobe.com/support/techdocs/331153.html
 a2ps<4.13.0.2nb5	unsafe-shell-escape	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1170
 a2ps<4.13.0.2nb7	local-symlink-race	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1377
 mc<4.6.1rc2		privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-1023
 tiff<3.6.1nb6		buffer-overrun		http://www.idefense.com/application/poi/display?id=173&type=vulnerabilities
 xpdf<3.00pl2		remote-code-execution	http://www.idefense.com/application/poi/display?id=172&type=vulnerabilities
 xzgv<0.8.0.1		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0994
 xine-lib-1rc[2-5]*	remote-code-execution	http://www.xinehq.de/index.php/security/XSA-2004-4
 xine-lib<1rc6		remote-code-execution	http://www.xinehq.de/index.php/security/XSA-2004-5
 gpdf<2.8.1		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0888
 koffice<1.3.5		integer-overflow	http://kde.org/areas/koffice/releases/1.3.4-release.php
 pdfTexinteTexbin<perhaps	integer-overflow	http://www.tug.org/applications/pdftex/NEWS
 opera<7.54pl1		remote-code-execution	http://archives.neohapsis.com/archives/bugtraq/2004-11/0250.html
 wget<1.9		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1487
 p5-Tk<804.027nb2	remote-code-execution	http://scary.beasts.org/security/CESA-2004-001.txt
 xine-lib<1rc6anb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1187
 xine-lib<1rc6anb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1188
 {ap-,}php<4.3.9		remote-memory-read	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0958
 {ap-,}php-5.0.[01]*	remote-memory-read	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0958
 {ap-,}php<4.3.9		remote-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0959
 {ap-,}php-5.0.[01]*	remote-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0959
 {ap-,}php<4.3.10	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1065
 {ap-,}php-5.0.[012]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1065
 {ap-,}php<4.3.10	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1019
 {ap-,}php-5.0.[012]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1019
 kdelibs<3.3.2		remote-code-execution	http://www.kde.org/info/security/advisory-20041220-1.txt
 kdegraphics<3.3.2nb1	remote-code-execution	http://www.kde.org/info/security/advisory-20041223-1.txt
 mit-krb5<1.3.6		remote-code-execution	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-004-pwhist.txt
 snort-2.1.[3-9]*	denial-of-service	http://www.webservertalk.com/message416634.html
 snort-mysql-2.1.[3-9]*	denial-of-service	http://www.webservertalk.com/message416634.html
 snort-pgsql-2.1.[3-9]*	denial-of-service	http://www.webservertalk.com/message416634.html
 snort-2.2.0		denial-of-service	http://www.webservertalk.com/message416634.html
 snort-mysql-2.2.0	denial-of-service	http://www.webservertalk.com/message416634.html
 snort-pgsql-2.2.0	denial-of-service	http://www.webservertalk.com/message416634.html
 tcpdump<0.21		privilege-escalation	http://www.atstake.com/research/advisories/2003/a080703-2.txt
 asp2php-[0-9]*		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1261
 chbg<=1.5		remote-code-execution	http://tigger.uic.edu/~jlongs2/holes/chbg.txt
 xlreader<0.9.0nb1	remote-code-execution	http://tigger.uic.edu/~jlongs2/holes/xlreader.txt
 cups<1.1.23rc1		denial-of-service	http://www.cups.org/str.php?L1023
 cups<1.1.23rc1		remote-code-execution	http://www.cups.org/str.php?L1024
 mozilla<1.7.5		remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 mozilla-bin<1.7.5	remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 mozilla-gtk2<1.7.5	remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 thunderbird<1.0		remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 thunderbird-bin<1.0	remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 thunderbird-gtk2<1.0	remote-code-execution	http://isec.pl/vulnerabilities/isec-0020-mozilla.txt
 cups<1.1.23		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1125
 perl{,-thread}<5.6.2	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0452
 perl{,-thread}-5.6.[0-9]*		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0448
 perl{,-thread}-5.8.[0-4]{,nb*}*		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0452
 perl{,-thread}-5.8.[0-4]{,nb*}*		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0448
 perl{,-thread}-5.8.5{,nb[123456]}	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0976
 perl{,-thread}-5.8.6	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0976
 kdelibs<3.3.2nb6	remote-code-execution	http://www.kde.org/info/security/advisory-20050101-1.txt
 xine-lib<1rc6anb2	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1300
 xine-lib-1rc8{,nb1}	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1300
 nasm<0.98.39		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1287
 bugzilla<2.18rc3nb1	cross-site-scripting	https://bugzilla.mozilla.org/show_bug.cgi?id=272620
 exim<3.36nb7		remote-code-execution	http://www.exim.org/mail-archives/exim-announce/2005/msg00000.html
 exim>=4<4.43nb2		remote-code-execution	http://www.exim.org/mail-archives/exim-announce/2005/msg00000.html
 exim-exiscan<4.43nb2	remote-code-execution	http://www.exim.org/mail-archives/exim-announce/2005/msg00000.html
 vim<6.3.045		local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 vim-gtk<6.3.045		local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 vim-gtk2<6.3.045	local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 vim-kde<6.3.045		local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 vim-motif<6.3.045	local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 vim-xaw<6.3.045		local-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
 pcal<4.7nb1		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1289
 tnftp<20050103		remote-code-execution	http://tigger.uic.edu/~jlongs2/holes/tnftp.txt
 napshare<1.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1286
 yamt<0.5		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1302
 cups-1.1.2[12]*		denial-of-service	http://www.cups.org/str.php?L1042+P0+S-1+C0+I0+E0+Q1042
 dillo<0.8.3nb2		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0012
 tiff<3.6.1nb6		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1308
 mpg123<0.59.18nb7	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1284
 mpg123-esound<0.59.18nb5	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1284
 mpg123-nas<0.59.18nb6	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1284
 mpg123<0.59.18nb7	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0991
 mpg123-esound<0.59.18nb5	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0991
 mpg123-nas<0.59.18nb6	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0991
 hylafax<4.2.1		weak-acl-enforcement	http://www.hylafax.org/4.2.1.html
 teTeX-bin<2.0.2nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1125
 teTeX-bin<2.0.2nb4	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0888
 awstats<6.3		local-code-execution	http://www.idefense.com/application/poi/display?id=185&type=vulnerabilities
 ImageMagick<6.1.8.8	remote-code-execution	http://www.idefense.com/application/poi/display?id=184&type=vulnerabilities
 xpdf<3.00pl3		remote-code-execution	http://www.idefense.com/application/poi/display?id=186&type=vulnerabilities
 cups<1.1.23nb1		remote-code-execution	http://www.idefense.com/application/poi/display?id=186&type=vulnerabilities
 kdegraphics<3.3.2nb3	remote-code-execution	http://www.kde.org/info/security/advisory-20050119-1.txt
 mysql-client<3.23.58nb3	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.0.[0-9]{,nb*}	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.0.1[0-9]*	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.0.2[0-2]*	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.0.23	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.1.[0-8]{,nb*}	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 mysql-client-4.1.9	local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0004
 ethereal<0.10.9		denial-of-service	http://ethereal.com/appnotes/enpa-sa-00017.html
 ethereal<0.10.9		remote-code-execution	http://ethereal.com/appnotes/enpa-sa-00017.html
 koffice<1.3.5nb4	remote-code-execution	http://www.kde.org/info/security/advisory-20050120-1.txt
 squid<2.5.7nb5		buffer-overrun		http://www.squid-cache.org/Advisories/SQUID-2005_1.txt
 squid<2.5.7nb6		buffer-overrun		http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0094
 squid<2.5.7nb7		denial-of-service	http://www.squid-cache.org/Advisories/SQUID-2005_2.txt
 squid<2.5.7nb8		denial-of-service	http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-response_splitting
 unarj<2.65nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0947
 unarj<2.65nb1		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1027
 suse{,32}_libtiff<9.1nb1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1308
 suse{,32}_x11<9.1nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0914
 suse{,32}_gtk2<9.1nb3	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753
 suse{,32}_gtk2<9.1nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782
 suse{,32}_gtk2<9.1nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0783
 suse{,32}_gtk2<9.1nb3	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788
 webmin<1.160		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0559
 teTeX-bin<2.0.2nb5	remote-code-execution	http://www.idefense.com/application/poi/display?id=186&type=vulnerabilities
 sun-{jre,jdk}14<2.6	remote-code-execution	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57708-1
 sun-{jre,jdk}13<1.0.13	remote-code-execution	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57708-1
 evolution12<1.2.4nb4	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0102
 evolution14<1.4.6nb3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0102
 evolution<2.0.3nb1	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0102
 enscript<1.6.3nb1	remote-code-execution	http://www.securityfocus.org/advisories/7879
 bind-8.4.[4-5]{,nb*}	denial-of-service	http://www.kb.cert.org/vuls/id/327633
 bind-9.3.0		denial-of-service	http://www.kb.cert.org/vuls/id/938617
 squid<2.5.7nb9		cache-poisoning		http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-response_splitting
 p5-DBI<1.46nb2		local-file-write	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0077
 f2c<20001205nb8		local-file-write	http://www.debian.org/security/2005/dsa-661
 squid<2.5.7nb10		buffer-overrun		http://www.squid-cache.org/Advisories/SQUID-2005_3.txt
 zope25-Silva<0.9.2.8	privilege-escalation	http://mail.zope.org/pipermail/zope-announce/2005-February/001653.html
 postgresql-server-7.3.[1-8]{,nb*}	privilege-escalation	http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php
 postgresql73-server-7.3.[1-8]{,nb*}	privilege-escalation	http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php
 postgresql74-server-7.4.[1-6]{,nb*}	privilege-escalation	http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php
 postgresql80-server-8.0.0*	privilege-escalation	http://archives.postgresql.org/pgsql-bugs/2005-01/msg00269.php
 perl{,-thread}-5.8.{[0-4]{,nb*},5{,nb[1-7]},6{,nb[12]}}	local-root-exploit	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0155
 perl{,-thread}-5.8.{[0-4]{,nb*},5{,nb[1-7]},6{,nb[12]}}	buffer-overrun	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0156
 gpdf<2.8.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1125
 gpdf<2.8.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
 python22<2.2.3nb5	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python22-pth<2.2.3nb5	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python23<2.3.4nb7	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python23-pth<2.3.4nb7	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python23-nth<2.3.4nb2	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python24<2.4nb4		remote-code-execution	http://www.python.org/security/PSF-2005-001/
 python24-pth<2.4nb4	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 py{15,20,21,22,23,24,25,26,27,31}-xmlrpc<=0.9.8	remote-code-execution	http://www.python.org/security/PSF-2005-001/
 opera<7.54pl2		remote-code-execution	http://secunia.com/advisories/13818/
 opera<=7.54pl2		www-address-spoof	http://secunia.com/advisories/14154/
 firefox{,-bin,-gtk2,-gtk2-bin}<=1.0		www-address-spoof	http://secunia.com/advisories/14163/
 mozilla{,-bin,-gtk2,-gtk2-bin}<=1.7.5		www-address-spoof	http://secunia.com/advisories/14163/
 kdebase<=3.3.2nb1	www-address-spoof	http://secunia.com/advisories/14162/
 apache-2.0.5[0-2]{,nb*}	denial-of-service	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0942
 fprot-workstation-bin<4.5.3	local-code-execution	http://www.f-secure.com/security/fsc-2005-1.shtml
 mailman<2.1.4nb3	remote-file-read	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0202
 awstats<=6.3nb3		denial-of-service	http://www.securityfocus.com/archive/1/390368
 awstats<=6.3nb3		remote-code-execution	http://www.securityfocus.com/archive/1/390368
 sympa<=4.1.2nb1		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0073
 bidwatcher<1.3.17	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0158
 kdeedu<=3.3.2		privilege-escalation	http://www.kde.org/info/security/advisory-20050215-1.txt
 emacs-21.[0-2]*		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs-21.3		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs-21.3nb[0-6]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs-nox11-21.[0-2]*	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs-nox11-21.3	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs-nox11-21.3nb[0-1]	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 emacs<20.7nb5		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 xemacs<21.4.17		remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 xemacs-nox11<21.4.17	remote-code-execution	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
 xview-lib<3.2.1nb4	privilege-escalation	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0076
 clamav<0.82		denial-of-service	http://www.securityfocus.com/bid/12408?ref=rss
 @@ -24744,1006 +24744,1004 @@ vlc<3.0.18	arbitrary-code-execution	http
 unzip-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2021-4217
 editorconfig-core<0.12.6	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-0341
 tor<0.4.7.13	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-23589
 u-boot-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-2347
 totd-[0-9]*	dns-cache-poisoning	https://nvd.nist.gov/vuln/detail/CVE-2022-34294
 scala>=2.13<2.13.9	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2022-36944
 allegro<5.2.8.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-36489
 ruby{26,27,30,31}-activesupport<6.1.7.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-22796
 ruby{26,27,30,31}-activesupport>=7.0.0<7.0.4.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-22796
 ruby{26,27,30,31}-globalid>=0.2.1<1.0.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-22799
 ruby{26,27,30,31}-loofah>=2.2.0<2.19.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-23516
 ruby{26,27,30,31}-loofah>=2.1.0<2.19.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-23515
 ruby{26,27,30,31}-loofah<2.19.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-23514
 ruby-nokogiri>=1.13.8<1.13.10	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-23476
 ruby{26,27,30,31}-rack>=1.2<2.0.9.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-30122
 ruby{26,27,30,31}-rack>=2.1.0<2.1.4.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-30122
 ruby{26,27,30,31}-rack>=2.2.0<2.2.3.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-30122
 ruby{26,27,30,31}-rack<2.0.9.1	shell-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-30123
 ruby{26,27,30,31}-rack>=2.1.0<2.1.4.1	shell-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-30123
 ruby{26,27,30,31}-rack>=2.2.0<2.2.3.1	shell-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-30123
 ruby{26,27,30,31}-rack<2.0.9.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44572
 ruby{26,27,30,31}-rack>=2.1.0<2.1.4.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44572
 ruby{26,27,30,31}-rack>=2.2.0<2.2.4.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44572
 ruby{26,27,30,31}-rack>=2.0.0<2.0.9.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44571
 ruby{26,27,30,31}-rack>=2.1.0<2.1.4.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44571
 ruby{26,27,30,31}-rack>=2.2.0<2.2.6.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44571
 ruby{26,27,30,31}-rack>=3.0.0.0<3.0.4.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44571
 ruby{26,27,30,31}-rack>=1.5.0<2.0.9.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44570
 ruby{26,27,30,31}-rack>=2.1.0<2.1.4.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44570
 ruby{26,27,30,31}-rack>=2.2.0<2.2.6.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44570
 ruby{26,27,30,31}-rack>=3.0.0<3.0.4.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44570
 ruby{26,27,30,31}-rails>=0.2.1<1.0.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-22797
 ruby{26,27,30,31}-rails-html-sanitizer<1.4.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-23519
 ruby{26,27,30,31}-rails-html-sanitizer<1.4.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-23520
 ruby{26,27,30,31}-rails-html-sanitizer<1.4.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-23518
 ruby{26,27,30,31}-redmine>=5<5.0.4	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-44030
 ruby{26,27,30,31}-redmine<4.2.9	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-44637
 ruby{26,27,30,31}-redmine>=5<5.0.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-44637
 ruby{26,27,30,31}-redmine<4.2.9	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-44031
 ruby{26,27,30,31}-redmine>=5<5.0.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-44031
 ruby{26,27,30,31}-sanitize>=5<6.0.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-23627
 ruby{26,27,30,31}-sinatra>=2.0.0<2.2.3	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-45442
 ruby{26,27,30,31}-sinatra>=3.0.0<3.0.4	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-45442
 rxvt-unicode<9.29	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-4170
 rtf2html-[0-9]*	heap-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-43148
 rabbitmq<3.8.32	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-31008
 rabbitmq>=3.9.0<3.9.18	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-31008
 rabbitmq>=3.10.0<3.10.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-31008
 qt5-qtbase-[0-9]*	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2021-3481
 qemu<7.1.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-14394
 qemu<7.1.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-0216
 qemu-[0-9]*	insecure-lock-files	https://nvd.nist.gov/vuln/detail/CVE-2021-3735
 qemu<6.2.1	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2022-0358
 qemu<2.0.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2014-0148
 qemu<1.6.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2014-0147
 qemu<2.0.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2014-0144
 qemu<7.2.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-3165
 qemu<7.1.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-3872
 qemu<7.2.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-4172
 qemu<7.2.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-4144
 png-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-4214
 pngcheck<3.0.3	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-35511
 py{27,36,37,38,39,310,311}-matrix-nio<0.20	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-39254
 py{27,36,37,38,39,310,311}-octoprint<1.9.0	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-2822
 python36<3.6.14	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-4189
 python37<3.7.11	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-4189
 python38<3.8.9	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-4189
 python39<3.9.3	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-4189
 python37<3.7.14	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-10735
 python38<3.8.14	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-10735
 python39<3.9.14	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-10735
 python310<3.10.7	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-10735
 python37<3.7.8	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-42919
 python38<3.8.4	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-42919
 python39<3.9.16	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-42919
 python310<3.10.9	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-42919
 python37<3.7.16	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-45061
 python38<3.8.16	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-45061
 python39<3.9.16	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-45061
 python310<3.10.9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-45061
 python311<3.11.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-45061
 python37<3.7.14	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-28861
 python38<3.8.14	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-28861
 python39<3.9.14	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-28861
 python310<3.10.6	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-28861
 protobuf>=3.19.0<3.19.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-1941
 protobuf>=3.20.0<3.20.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-1941
 protobuf>=3.21.0<3.21.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-1941
 podman<4.4.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-2989
 poppler<22.08.0	integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38784
 php{56,73,74,80,81}-gd>=7.4.0<7.4.33	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-31630
 php{56,73,74,80,81}-gd>=8.0.0<8.0.25	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-31630
 php{56,73,74,80,81}-gd>=8.1.0<8.1.12	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-31630
 php{73,74,80,81}-phpmyadmin>=5<5.2.0	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2020-22452
 phppgadmin<6.17	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-4223
 php{56,73,74,80,81}-phpmyadmin<4.9.11	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-25727
 php{73,74,80,81}-phpmyadmin>=5<5.2.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-25727
 phppgadmin>=4<6.14	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-22298
 phoronix-test-suite-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-40704
 mplayer<15.0	division-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2022-38865
 mencoder<15.0	division-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2022-38865
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38855
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38855
 mplayer<15.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-38851
 mencoder<15.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-38851
 mplayer<15.0	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-38600
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38866
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38866
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38864
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38864
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38862
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38862
 mplayer<15.0	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2022-38861
 mencoder<15.0	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2022-38861
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38863
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38863
 mplayer<15.0	division-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2022-38860
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38858
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38858
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38856
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38856
 mplayer<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38853
 mencoder<15.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-38853
 mplayer<15.0	division-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2022-38850
 matrix-synapse<1.62.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-31152
 matrix-synapse<1.52.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-41952
 pkgconf<1.9.4	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-24056
 pixman<0.42.2	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-44638
 pgpool-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-22332
 openscad<2022-01-09	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-0497
 openscad<2022-02-04	uninitialized-memory-read	https://nvd.nist.gov/vuln/detail/CVE-2022-0496
 opusfile-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47021
 openssh<9.2	double-free	https://nvd.nist.gov/vuln/detail/CVE-2023-25136
 p5-HTML-StripScripts-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-24038
 patchelf<0.10	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-44940
 opa>=0.40.0<0.43.1	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-36085
 nautilus<2.26.3	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-37290
 nostromo<2.1	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-48253
 netatalk<3.1.14	remote-root-access	https://nvd.nist.gov/vuln/detail/CVE-2022-45188
 njs<0.7.6	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-35173
 njs<0.7.8	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-38890
 njs<0.7.4	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-43286
 njs<0.7.8	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-43285
 njs<0.7.6	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-43284
 nim<1.6.2	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-46872
 nss<3.79.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-3479
 mujs>=1.0.0<1.3.2	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-44789
 mupdf<1.21	floating-point-exception	https://nvd.nist.gov/vuln/detail/CVE-2021-4216
 openssl<1.1.1t	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-0286
 openssl<1.1.1t	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-0215
 openssl<1.1.1t	timing-attack	https://nvd.nist.gov/vuln/detail/CVE-2022-4304
 openssl<1.1.1t	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-4450
 man2html-[0-9]*	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2021-40648
 man2html-[0-9]*	arbitrary-memory-access	https://nvd.nist.gov/vuln/detail/CVE-2021-40647
 bash<5.1.8	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-3715
 minetest-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-35978
 less>=566<609	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-46663
 grub2-[0-9]*	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-2601
 grub2-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-3775
 memcached<1.6.10	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-37519
 leptonica<1.80.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38266
 lepton-[0-9]*	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-4104
 binutils<2.40	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-38533
 binutils<2.40	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-4285
 awstats>=7<7.9	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-46391
 assimp-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-45748
 knot<5.5.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-40188
 freeciv>=2.6.7<3.0.3	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-39047
 modular-xorg-server<21.1.4	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-2319
 modular-xorg-server<21.1.4	arbitrary-memory-access	https://nvd.nist.gov/vuln/detail/CVE-2022-2320
 modular-xorg-server<21.1.6	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-3551
 modular-xorg-server<21.1.6	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-3550
 modular-xorg-server<1.20.11	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-46342
 modular-xorg-server<1.20.11	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-46344
 modular-xorg-server<1.20.11	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-46343
 modular-xorg-server<1.20.11	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-46341
 modular-xorg-server<1.20.11	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-46340
 modular-xorg-server<1.20.11	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-4283
 git-base<2.38.1	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-39260
 git-base<2.38.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-39253
 mysql-server<5.7.40	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixMSQL
 mysql-server>=8.0<8.0.32	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixMSQL
 mysql-cluster<5.7.40	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixMSQL
 mysql-cluster>=8.0<8.0.32	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixMSQL
 mysql-server<5.7.41	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 mysql-server>=7.6<7.6.25	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 mysql-server>=8.0<8.0.32	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 mysql-cluster<5.7.41	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 mysql-cluster>=7.6<7.6.25	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 mysql-cluster>=8.0<8.0.32	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixMSQL
 thunderbird<102.8.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-0616
 thunderbird<102.8.0	information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-25728
 thunderbird<102.8.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-25730
 thunderbird<102.8.0	arbitrary-memory-write	https://nvd.nist.gov/vuln/detail/CVE-2023-0767
 thunderbird<102.8.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-25735
 thunderbird<102.8.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-25737
 thunderbird<102.8.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25738
 thunderbird<102.8.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-25739
 thunderbird<102.8.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-25729
 thunderbird<102.8.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25732
 thunderbird<102.8.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-25734
 thunderbird<102.8.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25742
 thunderbird<102.8.0	memory-safety	https://nvd.nist.gov/vuln/detail/CVE-2023-25746
 thunderbird<102.7.1	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-0430
 thunderbird<102.7.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-46871
 thunderbird<102.7.0	arbitrary-file-reading	https://nvd.nist.gov/vuln/detail/CVE-2023-23598
 thunderbird<102.7.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-23599
 thunderbird<102.7.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-23601
 thunderbird<102.7.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-23602
 thunderbird<102.7.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-46877
 thunderbird<102.7.0	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-23603
 thunderbird<102.7.0	memory-safety	https://nvd.nist.gov/vuln/detail/CVE-2023-23605
 clamav<0.103.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-20792
 ImageMagick<7.1.0.30	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-2719
 ghostscript-agpl<9.51	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-27792
 ap{22,24}-auth-mellon<0.18.0	open-redirect	https://nvd.nist.gov/vuln/detail/CVE-2021-3639
 gnutls<3.7.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-4209
 colord<1.4.6	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-42523
 anjuta-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2021-42522
 ImageMagick6<6.9.12.44	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-1115
 ImageMagick<7.1.0-29	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-1115
 dnsmasq-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-0934
 ImageMagick<7.1.0.20	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-0284
 inetutils<2.4	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-39028
 gzip<1.12	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2022-1271
 influxdb<1.8.10	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-36640
 confuse-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-40320
 frr<8.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-37032
 nodejs>=14<14.21.1	arbitrary-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-43548
 nodejs>=16<16.18.1	arbitrary-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-43548
 nodejs>=18.18.12.1	arbitrary-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-43548
 nodejs<16.17.1	http-request-smuggling	https://nvd.nist.gov/vuln/detail/CVE-2022-35256
 nodejs>=18<18.9.1	http-request-smuggling	https://nvd.nist.gov/vuln/detail/CVE-2022-35256
 nodejs<16.17.1	insufficiently-random-numbers	https://nvd.nist.gov/vuln/detail/CVE-2022-35255
 nodejs>=18<18.9.1	insufficiently-random-numbers	https://nvd.nist.gov/vuln/detail/CVE-2022-35255
 SOGo<5.8.0	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-4558
 SOGo<5.8.0	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-4556
 dropbear<2022.82	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2021-36369
 dynamips-[0-9]*	uninitialized-variables	https://nvd.nist.gov/vuln/detail/CVE-2022-47012
 gajim<1.5.0	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-39835
 harfbuzz<7.0.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25193
 hs-aeson<2.0.1.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-3433
 hyperscan<5.4.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-29486
 jasper<4.0.0	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-2963
 jenkins<2.370	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-41224
 kitty<0.26.2	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-41322
 cacti<1.2.23	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-46169
 caddy<2.5.0	open-redirect	https://nvd.nist.gov/vuln/detail/CVE-2022-28923
 chicken>=5.0.0<5.3.1	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-45145
 erlang<23.3.4.15	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-37026
 erlang>=24<24.3.4.2	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-37026
 erlang>=25<25.0.2	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-37026
 fcitx5-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-37311
 botan2<2.19.3	improper-certificate-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-43705
 fuse-ntfs-3g<2022.10.3	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-40284
 gtar-base<1.34nb1	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-48303
 bind>=9.11<9.11.37	dns-cache-poisoning	https://nvd.nist.gov/vuln/detail/CVE-2022-3488
 bind>=9.16<9.16.36	dns-cache-poisoning	https://nvd.nist.gov/vuln/detail/CVE-2022-3488
 bind>=9.16<9.16.37	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-3094
 bind>=9.18<9.18.11	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-3094
 bind>=9.19<9.19.9	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-3094
 libreoffice>=7.3<7.3.6	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-3140
 libreoffice>=7.4<7.4.1	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2022-3140
 mariadb-server>=10.3<10.3.36	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.4<10.4.26	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.5<10.5.17	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.6<10.6.9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.7<10.7.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.8<10.8.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38791
 mariadb-server>=10.11<10.11.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47015
 mariadb-server>=10.6<10.6.13	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47015
 mariadb-server>=10.5<10.5.20	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47015
 mariadb-server>=10.4<10.4.29	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47015
 mit-krb5>=1.8<1.19.4	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-42898
 modular-xorg-xquartz-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-3553
 ImageMagick<7.0.10.57	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-20224
 ImageMagick6<6.9.11.57	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-20224
 ImageMagick<7.0.11.8	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2021-3574
 ImageMagick6<6.9.12.8	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2021-3574
 ImageMagick<7.1.0.47	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-3213
 ImageMagick6<6.9.12.62	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-3213
 ImageMagick<7.1.0.62	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44267
 ImageMagick6<6.9.12.76	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44267
 ImageMagick<7.1.0.52	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44268
 ImageMagick6<6.9.12.67	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-44268
 SDL2>=2.0.4<2.26.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-4743
 alpine<2.25	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46853
 amanda-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-37703
 GraphicsMagick<1.3.38	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-1270
 ap{22,24}-auth-openidc<2.4.12.2	open-redirect	https://nvd.nist.gov/vuln/detail/CVE-2022-23527
 postgresql-server>=10<10.22	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2625
 postgresql-server>=11<11.17	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2625
 postgresql-server>=12<12.12	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2625
 postgresql-server>=13<13.8	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2625
 postgresql-server>=14<14.5	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2625
 postgresql-server>=10<10.21	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-1552
 postgresql-server>=11<11.16	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-1552
 postgresql-server>=12<12.11	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-1552
 postgresql-server>=13<13.7	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-1552
 postgresql-server>=14<14.3	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-1552
 asterisk>=16<16.16.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46837
 asterisk>=17<17.9.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46837
 asterisk>=18<18.2.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46837
 asterisk>=16<16.16.1	local-file-read	https://nvd.nist.gov/vuln/detail/CVE-2022-42706
 asterisk>=17<18.15.1	local-file-read	https://nvd.nist.gov/vuln/detail/CVE-2022-42706
 asterisk>=19<19.7.1	local-file-read	https://nvd.nist.gov/vuln/detail/CVE-2022-42706
 asterisk>=16<16.29.1	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-42705
 asterisk>=18.14<18.15.1	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-42705
 asterisk>=19.6<19.7.1	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-42705
 asterisk-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-37325
 salt-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-33226
 xdg-utils-[0-9]*	command-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-4055
 mysql-client>=8<8.0.29	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujul2022.html#AppendixMSQL
 openjdk8<1.8.346	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA
 openjdk11<1.11.0.16.2	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA
 openjdk17<1.17.0.4.2	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpuoct2022.html#AppendixJAVA
 openjdk8<1.8.352	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixJAVA
 openjdk11<1.11.0.18	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixJAVA
 openjdk11<1.17.0.6	multiple-vulnerabilities	https://www.oracle.com/security-alerts/cpujan2023.html#AppendixJAVA
 nethack>=3.6.2<3.6.7	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-24809
 moodle<4.1.1	unauthorized-access	https://nvd.nist.gov/vuln/detail/CVE-2023-23923
 moodle<4.1.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-23922
 moodle<4.1.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-23921
 samba>=4.3<4.14.14	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-32746
 samba>=4.15<4.15.9	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-32746
 samba>=4.16<4.16.4	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-32746
 xenkernel413-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-33745
 xenkernel413-[0-9]*	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-33748
 xenkernel415-[0-9]*	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2022-33748
 xenkernel413-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-33747
 xenkernel415-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-33747
 xenkernel413-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-33746
 xenkernel415-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-33746
 epiphany-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-26081
 afl++-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-26266
 glusterfs-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-26253
 knot<5.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-26249
 jd-gui-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-26235
 jd-gui-[0-9]*	unspecified	https://nvd.nist.gov/vuln/detail/CVE-2023-26234
 glusterfs-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-48340
 emacs-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-48339
 emacs-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-48338
 emacs-[0-9]*	shell-command-injection	https://nvd.nist.gov/vuln/detail/CVE-2022-48337
 zoneminder<1.36.33	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-26039
 zoneminder<1.36.33	local-file-inclusion	https://nvd.nist.gov/vuln/detail/CVE-2023-26038
 zoneminder<1.36.33	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-26037
 zoneminder<1.36.33	local-file-inclusion	https://nvd.nist.gov/vuln/detail/CVE-2023-26036
 zoneminder<1.36.33	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-26035
 zoneminder<1.36.33	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-26034
 zoneminder<1.36.33	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-25825
 zoneminder<1.36.33	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-26032
 curl>=7.57<7.88	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23915
 curl>=7.57<7.88	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23914
 freeimage-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-33367
 mantis<2.25.6	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-22476
 libheif<1.15	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-0996
 php{56,73,74,80,81}-nextcloud>=23<23.0.12	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25579
 php{56,73,74,80,81}-nextcloud>=24<24.0.8	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25579
 php{56,73,74,80,81}-nextcloud>=25<25.0.2	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25579
 php{56,73,74,80,81}-nextcloud>=24<24.0.7	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-25821
 php{56,73,74,80,81}-nextcloud>=25<25.0.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-25821
 php{56,73,74,80,81}-nextcloud>=25<25.0.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25816
 nodejs<14.21.3	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23920
 nodejs>=16<16.19.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23920
 nodejs>=18<18.14.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23920
 nodejs>=19<19.6.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-23920
 nodejs<14.21.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-23919
 nodejs>=16<16.19.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-23919
 nodejs>=18<18.14.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-23919
 nodejs>=19<19.2.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-23919
 nodejs<14.21.3	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-23918
 nodejs>=16<16.19.1	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-23918
 nodejs>=18<18.14.1	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-23918
 nodejs>=19<19.6.1	security-restrictions-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-23918
 apache<2.4.56	http-response-splitting	https://nvd.nist.gov/vuln/detail/CVE-2023-27522
 apache<2.4.56	http-response-splitting	https://nvd.nist.gov/vuln/detail/CVE-2023-25690
 yubico-c-client-[0-9]*	eol	http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 curl>=7.7<8.00	command-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-27533
 curl>=7.18<8.00	improper-path-limitation	https://nvd.nist.gov/vuln/detail/CVE-2023-27534
 curl>=7.13<8.00	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-27535
 curl>=7.22<8.00	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-27536
 curl>=7.88<8.00	double-free	https://nvd.nist.gov/vuln/detail/CVE-2023-27537
 curl>=7.16.1<8.00	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-27538
 redis>=7.0.8<7.0.10	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-28425
 openssl<1.1.1tnb1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-0464
 modular-xorg-server<21.1.7nb1	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-1393
 irssi<1.4.4	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-29132
 pcre-[0-9]*	eol	http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 ghostscript-gpl<10.01.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-28879
 ghostscript-agpl<10.01.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-28879
 git-base<2.40.1	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25652
 git-base<2.40.1	arbitrary-messages	https://nvd.nist.gov/vuln/detail/CVE-2023-25815
 git-base<2.40.1	configuration-misinterpretation	https://nvd.nist.gov/vuln/detail/CVE-2023-29007
 # CPAN up to and including 2.34
 perl-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-31484
 p5-GitLab-API-v4-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-31485
 # HTTP::Tiny up to and including 0.082, part of perl
 perl-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-31486
 py{27,36,37,38,39,310,311}-django>=3.2<3.2.19	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2023-31047
 py{27,36,37,38,39,310,311}-django>=4.1<4.1.9	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2023-31047
 py{27,36,37,38,39,310,311}-django>=4.2<4.2.1	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2023-31047
 libssh<0.105	debial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1667
 libssh<0.105	unauthorized-access	https://nvd.nist.gov/vuln/detail/CVE-2023-2283
 curl>=7.81.0<8.1.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-28319
 curl>=7.9.8<8.1.0	improper-synchronization	https://nvd.nist.gov/vuln/detail/CVE-2023-28320
 curl>=7.12.0<8.1.0	improper-certificate-validation	https://nvd.nist.gov/vuln/detail/CVE-2023-28321
 curl>=7.7<8.1.0	expected-behavior-violation	https://nvd.nist.gov/vuln/detail/CVE-2023-28322
 cups-filters<1.28.18	remote-code-execution		https://nvd.nist.gov/vuln/detail/CVE-2023-24805
 libcares<1.19.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-32067
 libcares<1.19.1	lack-of-entropy	https://nvd.nist.gov/vuln/detail/CVE-2023-31124
 libcares<1.19.1	buffer-underflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31130
 libcares<1.19.1	lack-of-entropy	https://nvd.nist.gov/vuln/detail/CVE-2023-31147
 luatex<1.17	arbitrary-code-execution		https://nvd.nist.gov/vuln/detail/CVE-2023-32700
 openssl<1.1.1u	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2650
 webkit-gtk<2.40.2	information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-28204
 webkit-gtk<2.40.2	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-32373
 cups-base<2.4.2nb9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-32324
 libde265<1.0.12	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-27102
 libde265<1.0.12	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-27103
 libX11<1.8.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-3138
 libtpms<0.9.6	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-1017
 libtpms<0.9.6	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-1018
 cups-base<2.4.6	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-34241
 webkit-gtk<2.38.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-48503
 webkit-gtk<2.40.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-32435
 webkit-gtk<2.40.3	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-32439
 ruby27-*	eol	https://www.ruby-lang.org/en/downloads/branches/
 ruby{26,27,30,31}-actionpack52<5.2.8.1nb1	cross-site-scripting	https://cve.report/CVE-2023-28362
 ruby{26,27,30,31}-actionpack60<6.0.6.1nb1	cross-site-scripting	https://cve.report/CVE-2023-28362
 ruby{26,27,30,31}-actionpack61<6.1.7.4	cross-site-scripting	https://cve.report/CVE-2023-28362
 ruby{26,27,30,31}-actionpack70<6.1.7.4	cross-site-scripting	https://cve.report/CVE-2023-28362
 ruby30-base<3.0.6nb1	denial-of-service	https://cve.report/CVE-2023-36617
 ruby31-base<3.1.4nb1	denial-of-service	https://cve.report/CVE-2023-36617
 ruby32-base<3.2.2nb2	denial-of-service	https://cve.report/CVE-2023-36617
 python36-[0-9]*	eol	http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 python37-[0-9]*	eol	http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 py{27,37,38,39,310,311}-django>=3.2<3.2.20	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-36053
 py{27,37,38,39,310,311}-django>=4.1<4.1.10	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-36053
 py{27,37,38,39,310,311}-django>=4.2<4.2.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-36053
 py{27,34,35,36,37,38,39,310,311}-django<3.2	eol	http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 ruby{26,27,30,31}-sanitize<6.0.2	cross-site-scripting	https://cve.report/CVE-2023-36823
 acmesh<3.0.6	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38198
 openssh<9.3p2	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38408
 samba<4.18.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-2127
 samba<4.18.5	man-in-the-middle	https://nvd.nist.gov/vuln/detail/CVE-2023-3347
 samba<4.18.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-34966
 samba<4.18.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-34967
 samba<4.18.5	information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-34968
 samba<4	eol	https://wiki.samba.org/index.php/Samba_Release_Planning
 webkit-gtk<2.40.4	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-37450
 webkit-gtk<2.40.4	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-32393
 librsvg<2.46.6	arbitrary-file-read	https://nvd.nist.gov/vuln/detail/CVE-2023-38633
 librsvg<2.56.3	arbitrary-file-read	https://nvd.nist.gov/vuln/detail/CVE-2023-38633
 webkit-gtk<2.40.5	information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-38133
 webkit-gtk<2.40.5	same-origin-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-38572
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38592
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38594
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38595
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38597
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38599
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38600
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-38611
 rust<1.71.1	permission-problem	https://nvd.nist.gov/vuln/detail/CVE-2023-38497
 py{27,37,38,39,310,311}-borgbackup<1.2.5	archive-spoofing	https://nvd.nist.gov/vuln/detail/CVE-2023-36811
 ruby{30,31,32}-rails<6.1	eol		http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 py{27,37,38,39,310,311}-django>=3.2<3.2.21	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41164
 py{27,37,38,39,310,311}-django>=4.1<4.1.11	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41164
 py{27,37,38,39,310,311}-django>=4.2<4.2.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41164
 curl>=7.84.0<8.3.0	allocation-of-resources-without-limits-or-throttling	https://nvd.nist.gov/vuln/detail/CVE-2023-38039
 webkit-gtk<2.40.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-28198
 webkit-gtk<2.40.1	content-security-policiy-escape	https://nvd.nist.gov/vuln/detail/CVE-2023-32370
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-40397
 libwebp<1.3.2	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4863
 bind>=9.2<9.16.43	denial-of-service	https://kb.isc.org/docs/cve-2023-3341
 bind>=9.18<9.18.18	denial-of-service	https://kb.isc.org/docs/cve-2023-3341
 bind>=9.19<9.19.16	denial-of-service	https://kb.isc.org/docs/cve-2023-3341
 bind>=9.18<9.18.18	denial-of-service	https://kb.isc.org/docs/cve-2023-4236
 cups-base<2.4.7	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-4504
 zbar-[0-9]*	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-40890
 zbar-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-40889
 zola-[0-9]*	directory-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-40274
 zstd<1.5.4	buffer-overrun	https://nvd.nist.gov/vuln/detail/CVE-2022-4899
 z3<4.8.8	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2020-19725
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-29581
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-29580
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-29582
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-29583
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-29579
 yasm-[0-9]*	heap-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-30402
 yasm-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-31975
 yasm-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31974
 yasm-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31973
 yasm-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31972
 yasm-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31724
 yasm-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31725
 yasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-31723
 yasm-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-37732
 yt-dlp>=2015.01.25<2023.07.06	open-redirect	https://nvd.nist.gov/vuln/detail/CVE-2023-35934
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38310
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38308
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38306
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38305
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38311
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38309
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38307
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38304
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-38303
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-41155
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40986
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40985
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40984
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40983
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40982
 webmin-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-43309
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43316
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43317
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43314
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43315
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43311
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43313
 upx<4	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-43312
 upx<4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46179
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-23125
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-23124
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-23123
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-23122
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-23121
 netatalk3<3.1.13	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-0194
 netatalk3-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-43634
 cacti<1.2.6	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-37543
 cacti<1.2.19	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-48547
 cacti<1.2.23	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-48538
 cacti-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-41444
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39515
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39514
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39513
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39516
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39512
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39510
 cacti>=1.2.0<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39366
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39365
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39364
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39362
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39361
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39360
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39359
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39358
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39357
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-31132
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-30534
 cacti<1.2.25	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-39511
 radare2<5.8.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27114
 radare2<5.8.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1605
 radare2<5.3.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2021-32495
 radare2<5.3.0	division-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2021-32494
 radare2<5.9.0	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4322
 radare2<5.5.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-28073
 radare2<5.5.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-28072
 radare2<5.5.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-28071
 radare2<5.5.0	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2022-28070
 radare2<5.5.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-28069
 radare2<5.5.0	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-28068
 vault<1.10.11	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-24999
 vault<1.11.9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25000
 vault<1.11.9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-0665
 vault<1.11.9	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-0620
 vault<1.11.11	html-attribute-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-2121
 vault<1.13.5	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-3462
 vault<1.12.11	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-4680
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38854
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38856
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38853
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38852
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38851
 libxls-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38855
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27789
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27788
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27787
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27786
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27785
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27784
 tcpreplay<4.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27783
 salt<3005.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-20898
 salt<3005.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-20897
 salt>=3006.0<3006.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-20898
 salt>=3006.0<3006.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-20897
 sudo>=1.9.8<1.9.13	double-free	https://nvd.nist.gov/vuln/detail/CVE-2023-27320
 sudo<1.9.13	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-28487
 sudo<1.9.13	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-28486
 jetty<9.4.51	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-26049
 jetty<9.4.51	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-26048
 jetty>=9.0.0<9.4.52	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-40167
 jetty>=9.4.21<9.4.52	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-41900
 sox-[0-9]*	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-34318
 sox-[0-9]*	floating-point-exception	https://nvd.nist.gov/vuln/detail/CVE-2023-32627
 sox-[0-9]*	floating-point-exception	https://nvd.nist.gov/vuln/detail/CVE-2023-26590
 sox-[0-9]*	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-34432
 libredwg<0.12.5.5016	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25222
 libredwg<0.12.5.5256	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-36274
 libredwg<0.12.5.5256	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-36273
 libredwg<0.12.5.5256	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-36272
 libredwg<0.12.5.5256	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-36271
 podofo<0.10.1	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-2241
 podofo<0.10.1	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31568
 podofo<0.10.1	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31567
 podofo<0.10.1	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-31566
 podofo<0.10.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-31555
 podofo<0.10.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-31556
 openimageio<2.4.8.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-24472
 openimageio<2.4.8.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-24473
 openimageio<2.4.8.1	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-22845
 openimageio<2.4.13.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-36183
 ntp<4.2.8p17	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-26554
 ntp<4.2.8p16	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-26555
 ntp<4.2.8p16	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-26553
 ntp<4.2.8p16	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-26552
 ntp<4.2.8p16	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-26551
 ntpsec<1.2.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-4012
 webkit-gtk<2.42.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-39928
 webkit-gtk<2.40.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-35074
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-39434
 webkit-gtk<2.40.5	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-40451
 webkit-gtk<2.42.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-41074
 webkit-gtk<2.42.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-41993
 libvpx<1.13.0nb1	heap-corruption	https://nvd.nist.gov/vuln/detail/CVE-2023-5217
 exim<4.96.1	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-42114
 exim<4.96.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-42115
 exim<4.96.1	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-42116
 exim<4.96.2	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-42117
 libspf2<1.2.11nb2	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-42118
 exim<4.96.2	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-42119
 gst-plugins1-bad<1.22.6	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40474
 gst-plugins1-bad<1.22.6	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40475
 gst-plugins1-bad<1.22.6	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40476
 libX11<1.8.7	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-43785
 libX11<1.8.7	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43786
 libX11<1.8.7	heap-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-43787
 libXpm<3.5.17		out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-43788
 libXpm<3.5.17		out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-43789
 py{27,37,38,39,310,311}-django>=3.2<3.2.22	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43665
 py{27,37,38,39,310,311}-django>=4.1<4.1.12	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43665
 py{27,37,38,39,310,311}-django>=4.2<4.2.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43665
 grub2-[0-9]*	out-of-bounds	https://nvd.nist.gov/vuln/detail/CVE-2023-4692
 grub2-[0-9]*	out-of-bounds	https://nvd.nist.gov/vuln/detail/CVE-2023-4693
 croc-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-43621
 croc-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43620
 croc-[0-9]*	remote-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-43619
 croc-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-43618
 croc-[0-9]*	arbitrary-file-overwrite	https://nvd.nist.gov/vuln/detail/CVE-2023-43616
 croc-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-43617
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-44232
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31976
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-30085
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-30084
 ming-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-30083
 ming-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2021-31240
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-36239
 ming-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40781
 amanda-server<3.5.4	local-root-shell	https://nvd.nist.gov/vuln/detail/CVE-2022-37705
 amanda-server<3.5.4	local-root-shell	https://nvd.nist.gov/vuln/detail/CVE-2022-37704
 lldpd<1.0.13	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2021-43612
 lldpd<1.0.17	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-41910
 zabbix<4.0.47	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-29456
 zabbix<4.0.46	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-29457
 zabbix<4.0.46	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-29455
 zabbix<4.0.46	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-29454
 freeimage<1.18.0	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2021-40266
 freeimage<1.18.0	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-40265
 freeimage<1.18.0	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2021-40264
 freeimage<1.18.0	stack-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-40262
 freeimage-[0-9]*	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-40263
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-24295
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-24293
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-24294
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-24292
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-22524
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-21428
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-21426
 freeimage-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-21427
 wireshark<4.0.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1161
 wireshark<4.0.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1992
 wireshark<4.0.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1994
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2879
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2858
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2857
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2856
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2855
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2854
 wireshark<4.0.6	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2952
 wireshark<4.0.6	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-0667
 wireshark>=4<4.0.6	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-0666
 wireshark<4.0.6	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-0668
 wireshark-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-3649
 wireshark-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-3648
 wireshark<4.0.8	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-4513
 wireshark-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-4512
 wireshark<4.0.8	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-4511
 wireshark-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-5371
 w3m-[0-9]*	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-38252
 w3m-[0-9]*	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-38253
 vsftpd-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-30047
 vorbis-tools-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-43361
 matrix-synapse<1.74.0	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-32323
 matrix-synapse>=1.62.0<1.68.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-39374
 matrix-synapse<1.69.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-39335
 matrix-synapse<1.85.0	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-32682
 matrix-synapse<1.85.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-32683
 matrix-synapse>=1.66.0<1.93.0	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-41335
 matrix-synapse>=1.34.0<1.93.0	security-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-42453
 freerdp2<2.11.0	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40589
 freerdp2<2.11.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-40569
 freerdp2<2.11.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-40188
 freerdp2<2.11.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-40567
 freerdp2<2.11.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-40186
 freerdp2<2.11.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-40181
 freerdp2<2.11.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-39356
 freerdp2<2.11.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-39354
 freerdp2<2.11.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-39353
 freerdp2<2.11.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-39352
 freerdp2<2.11.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-39350
 freerdp2<2.11.0	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-39351
 gnupg2-[0-9]*	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-3219
 libmicrohttpd<0.9.76	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-27371
 libde265<1.0.11	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-25221
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24758
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24757
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24756
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24754
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24755
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24752
 libde265<1.0.11	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-24751
 nasm<2.16	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-44370
 nasm-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-44369
 nasm-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-44368
 nasm-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31722
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38668
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38667
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38665
 nasm<2.15.05	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-29654
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-21687
 nasm<2.15.04	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-21686
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-21685
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-21528
 nasm-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-18780
 puppet<7.11.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1894
 openssh>=8.9<9.3	configuration-misinterpretation	https://nvd.nist.gov/vuln/detail/CVE-2023-28531
 wolfssl<5.6.2	privacy-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3724
 catdoc-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31979
 catdoc-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-41633
 geeklog-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-37787
 geeklog-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-37786
 avahi-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38469
 avahi-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38470
 avahi-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38471
 avahi-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38472
 avahi-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38473
 libxml2-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-45322
 libcue<2.2.1nb1	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2023-43641
 mutt<2.2.12	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-4874
 mutt<2.2.12	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-4875
 djvulibre-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46312
 djvulibre-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-46310
 grpc<1.53.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-32732
 grpc>=1.53.0<1.55.0	expected-behavior-violation	https://nvd.nist.gov/vuln/detail/CVE-2023-32731
 grpc>=1.51.0<1.53.0	expected-behavior-violation	https://nvd.nist.gov/vuln/detail/CVE-2023-1428
 grpc<1.55.3	expected-behavior-violation	https://nvd.nist.gov/vuln/detail/CVE-2023-4785
 podman-[0-9]*	unknown-impact	https://nvd.nist.gov/vuln/detail/CVE-2023-0778
 opensc-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2977
 opensc<0.23.0	stack-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-34193
 jhead<3.08	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-28550
 jhead<3.04	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2020-28840
 monit<5.31.0	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-26563
 tiff<4.5.0	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2022-4645
 tiff<4.5.1	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-1916
 vim<9.0.1367	divide-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2023-1127
 vim<9.0.1376	heap-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-1170
 vim<9.0.1378	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-1175
 vim<9.0.1392	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-1264
 vim<9.0.1402	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-1355
 vim<9.0.1499	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-2426
 vim<9.0.1531	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-2609
 vim<9.0.1532	integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-2610
 optipng-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-43907
 png-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2022-3857
 jpegoptim<1.5.3	heap-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-27781
 phppgadmin<7.14.5	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-40619
 phppgadmin<7.7	arbitrary-command-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-5002
 phppgadmin<6.19	directory-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-0241
 webkit-gtk<2.36.8	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25363
 webkit-gtk<2.36.8	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25362
 webkit-gtk<2.36.8	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25361
 webkit-gtk<2.36.8	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25360
 webkit-gtk<2.36.8	remote-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25358
 libde265-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-47664
 libcares<1.19.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-4904
 webkit-gtk<2.26.0	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2019-8720
 qemu>=7.2.0<7.2.3	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-0330
 emacs>=28.1<28.3	code-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-27986
 emacs>=28.1<28.3	command-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-27985
 consul<1.14.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-0845
 liferea<1.14.1	command-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-1350
 opendoas-[0-9]*	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-28339
 stellarium<23.1	directory-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-28371
 dnsmasq<2.90	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-28450
 pandoc>=1.13<3.1.4	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-35936
 pandoc<3.1.6	arbitrary-file-write	https://nvd.nist.gov/vuln/detail/CVE-2023-38745
 exempi<2.5.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-18652
 exempi<2.5.1	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-18651
 cmark-gfm<0.29.0.gfm.10	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-24824
 cmark-gfm<0.29.0.gfm.10	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-26485
 cmark-gfm<0.29.0.gfm.12	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-37463
 syncthing<1.23.5	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2022-46165
 memcached<1.6.8	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-48571
 memcached>=1.6.0<1.6.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-22570
 mbedtls<2.28.5	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-43615
 libheif<1.15.2	floating-point-exception	https://nvd.nist.gov/vuln/detail/CVE-2023-29659
 grafana<9.3.8	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-0594
 grafana<9.3.8	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-0507
 redis<7.0.9	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-36021
 gradle>=6.2<6.9.4	verification-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-26053
 redis<7.0.9		integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-25155
 grafana<9.3.4	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-22462
 libde265<1.0.10	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-47665
 moodle<3.11.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-36398
 moodle<3.11.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-36397
 moodle<3.11.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-36396
 moodle<3.11.1	sql-injection	https://nvd.nist.gov/vuln/detail/CVE-2021-36393
 moodle<3.11.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-36395
 moodle<3.11.1	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2021-36403
 samba4<4.17.4	brute-force-attack	https://nvd.nist.gov/vuln/detail/CVE-2021-20251
 pev-[0-9]*	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2021-45423
 vim<9.0.1969	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-5344
 mosquitto<2.0.16	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3592
 gpac-[0-9]*	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-5377
 tiff<4.5.1	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3576
 ImageMagick<7.1.1.19	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-3428
 gradle<7.6.3	insecure-file-permissions	https://nvd.nist.gov/vuln/detail/CVE-2023-44387
 webkit-gtk<2.42	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-39928
 gifsicle-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44821
 libcue<2.2.1nb1	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-43641
 py{27,37,38,39,310,311,312}-urllib3<2.0.6	cookie-injection	https://nvd.nist.gov/vuln/detail/CVE-2023-43804
 tnftpd<20231001	information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-45198
 tiff<4.6.0	integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-41175
 tiff<4.6.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-40745
 vim<9.0.1992	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-5441
 go120<1.20.9	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-39323
 php{56,73,74,80,81,82}-concrete5-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44766
 php{56,73,74,80,81,82}-concrete5-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44765
 php{56,73,74,80,81,82}-concrete5-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44762
 php{56,73,74,80,81,82}-concrete5-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44761
 php{56,73,74,80,81,82}-concrete5-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44764
 gradle<7.6.3	xml-external-entity	https://nvd.nist.gov/vuln/detail/CVE-2023-42445
 py{27,37,38,39,310,311,312}-octoprint<1.9.3	code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-41047
 php{56,73,74,80,81,82}-piwigo-[0-9]*	cross-site-scripting	https://nvd.nist.gov/vuln/detail/CVE-2023-44393
 asn1c-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-23910
 asn1c-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2020-23911
 yajl-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33460
 zziplib-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-18770
 xterm<380	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-40359
 vim<9.0.1847	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-4735
 vim<9.0.1846	integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4734
 vim<9.0.1833	access-bypass	https://nvd.nist.gov/vuln/detail/CVE-2023-4736
 vim<9.0.1848	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4738
 vim<9.0.1331	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4751
 vim<9.0.1858	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-4752
 vim<9.0.1840	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-4733
 vim<9.0.1857	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-4750
 vim<9.0.1873	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-4781
 tightvnc<2.8.75	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-27830
 unrar<6.2.3	verification-bypass	https://nvd.nist.gov/vuln/detail/CVE-2022-48579
 haproxy<2.7.1	information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-0836
 haproxy<2.7.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-25950
 haproxy<2.8.2	request-forgery	https://nvd.nist.gov/vuln/detail/CVE-2023-40225
 py{27,37,38,39,310,311,312}-MechanicalSoup<1.3.0	arbitrary-file-read	https://nvd.nist.gov/vuln/detail/CVE-2023-34457
 p7zip-[0-9]*	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2022-47069
 p7zip-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-1576
 wordpress<6.1.2	directory-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-2745
 webkit-gtk-[0-9]*	input-validation	https://nvd.nist.gov/vuln/detail/CVE-2023-2203
 vault>=0.10.0<1.13.0	permission-problem	https://nvd.nist.gov/vuln/detail/CVE-2023-5077
 vim<8.1.2136	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-20703
 vim<9.0.1664	divide-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2023-3896
 vim<8.2.2354	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2021-3236
 poppler<23.06.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-34872
 poppler<21.01.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-36024
 poppler<21.01.0	infinite-loop	https://nvd.nist.gov/vuln/detail/CVE-2020-36023
 poppler<21.01.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-38349
 poppler<22.08.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-37052
 poppler<22.08.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-37050
 poppler<0.76.0	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2020-18839
 poppler<20.08.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-23804
 protobuf-c<1.4.1	integer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-48468
 advancecomp<2.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2961
 opendkim-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2022-48521
 grub2>=2.00<2.06.3	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-28736
 grub2>=2.00<2.06.3	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2022-28735
 grub2>=2.00<2.06.3	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-28733
 grub2>=2.00<2.06.3	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-28734
 mp4v2-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1451
 mp4v2-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-1450
 mp4v2-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-29584
 mp4v2-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-29578
 mp4v2-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33720
 mp4v2-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33718
 mp4v2-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33716
 mp4v2-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33719
 mp4v2-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-33717
 njs<0.3.4	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2020-19695
 njs<0.3.4	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2020-19692
 njs<0.7.11	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-27730
 njs<0.7.11	memory-corruption	https://nvd.nist.gov/vuln/detail/CVE-2023-27729
 njs<0.7.11	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27728
 njs<0.7.11	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-27727
 nats-server>=2.2.0<2.8.0	directory-traversal	https://nvd.nist.gov/vuln/detail/CVE-2022-28357
 qpdf<10.1.0	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2021-25786
 gawk<5.1.1	sensitive-information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-4156
 tiff<4.5.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-2731
 tiff-[0-9]*	use-after-free	https://nvd.nist.gov/vuln/detail/CVE-2023-26965
 tiff>=3.9.0<4.5.1	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-3316
 tiff<4.5.1	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-3618
 tiff<4.4.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-40090
 consul>=1.15.0<1.15.3	sensitive-information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-2816
 consul>=1.13.0<1.15.3	sensitive-information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-1297
 consul<1.16.1	sensitive-information-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-3518
 faad2-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38858
 faad2-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38857
 bitcoin<24.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-33297
 bitcoin-[0-9]*	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-37192
 gnuplot-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2020-25969
 screen<4.9.1	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-24626
 terraform>=1.0.8<1.5.7	overwrite-arbitrary-files	https://nvd.nist.gov/vuln/detail/CVE-2023-4782
 sniproxy<0.6.1	arbitrary-code-execution	https://nvd.nist.gov/vuln/detail/CVE-2023-25076
 spice-server-[0-9]*	authentication-bypass	https://nvd.nist.gov/vuln/detail/CVE-2020-23793
 routinator<0.12.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-39915
 routinator>=0.9.0<0.12.2	path-traversal	https://nvd.nist.gov/vuln/detail/CVE-2023-39916
 sofia-sip<1.13.15	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-32307
 xpdf-[0-9]*	buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-26930
 xpdf-[0-9]*	stack-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-2664
 xpdf-[0-9]*	stack-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-2663
 xpdf-[0-9]*	divide-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2023-2662
 xpdf<4.05	divide-by-zero	https://nvd.nist.gov/vuln/detail/CVE-2023-3044
 xpdf-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-3436
 xpdf-[0-9]*	infinite-loop	https://nvd.nist.gov/vuln/detail/CVE-2022-48545
 tcpdump-[0-9]*	out-of-bounds-write	https://nvd.nist.gov/vuln/detail/CVE-2023-1801
 quickjs-[0-9]*	stack-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-31922
 libsass-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-43358
 libsass-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-43357
 libsass-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-26592
 nuclei<2.9.9	sandbox-escape	https://nvd.nist.gov/vuln/detail/CVE-2023-37896
 powerdns-recursor<4.7.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-26437
 go117-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 go118-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 go119-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 go120-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 go121<1.21.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 h2o-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 nghttp2<1.57.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 apache-tomcat>=9<9.0.81	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 apache-tomcat>=8<8.5.94	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 apache-tomcat<8.5	eol		http://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-36440
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-40302
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-43681
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-40318
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-31490
 frr<8.4.4	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-31489
 frr<8.5	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-3748
 frr-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41361
 frr-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41360
 frr-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41358
 frr-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-41359
 frr-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-38802
 frr-[0-9]*	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2023-41909
 mupdf<1.18.0	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2020-26683
 mupdf<1.18.0	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-21896
 binutils<2.40	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2022-48065
 binutils<2.40	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-48064
 binutils<2.39.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47696
 binutils<2.39.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47695
 binutils<2.39.3	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-47673
 binutils<2.40	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2022-48063
 binutils<2.40	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2022-44840
 binutils<2.38	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-46174
 binutils<2.34	sensitive-information-leak	https://nvd.nist.gov/vuln/detail/CVE-2020-35342
 binutils<2.34	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2020-21490
 binutils<2.34	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-19724
 libdwarf<0.3.4	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2020-27545
 libdwarf<0.3.4	null-pointer-dereference	https://nvd.nist.gov/vuln/detail/CVE-2020-28163
 kilo-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2020-20335
 h2o-[0-9]*	sensitive-information-disclosure	https://nvd.nist.gov/vuln/detail/CVE-2023-30847
 atasm-[0-9]*	heap-based-buffer-overflow	https://nvd.nist.gov/vuln/detail/CVE-2021-34123
 KeePass>=2.00<2.54	memory-leak	https://nvd.nist.gov/vuln/detail/CVE-2023-32784
 curl>=7.69.0<8.4.0	heap-based-overflow	https://nvd.nist.gov/vuln/detail/CVE-2023-38545
 curl>=7.9.1<8.4.0	external-control-of-file-name-or-path	https://nvd.nist.gov/vuln/detail/CVE-2023-38546
 samba4>=4.17<4.17.12	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-3961
 samba4>=4.18<4.18.8	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-3961
 samba4>=4.17<4.17.12	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-42669
 samba4>=4.18<4.18.8	privilege-escalation	https://nvd.nist.gov/vuln/detail/CVE-2023-42669
 samba4>=4.17<4.17.12	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-42670
 samba4>=4.18<4.18.8	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-42670
 # unclear, see https://github.com/apache/httpd-site/pull/10
 apache-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 hs-http2<4.2.2	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 varnish-[0-9]*	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-44487
 apache<2.4.58	out-of-bounds-read	https://nvd.nist.gov/vuln/detail/CVE-2023-31122
 apache<2.4.58	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-43622
 apache<2.4.58	denial-of-service	https://nvd.nist.gov/vuln/detail/CVE-2023-45802