[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-DEBIAN-CVE-2009-2412":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":19,"related":20,"reserved_at":9,"published_at":21,"modified_at":22,"state":9,"summary":23,"references_raw":25,"kevs":32,"epss":9,"epss_history":33,"metrics":34,"affected":35},"DEBIAN-CVE-2009-2412","Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Portable Utility library (aka APR-util) 0.9.x and 1.3.x allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger crafted calls to the (1) allocator_alloc or (2) apr_palloc function in memory/unix/apr_pools.c in APR; or crafted calls to the (3) apr_rmm_malloc, (4) apr_rmm_calloc, or (5) apr_rmm_realloc function in misc/apr_rmm.c in APR-util; leading to buffer overflows.  NOTE: some of these details are obtained from third party information.",null,[],[],[],[14],{"_key":15},"CVE-2009-2412",[17],{"_key":18},"DSA-1854-1",[],[],"2009-08-06T15:30:00.280Z","2026-04-28T20:04:22.760070Z",{"cisa_kev":24,"cisa_ransomware":24,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[26],{"url":27,"sources":28,"tags":30},"https://security-tracker.debian.org/tracker/CVE-2009-2412",[29],"osv_debian",[31],"Advisory",[],[],[],[36,51],{"ecosystem":37,"name":38,"vendor":39,"product":38,"cpe_part":9,"purl_type":40,"purl_namespace":39,"purl_name":38,"source":9,"versions":41},"Debian","apr","debian","deb",[42,48,49,50],{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},"lt1_3_8_1",true,"ecosystem","1.3.8-1","excluding",{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"version":43,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":46,"version_end_type":47,"fixed_in":9},{"ecosystem":37,"name":52,"vendor":39,"product":52,"cpe_part":9,"purl_type":40,"purl_namespace":39,"purl_name":52,"source":9,"versions":53},"apr-util",[54,57,58,59],{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":47,"fixed_in":9},"lt1_3_9+dfsg_1","1.3.9+dfsg-1",{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":47,"fixed_in":9},{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":47,"fixed_in":9},{"version":55,"is_range":44,"range_type":45,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":47,"fixed_in":9}]