Information on source package cockpit

Available versions

ReleaseVersion
bullseye239-1
bookworm287.1-0+deb12u3
bookworm (security)287.1-0+deb12u2
trixie337-1
forky358-1
sid360-1

Open issues

BugbullseyebookwormtrixieforkysidDescription
CVE-2026-4631vulnerablefixedvulnerable (no DSA)vulnerablefixedCockpit's remote login feature passes user-supplied hostnames and user ...
CVE-2024-6126vulnerable (no DSA, ignored)fixedfixedfixedfixedA flaw was found in the cockpit package. This flaw allows an authentic ...
CVE-2021-3698vulnerable (no DSA)fixedfixedfixedfixedA flaw was found in Cockpit in versions prior to 260 in the way it han ...
CVE-2021-3660vulnerable (no DSA, ignored)fixedfixedfixedfixedCockpit (and its plugins) do not seem to protect itself against clickj ...

Resolved issues

BugDescription
CVE-2024-2947A flaw was found in Cockpit. Deleting a sosreport with a crafted name ...
CVE-2019-3804It was found that cockpit before version 184 used glib's base64 decode ...

Security announcements

DSA / DLADescription
DSA-5655-2cockpit - regression update
DSA-5655-1cockpit - security update
Search for package or bug name: Reporting problems