Information on source package ledgersmb

Available versions

ReleaseVersion
buster1.6.9+ds-1+deb10u3
bullseye1.6.9+ds-2+deb11u3
bookworm1.6.33+ds-2.1
trixie1.6.33+ds-2.1
sid1.6.33+ds-2.1

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-23831vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableLedgerSMB is a free web-based double-entry accounting system. When a L ...

Resolved issues

BugDescription
CVE-2021-3882LedgerSMB does not set the 'Secure' attribute on the session authoriza ...
CVE-2021-3731LedgerSMB does not sufficiently guard against being wrapped by other s ...
CVE-2021-3694LedgerSMB does not sufficiently HTML-encode error messages sent to the ...
CVE-2021-3693LedgerSMB does not check the origin of HTML fragments merged into the ...

Security announcements

DSA / DLADescription
DSA-4962-2ledgersmb - regression update
DSA-4962-1ledgersmb - security update

Search for package or bug name: Reporting problems