| Release | Version |
|---|---|
| jessie | 1.7+dfsg-5+deb8u1 |
| stretch | 1.8-4+deb9u1 |
| buster | 1.10-2 |
| bullseye | 1.12-1 |
| sid | 1.12-1 |
| Bug | jessie | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2019-17566 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | SSRF vulnerability |
| Bug | Description |
|---|---|
| CVE-2018-8013 | In Apache Batik 1.x before 1.10, when deserializing subclass of `Abstr ... |
| CVE-2017-5662 | In Apache Batik before 1.9, files lying on the filesystem of the serve ... |
| CVE-2015-0250 | XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) ... |
| CVE-2005-0508 | Unknown vulnerability in Squiggle for Batik before 1.5.1 allows attack ... |
| DSA / DLA | Description |
|---|---|
| DSA-4215-1 | batik - security update |
| DLA-1385-1 | batik - security update |
| DLA-926-1 | batik - security update |
| DSA-3205-1 | batik - security update |
| DLA-182-1 | batik - security update |