Release | Version |
---|---|
bullseye | 1.12-4+deb11u2 |
bullseye (security) | 1.12-4+deb11u1 |
bookworm | 1.16+dfsg-1+deb12u1 |
trixie | 1.18+dfsg-2 |
sid | 1.18+dfsg-2 |
Bug | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|
CVE-2022-40146 | vulnerable (no DSA) | fixed | fixed | fixed | Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XM ... |
CVE-2022-38648 | vulnerable (no DSA) | fixed | fixed | fixed | Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XM ... |
CVE-2022-38398 | vulnerable (no DSA) | fixed | fixed | fixed | Server-Side Request Forgery (SSRF) vulnerability in Batik of Apache XM ... |
CVE-2020-11987 | vulnerable (no DSA) | fixed | fixed | fixed | Apache Batik 1.13 is vulnerable to server-side request forgery, caused ... |
Bug | Description |
---|---|
CVE-2022-44730 | Server-Side Request Forgery (SSRF) vulnerability in Apache Software Fo ... |
CVE-2022-44729 | Server-Side Request Forgery (SSRF) vulnerability in Apache Software Fo ... |
CVE-2022-42890 | A vulnerability in Batik of Apache XML Graphics allows an attacker to ... |
CVE-2022-41704 | A vulnerability in Batik of Apache XML Graphics allows an attacker to ... |
CVE-2019-17566 | Apache Batik is vulnerable to server-side request forgery, caused by i ... |
CVE-2018-8013 | In Apache Batik 1.x before 1.10, when deserializing subclass of `Abstr ... |
CVE-2017-5662 | In Apache Batik before 1.9, files lying on the filesystem of the serve ... |
CVE-2015-0250 | XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) ... |
CVE-2005-0508 | Unknown vulnerability in Squiggle for Batik before 1.5.1 allows attack ... |
DSA / DLA | Description |
---|---|
DLA-3619-1 | batik - security update |
DSA-5264-1 | batik - security update |
DLA-3169-1 | batik - security update |
DSA-4215-1 | batik - security update |
DLA-1385-1 | batik - security update |
DLA-926-1 | batik - security update |
DSA-3205-1 | batik - security update |
DLA-182-1 | batik - security update |