Information on source package calibre

Available versions

ReleaseVersion
bullseye5.12.0+dfsg-1+deb11u2
bullseye (security)5.12.0+dfsg-1+deb11u3
bookworm6.13.0+repack-2+deb12u5
trixie8.5.0+ds-1+deb13u1
forky8.16.2+ds+~0.10.5-3
sid9.3.1+ds+~0.10.5-1

Open issues

BugbullseyebookwormtrixieforkysidDescription
CVE-2026-26065vulnerablevulnerablevulnerablevulnerablefixedcalibre is a cross-platform e-book manager for viewing, converting, ed ...
CVE-2026-26064vulnerablevulnerablevulnerablevulnerablefixedcalibre is a cross-platform e-book manager for viewing, converting, ed ...
CVE-2026-25731vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedcalibre is an e-book manager. Prior to 9.2.0, a Server-Side Template I ...
CVE-2026-25636vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedcalibre is an e-book manager. In 9.1.0 and earlier, a path traversal v ...
CVE-2026-25635vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablefixedcalibre is an e-book manager. Prior to 9.2.0, Calibre's CHM reader con ...
CVE-2025-64486vulnerable (no DSA, postponed)fixedfixedfixedfixedcalibre is an e-book manager. In versions 8.13.0 and prior, calibre do ...

Resolved issues

BugDescription
TEMP-0608822-EF2F16calibre file disclosure
TEMP-0608822-E0260Ccalibre XSS
CVE-2024-7009Unsanitized user-input in Calibre <= 7.15.0 allow users with permissio ...
CVE-2024-7008Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform ...
CVE-2024-6782Improper access control in Calibre 6.9.0 ~ 7.14.0 allow unauthenticate ...
CVE-2024-6781Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to ...
CVE-2023-46303link_to_local_path in ebooks/conversion/plugins/html_input.py in calib ...
CVE-2021-44686calibre before 5.32.0 contains a regular expression that is vulnerable ...
CVE-2018-7889gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on i ...
CVE-2016-10187The E-book viewer in calibre before 2.75 allows remote attackers to re ...
CVE-2011-4126Race condition issues were found in Calibre at devices/linux_mount_hel ...
CVE-2011-4125A untrusted search path issue was found in Calibre at devices/linux_mo ...
CVE-2011-4124Input validation issues were found in Calibre at devices/linux_mount_h ...
CVE-2010-1028Integer overflow in the decompression functionality in the Web Open Fo ...

Security announcements

DSA / DLADescription
DLA-3862-1calibre - security update
DLA-859-1calibre - security update
Search for package or bug name: Reporting problems