| Release | Version |
|---|---|
| buster | 1:1.6-1 |
| bullseye | 1:1.6-4 |
| bookworm | 1:1.7-4 |
| sid | 1:1.7-4 |
| Bug | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|
| CVE-2020-23856 | vulnerable | vulnerable | fixed | fixed | Use-after-Free vulnerability in cflow 1.6 in the void call(char *name, ... |
| CVE-2019-16166 | vulnerable | vulnerable | fixed | fixed | GNU cflow through 1.6 has a heap-based buffer over-read in the nexttok ... |
| CVE-2019-16165 | vulnerable | vulnerable | fixed | fixed | GNU cflow through 1.6 has a use-after-free in the reference function i ... |