Information on source package ckeditor

Available versions

ReleaseVersion
stretch4.5.7+dfsg-2
stretch (security)4.5.7+dfsg-2+deb9u1
buster4.11.1+dfsg-1
bullseye4.16.0+dfsg-2
bookworm4.16.2+dfsg-1
sid4.16.2+dfsg-1

Open issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2022-24729vulnerablevulnerablevulnerablevulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2022-24728vulnerablevulnerablevulnerablevulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2021-41165vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableCKEditor4 is an open source WYSIWYG HTML editor. In affected version a ...
CVE-2021-41164vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableCKEditor4 is an open source WYSIWYG HTML editor. In affected versions ...
CVE-2021-37695fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-33829fixedvulnerable (no DSA)fixedfixedfixedA cross-site scripting (XSS) vulnerability in the HTML Data Processor ...
CVE-2021-32809vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-32808fixedfixedvulnerable (no DSA)fixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-26272vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedfixedIt was possible to execute a ReDoS-type attack inside CKEditor 4 befor ...
CVE-2021-26271vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedfixedIt was possible to execute a ReDoS-type attack inside CKEditor 4 befor ...
CVE-2021-21391fixedvulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableCKEditor 5 provides a WYSIWYG editing solution. This CVE affects the f ...
CVE-2018-17960vulnerable (no DSA, ignored)fixedfixedfixedfixedCKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ...

Resolved issues

BugDescription
CVE-2014-5191Cross-site scripting (XSS) vulnerability in the Preview plugin before ...

Security announcements

DSA / DLADescription
DLA-2813-1ckeditor - security update

Search for package or bug name: Reporting problems