| Release | Version |
|---|---|
| stretch | 4.5.7+dfsg-2 |
| buster | 4.11.1+dfsg-1 |
| bullseye | 4.12.1+dfsg-1 |
| sid | 4.12.1+dfsg-1 |
| Bug | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|
| CVE-2021-26272 | vulnerable (no DSA, postponed) | vulnerable | vulnerable | vulnerable | It was possible to execute a ReDoS-type attack inside CKEditor 4 befor ... |
| CVE-2021-26271 | vulnerable (no DSA, postponed) | vulnerable | vulnerable | vulnerable | It was possible to execute a ReDoS-type attack inside CKEditor 4 befor ... |
| CVE-2018-17960 | vulnerable (no DSA) | fixed | fixed | fixed | CKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ... |
| Bug | Description |
|---|---|
| CVE-2014-5191 | Cross-site scripting (XSS) vulnerability in the Preview plugin before ... |