| Release | Version |
|---|---|
| bullseye | 239-1 |
| bookworm | 287.1-0+deb12u3 |
| bookworm (security) | 287.1-0+deb12u2 |
| trixie | 337-1 |
| sid | 338-1 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2024-6126 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | A flaw was found in the cockpit package. This flaw allows an authentic ... |
| CVE-2021-3698 | vulnerable (no DSA) | fixed | fixed | fixed | A flaw was found in Cockpit in versions prior to 260 in the way it han ... |
| CVE-2021-3660 | vulnerable (no DSA, ignored) | fixed | fixed | fixed | Cockpit (and its plugins) do not seem to protect itself against clickj ... |
| Bug | Description |
|---|---|
| CVE-2024-2947 | A flaw was found in Cockpit. Deleting a sosreport with a crafted name ... |
| CVE-2019-3804 | It was found that cockpit before version 184 used glib's base64 decode ... |
| DSA / DLA | Description |
|---|---|
| DSA-5655-2 | cockpit - regression update |
| DSA-5655-1 | cockpit - security update |