Information on source package couchdb

Available versions

ReleaseVersion
wheezy1.2.0-5
wheezy (security)1.2.0-5+deb7u1

Open issues

BugwheezyDescription
CVE-2014-2668vulnerable (no DSA)Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a ...

Resolved issues

BugDescription
CVE-2017-12636CouchDB administrative users can configure the database server via ...
CVE-2017-12635Due to differences in the Erlang-based JSON parser and ...
CVE-2012-5650Cross-site scripting (XSS) vulnerability in the Futon UI in Apache ...
CVE-2012-5649Apache CouchDB before 1.0.4, 1.1.x before 1.1.2, and 1.2.x before ...
CVE-2012-5641Directory traversal vulnerability in the partition2 function in ...
CVE-2010-3854Multiple cross-site scripting (XSS) vulnerabilities in the web ...
CVE-2010-2953Untrusted search path vulnerability in a certain Debian GNU/Linux ...
CVE-2010-2234Cross-site request forgery (CSRF) vulnerability in Apache CouchDB ...
CVE-2010-0009Apache CouchDB 0.8.0 through 0.10.1 allows remote attackers to obtain ...

Security announcements

DSA / DLADescription
DLA-1252-1couchdb - security update
DSA-2107-1couchdb - arbitrary code execution

Search for package or bug name: Reporting problems