Information on source package cron

Available versions

ReleaseVersion
bullseye3.0pl1-137
bookworm3.0pl1-162
trixie3.0pl1-189
sid3.0pl1-189

Resolved issues

BugDescription
TEMP-0528434-FDFF92cron: Incomplete fix for CVE-2006-2607 (setgid() and initgroups() not checked
CVE-2024-43688cron/entry.c in vixie cron before 9cc8ab1, as used in OpenBSD 7.4 and ...
CVE-2019-9706Vixie Cron before the 3.0pl1-133 Debian package allows local users to ...
CVE-2019-9705Vixie Cron before the 3.0pl1-133 Debian package allows local users to ...
CVE-2019-9704Vixie Cron before the 3.0pl1-133 Debian package allows local users to ...
CVE-2017-9525In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-1 ...
CVE-2011-1075FreeBSD's crontab calculates the MD5 sum of the previous and new cronj ...
CVE-2011-1074crontab.c in crontab in FreeBSD allows local users to determine the ex ...
CVE-2011-1073crontab.c in crontab in FreeBSD and Apple Mac OS X allows local users ...
CVE-2010-0424The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) ...
CVE-2007-1856Vixie Cron before 4.1-r10 on Gentoo Linux is installed with insecure p ...
CVE-2006-2607do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return ...

Security announcements

DSA / DLADescription
DLA-2801-1cron - security update
DLA-1723-1cron - security update

Search for package or bug name: Reporting problems