Information on source package gradle

Available versions

ReleaseVersion
buster4.4.1-6
bullseye4.4.1-13
bookworm4.4.1-18
trixie4.4.1-20
sid4.4.1-20

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2023-44387vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-42445vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-35947vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-35946vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2021-32751vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerableGradle is a build tool with a focus on build automation. In versions p ...
CVE-2021-29429vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableIn Gradle before version 7.0, files created with open permissions in t ...
CVE-2021-29428vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableIn Gradle before version 7.0, on Unix-like systems, the system tempora ...
CVE-2019-16370vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedThe PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algori ...
CVE-2019-15052vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableThe HTTP client in Gradle before 5.6 sends authentication credentials ...
CVE-2019-11065vulnerable (no DSA)fixedfixedfixedfixedGradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to download ...

Resolved issues

BugDescription
CVE-2023-26053Gradle is a build tool with a focus on build automation and support fo ...
CVE-2022-31156Gradle is a build tool. Dependency verification is a security feature ...
CVE-2022-23630Gradle is a build tool with a focus on build automation and support fo ...
CVE-2021-29427In Gradle from version 5.1 and before version 7.0 there is a vulnerabi ...
CVE-2016-6199ObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to exe ...

Search for package or bug name: Reporting problems