| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|
| CVE-2021-32751 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | Gradle is a build tool with a focus on build automation. In versions p ... |
| CVE-2021-29429 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In Gradle before version 7.0, files created with open permissions in t ... |
| CVE-2021-29428 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | In Gradle before version 7.0, on Unix-like systems, the system tempora ... |
| CVE-2019-16370 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algori ... |
| CVE-2019-15052 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | The HTTP client in Gradle before 5.6 sends authentication credentials ... |
| CVE-2019-11065 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Gradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to download ... |