| Release | Version |
|---|---|
| stretch | 1.74.1-1 |
| buster | 1.76.0-1 |
| bullseye | 1.79.0-1 |
| sid | 1.79.0-1 |
| Bug | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|
| CVE-2018-7442 | vulnerable (no DSA) | fixed | fixed | fixed | An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutp ... |
| CVE-2018-7186 | vulnerable (no DSA) | fixed | fixed | fixed | Leptonica before 1.75.3 does not limit the number of characters in a % ... |
| CVE-2018-3836 | vulnerable (no DSA) | fixed | fixed | fixed | An exploitable command injection vulnerability exists in the gplotMake ... |
| CVE-2017-18196 | vulnerable (no DSA) | fixed | fixed | fixed | Leptonica 1.74.4 constructs unintended pathnames (containing duplicate ... |
| Bug | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|
| CVE-2018-7441 | vulnerable | fixed | fixed | fixed | Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might al ... |
| CVE-2018-7247 | vulnerable | fixed | fixed | fixed | An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Lepto ... |
| Bug | Description |
|---|---|
| TEMP-0830660-09AE85 | Insecure use of /tmp |
| CVE-2018-7440 | An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutp ... |
| DSA / DLA | Description |
|---|---|
| DLA-1302-1 | leptonlib - security update |
| DLA-1284-1 | leptonlib - security update |