Release | Version |
---|---|
stretch | 1.74.1-1 |
stretch (security) | 1.74.1-1+deb9u1 |
buster | 1.76.0-1+deb10u1 |
bullseye | 1.79.0-1.1 |
bookworm | 1.82.0-3 |
sid | 1.82.0-3 |
Bug | stretch | buster | bullseye | bookworm | sid | Description |
---|---|---|---|---|---|---|
CVE-2018-7442 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutp ... |
CVE-2018-7186 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Leptonica before 1.75.3 does not limit the number of characters in a % ... |
CVE-2018-3836 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | An exploitable command injection vulnerability exists in the gplotMake ... |
CVE-2017-18196 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Leptonica 1.74.4 constructs unintended pathnames (containing duplicate ... |
Bug | stretch | buster | bullseye | bookworm | sid | Description |
---|---|---|---|---|---|---|
CVE-2018-7441 | vulnerable | fixed | fixed | fixed | fixed | Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which might al ... |
CVE-2018-7247 | vulnerable | fixed | fixed | fixed | fixed | An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Lepto ... |
Bug | Description |
---|---|
TEMP-0830660-09AE85 | Insecure use of /tmp |
CVE-2020-36281 | Leptonica before 1.80.0 allows a heap-based buffer over-read in pixFew ... |
CVE-2020-36280 | Leptonica before 1.80.0 allows a heap-based buffer over-read in pixRea ... |
CVE-2020-36279 | Leptonica before 1.80.0 allows a heap-based buffer over-read in raster ... |
CVE-2020-36278 | Leptonica before 1.80.0 allows a heap-based buffer over-read in findNe ... |
CVE-2020-36277 | Leptonica before 1.80.0 allows a denial of service (application crash) ... |
CVE-2018-7440 | An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutp ... |
DSA / DLA | Description |
---|---|
DLA-2612-1 | leptonlib - security update |
DLA-1302-1 | leptonlib - security update |
DLA-1284-1 | leptonlib - security update |