| Release | Version |
|---|---|
| bullseye | 6.12.6-2 |
| bookworm | 6.12.6-3 |
| trixie | 8.12.0~ds+~2.1.1-5 |
| forky | 8.20.0~ds+~cs6.1.3-1 |
| sid | 8.20.0~ds+~cs6.1.3-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-6322 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fast-uri normalize() decoded percent-encoded authority delimiters insi ... |
| CVE-2026-6321 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fast-uri decoded percent-encoded path separators and dot segments befo ... |
| CVE-2025-69873 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | ajv (Another JSON Schema Validator) before 8.18.0 is vulnerable to Reg ... |
| Bug | Description |
|---|---|
| CVE-2020-15366 | An issue was discovered in ajv.validate() in Ajv (aka Another JSON Sch ... |