| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|
| CVE-2026-13676 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable | vulnerable | fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize U ... |
| CVE-2026-6322 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fast-uri normalize() decoded percent-encoded authority delimiters insi ... |
| CVE-2026-6321 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fast-uri decoded percent-encoded path separators and dot segments befo ... |
| CVE-2025-69873 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | ajv (Another JSON Schema Validator) before 8.18.0 is vulnerable to Reg ... |