| Release | Version |
|---|---|
| bullseye | 1.13.1-1+deb11u1 |
| bookworm | 1.15.2+~1.14.1-1 |
| trixie | 1.15.9+~1.14.4-1 |
| forky | 1.15.9+~1.14.4-1 |
| sid | 1.15.9+~1.14.4-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2024-28849 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | follow-redirects is an open source, drop-in replacement for Node's `ht ... |
| CVE-2023-26159 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | Versions of the package follow-redirects before 1.15.4 are vulnerable ... |
| Bug | Description |
|---|---|
| CVE-2022-0536 | Improper Removal of Sensitive Information Before Storage or Transfer i ... |
| CVE-2022-0155 | follow-redirects is vulnerable to Exposure of Private Personal Informa ... |