| Release | Version |
|---|---|
| bullseye | 6.4.17-3 |
| bookworm | 6.8.0+~6.4.6-1 |
| trixie | 6.10.0+~6.4.17-1+deb13u1 |
| forky | 7.0.12+~7.0.5-1 |
| sid | 7.0.12+~7.0.5-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2025-14874 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | A flaw was found in Nodemailer. This vulnerability allows a denial of ... |
| CVE-2025-13033 | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | A vulnerability was identified in the email parsing library due to imp ... |
| Bug | Description |
|---|---|
| CVE-2021-23400 | The package nodemailer before 6.6.1 are vulnerable to HTTP Header Inje ... |
| CVE-2020-7769 | This affects the package nodemailer before 6.4.16. Use of crafted reci ... |