| Release | Version |
|---|---|
| bullseye/non-free | 2:6.23-1~deb11u1 |
| bookworm/non-free | 2:6.23-1~deb12u1 |
| trixie/non-free | 2:7.11-1 |
| sid/non-free | 2:7.11-1 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2024-33899 | vulnerable (no DSA) | vulnerable (no DSA, ignored) | fixed | fixed | RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attacke ... |
| Bug | Description |
|---|---|
| CVE-2023-40477 | RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remot ... |
| CVE-2022-30333 | RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal ... |
| CVE-2014-9983 | Directory Traversal exists in RAR 4.x and 5.x because an unpack operat ... |
| CVE-2007-3726 | Integer signedness error in the SET_VALUE function in rarvm.cpp in unr ... |
| CVE-2007-0855 | Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR an ... |
| DSA / DLA | Description |
|---|---|
| DLA-3543-1 | rar - security update |
| DLA-3534-1 | rar - security update |