| Release | Version |
|---|---|
| buster | 0.11.0-4 |
| bullseye | 0.13.0-6 |
| sid | 0.13.0-6 |
| Bug | buster | bullseye | sid | Description |
|---|---|---|---|---|
| CVE-2020-13949 | vulnerable | vulnerable | vulnerable | In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send sho ... |
| CVE-2019-11939 | vulnerable | vulnerable | vulnerable | Golang Facebook Thrift servers would not error upon receiving messages ... |
| CVE-2019-0210 | vulnerable | fixed | fixed | In Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJS ... |
| CVE-2019-0205 | vulnerable | fixed | fixed | In Apache Thrift all versions up to and including 0.12.0, a server or ... |
| Bug | Description |
|---|---|
| CVE-2018-11798 | The Apache Thrift Node.js static web server in versions 0.9.2 through ... |
| CVE-2016-5397 | The Apache Thrift Go client library exposed the potential during code ... |