| Release | Version |
|---|---|
| jessie | 1.9.4-3+deb8u2 |
| stretch | 1.9.9-1+deb9u1 |
| buster | 1.10.5-2 |
| bullseye | 1.10.9-4 |
| bookworm | 1.10.13-1 |
| trixie | 1.10.15-1 |
| sid | 1.10.15-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-1945 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default tempora ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-36374 | vulnerable | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | When reading a specially crafted ZIP archive, or a derived formats, an ... |
| CVE-2021-36373 | vulnerable | vulnerable | vulnerable | vulnerable | fixed | fixed | fixed | When reading a specially crafted TAR archive an Apache Ant build can b ... |
| Bug | Description |
|---|---|
| TEMP-0904191-9063D5 | Incomplete fix for CVE-2018-10886 |
| CVE-2020-11979 | As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissi ... |
| CVE-2018-10886 |
| DSA / DLA | Description |
|---|---|
| DLA-1457-1 | ant - security update |
| DSA-4255-1 | ant - security update |
| DLA-1431-1 | ant - security update |