| Release | Version |
|---|---|
| stretch | 1.0.9-1 |
| buster | 1.1.9-2+deb10u1 |
| bullseye | 1.1.16-3 |
| bookworm | 1.2.4-1 |
| trixie | 1.4.0-4 |
| sid | 1.4.0-4 |
| Bug | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|
| TEMP-0922080-E6D428 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fuse mount exposes backup to unauthorized users |
| CVE-2023-36811 | vulnerable | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | borgbackup is an opensource, deduplicating archiver with compression a ... |
| Bug | Description |
|---|---|
| CVE-2017-15914 | Incorrect implementation of access controls allows remote users to ove ... |
| CVE-2016-10100 | Borg (aka BorgBackup) before 1.0.9 has a flaw in the way duplicate arc ... |
| CVE-2016-10099 | Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic pro ... |