Information on source package calibre

Available versions

Bug	jessie	stretch	buster	bullseye	bookworm	trixie	sid	Description
CVE-2024-7009	vulnerable	vulnerable	vulnerable	fixed	fixed	fixed	fixed	Unsanitized user-input in Calibre <= 7.15.0 allow users with permissio ...
CVE-2024-7008	vulnerable	vulnerable	vulnerable	fixed	fixed	fixed	fixed	Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform ...
CVE-2024-6782	vulnerable	vulnerable	vulnerable	fixed	fixed	fixed	fixed	Improper access control in Calibre 6.9.0 ~ 7.14.0 allow unauthenticate ...
CVE-2024-6781	vulnerable	vulnerable	vulnerable	fixed	fixed	fixed	fixed	Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to ...
CVE-2023-46303	vulnerable	vulnerable	vulnerable (no DSA)	fixed	fixed	fixed	fixed	link_to_local_path in ebooks/conversion/plugins/html_input.py in calib ...
CVE-2021-44686	vulnerable	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	fixed	fixed	calibre before 5.32.0 contains a regular expression that is vulnerable ...
CVE-2018-7889	vulnerable (no DSA)	vulnerable (no DSA)	fixed	fixed	fixed	fixed	fixed	gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on i ...
CVE-2016-10187	vulnerable (no DSA)	fixed	fixed	fixed	fixed	fixed	fixed	The E-book viewer in calibre before 2.75 allows remote attackers to re ...
CVE-2010-1028	vulnerable (no DSA)	fixed	fixed	fixed	fixed	fixed	fixed	Integer overflow in the decompression functionality in the Web Open Fo ...

Bug	Description
TEMP-0608822-EF2F16	calibre file disclosure
TEMP-0608822-E0260C	calibre XSS
CVE-2011-4126	Race condition issues were found in Calibre at devices/linux_mount_hel ...
CVE-2011-4125	A untrusted search path issue was found in Calibre at devices/linux_mo ...
CVE-2011-4124	Input validation issues were found in Calibre at devices/linux_mount_h ...

DSA / DLA	Description
DLA-3862-1	calibre - security update
DLA-859-1	calibre - security update