Information on source package ckeditor

Available versions

ReleaseVersion
jessie4.4.4+dfsg1-3+deb8u2
stretch4.5.7+dfsg-2+deb9u2
stretch (security)4.5.7+dfsg-2+deb9u1
buster4.11.1+dfsg-1
bullseye4.16.0+dfsg-2
bookworm4.19.1+dfsg-1
trixie4.22.1+dfsg1-2
sid4.22.1+dfsg1-2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-43407vulnerable (no DSA, postponed)vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2024-24816vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2024-24815vulnerable (no DSA, postponed)vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2023-28439vulnerable (no DSA, postponed)vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2022-24729vulnerable (no DSA, postponed)vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2022-24728vulnerable (no DSA, postponed)vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2021-41165vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedCKEditor4 is an open source WYSIWYG HTML editor. In affected version a ...
CVE-2021-41164vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedCKEditor4 is an open source WYSIWYG HTML editor. In affected versions ...
CVE-2021-37695fixedfixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-33829fixedfixedvulnerable (no DSA)fixedfixedfixedfixedA cross-site scripting (XSS) vulnerability in the HTML Data Processor ...
CVE-2021-32809fixedvulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-32808fixedfixedfixedvulnerable (no DSA)fixedfixedfixedckeditor is an open source WYSIWYG HTML editor with rich content suppo ...
CVE-2021-26272fixedvulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedfixedfixedIt was possible to execute a ReDoS-type attack inside CKEditor 4 befor ...
CVE-2021-26271vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA)fixedfixedfixedfixedIt was possible to execute a ReDoS-type attack inside CKEditor 4 befor ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-43411vulnerablevulnerablevulnerablefixedfixedvulnerablevulnerableCKEditor4 is an open source what-you-see-is-what-you-get HTML editor. ...
CVE-2023-4771vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA Cross-Site scripting vulnerability has been found in CKSource CKEdit ...
CVE-2018-17960vulnerablevulnerablefixedfixedfixedfixedfixedCKEditor 4.x before 4.11.0 allows user-assisted XSS involving a source ...

Resolved issues

BugDescription
CVE-2024-45613CKEditor 5 is a JavaScript rich-text editor. Starting in version 40.0. ...
CVE-2021-21391CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the f ...
CVE-2014-5191Cross-site scripting (XSS) vulnerability in the Preview plugin before ...

Security announcements

DSA / DLADescription
ELA-905-1ckeditor - security update
DLA-2813-1ckeditor - security update
ELA-513-1ckeditor - security update
Search for package or bug name: Reporting problems