Information on source package gradle

Available versions

ReleaseVersion
jessie1.5-2
stretch3.2.1-1
buster4.4.1-6
bullseye4.4.1-13
bookworm4.4.1-18
trixie4.4.1-20
sid4.4.1-20

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-44387vulnerablevulnerablevulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-42445vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-35947vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2023-35946vulnerablevulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableGradle is a build tool with a focus on build automation and support fo ...
CVE-2021-32751vulnerablevulnerable (no DSA)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerablevulnerableGradle is a build tool with a focus on build automation. In versions p ...
CVE-2021-29429vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableIn Gradle before version 7.0, files created with open permissions in t ...
CVE-2021-29428vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableIn Gradle before version 7.0, on Unix-like systems, the system tempora ...
CVE-2019-16370vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedThe PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algori ...
CVE-2019-15052vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)vulnerablevulnerableThe HTTP client in Gradle before 5.6 sends authentication credentials ...
CVE-2019-11065vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedGradle versions from 1.4 to 5.3.1 use an insecure HTTP URL to download ...
CVE-2016-6199vulnerable (no DSA, ignored)fixedfixedfixedfixedfixedfixedObjectSocketWrapper.java in Gradle 2.12 allows remote attackers to exe ...

Resolved issues

BugDescription
CVE-2023-26053Gradle is a build tool with a focus on build automation and support fo ...
CVE-2022-31156Gradle is a build tool. Dependency verification is a security feature ...
CVE-2022-23630Gradle is a build tool with a focus on build automation and support fo ...
CVE-2021-29427In Gradle from version 5.1 and before version 7.0 there is a vulnerabi ...

Search for package or bug name: Reporting problems