| Release | Version |
|---|---|
| jessie | 1.16+dfsg-2+deb8u1 |
| stretch | 2.3+dfsg-1+deb9u1 |
| buster | 2.5+dfsg-6+deb10u1 |
| bullseye | 2.6+dfsg-2 |
| bookworm | 2.7.1+dfsg-5 |
| trixie | 2.8+dfsg-5 |
| sid | 2.8+dfsg-5 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-50610 | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, postponed) | vulnerable (no DSA, ignored) | fixed | fixed | GSL (GNU Scientific Library) through 2.8 has an integer signedness err ... |
| CVE-2020-35357 | fixed | fixed | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | A buffer overflow can occur when calculating the quantile value using ... |
| DSA / DLA | Description |
|---|---|
| ELA-952-1 | gsl - security update |
| DLA-3576-1 | gsl - security update |