| Release | Version |
|---|---|
| jessie | 3.10.1-2 |
| stretch | 3.10.1-3 |
| buster | 4.0.1-1 |
| bullseye | 4.0.1-1 |
| bookworm | 4.0.1-4 |
| trixie | 4.0.1-6 |
| sid | 4.0.1-6 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-12626 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | Apache POI in versions prior to release 3.17 are vulnerable to Denial ... |
| CVE-2017-5644 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | Apache POI in versions prior to release 3.15 allows remote attackers t ... |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-12415 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to conv ... |
| CVE-2016-5000 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | The XLSX2CSV example in Apache POI before 3.14 allows remote attackers ... |
| Bug | Description |
|---|---|
| CVE-2014-9527 | HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cau ... |
| CVE-2014-3574 | Apache POI before 3.10.1 and 3.11.x before 3.11-beta2 allows remote at ... |
| CVE-2014-3529 | The OPC SAX setup in Apache POI before 3.10.1 allows remote attackers ... |