| Release | Version |
|---|---|
| jessie | 1:1.1.2-1+deb8u1 |
| stretch | 1:1.1.9-3 |
| buster | 1:1.2.3-5 |
| bullseye | 1:1.2.3-6 |
| bookworm | 1:1.2.11-3 |
| trixie | 1:1.2.11-5 |
| sid | 1:1.2.11-5 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-6378 | vulnerable | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | A serialization vulnerability in logback receiver component part of l ... |
| CVE-2021-42550 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | In logback version 1.2.7 and prior versions, an attacker with the requ ... |
| Bug | Description |
|---|---|
| CVE-2023-6481 | A serialization vulnerability in logback receiver component part of l ... |
| CVE-2017-5929 | QOS.ch Logback before 1.2.0 has a serialization vulnerability affectin ... |
| DSA / DLA | Description |
|---|---|
| DLA-888-1 | logback - security update |