| Release | Version |
|---|---|
| jessie | 1.6g-7 |
| stretch | 1.6g-9 |
| buster | 1.6g-11 |
| bullseye | 1.6g-14 |
| bookworm | 1.6g-14 |
| trixie | 1.6g-16 |
| sid | 1.6g-16 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-40648 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | In man2html 1.6g, a filename can be created to overwrite the previous ... |
| CVE-2021-40647 | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In man2html 1.6g, a specific string being read in from a file will ove ... |
| Bug | Description |
|---|---|
| CVE-2011-2770 | Cross-site scripting (XSS) vulnerability in man2html.cgi.c in man2html ... |
| DSA / DLA | Description |
|---|---|
| DSA-2335-1 | man2html - missing input sanitization |