| Release | Version |
|---|---|
| jessie | 0.6.2-2 |
| stretch | 0.23.0-2+deb9u2 |
| buster | 0.29.1-1 |
| buster (security) | 0.29.1-1+deb10u1 |
| bullseye | 0.32.0-3 |
| bookworm | 0.35.1-4 |
| trixie | 0.37.0-1 |
| sid | 0.37.0-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| TEMP-0950816-47D88A | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | mpv insecure lua loadpath |
| CVE-2021-30145 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A format string vulnerability in mpv through 0.33.0 allows user-assist ... |
| CVE-2020-19824 | vulnerable | vulnerable | fixed | fixed | fixed | fixed | fixed | An issue in MPV v.0.29.1 fixed in v0.30 allows attackers to execute ar ... |
| Bug | Description |
|---|---|
| CVE-2018-6360 | mpv through 0.28.0 allows remote attackers to execute arbitrary code v ... |
| DSA / DLA | Description |
|---|---|
| DLA-3358-1 | mpv - security update |
| DSA-4105-2 | mpv - regression update |
| DSA-4105-1 | mpv - security update |