Release | Version |
---|---|
jessie/non-free | 2:4.2.0+dfsg.1-0.1 |
stretch/non-free | 2:6.23-1~deb9u1 |
buster/non-free | 2:6.23-1~deb10u1 |
bullseye/non-free | 2:6.23-1~deb11u1 |
bookworm/non-free | 2:6.23-1~deb12u1 |
trixie/non-free | 2:7.10~b1-2 |
sid/non-free | 2:7.10~b1-2 |
Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
---|---|---|---|---|---|---|---|---|
CVE-2024-33899 | vulnerable | vulnerable | vulnerable | vulnerable (no DSA) | vulnerable (no DSA, ignored) | fixed | fixed | RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attacke ... |
CVE-2023-40477 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remot ... |
CVE-2022-30333 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal ... |
CVE-2014-9983 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | Directory Traversal exists in RAR 4.x and 5.x because an unpack operat ... |
Bug | Description |
---|---|
CVE-2007-3726 | Integer signedness error in the SET_VALUE function in rarvm.cpp in unr ... |
CVE-2007-0855 | Stack-based buffer overflow in RARLabs Unrar, as packaged in WinRAR an ... |
DSA / DLA | Description |
---|---|
ELA-938-1 | rar - security update |
DLA-3543-1 | rar - security update |
DLA-3534-1 | rar - security update |
ELA-922-1 | rar - security update |