| Release | Version |
|---|---|
| buster | 0.11.0-4 |
| bullseye | 0.13.0-6 |
| bookworm | 0.17.0-2 |
| trixie | 0.19.0-2.1 |
| sid | 0.19.0-2.1 |
| Bug | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2020-13949 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send sho ... |
| CVE-2019-0210 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | In Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJS ... |
| CVE-2019-0205 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | In Apache Thrift all versions up to and including 0.12.0, a server or ... |
| Bug | Description |
|---|---|
| CVE-2018-11798 | The Apache Thrift Node.js static web server in versions 0.9.2 through ... |
| CVE-2016-5397 | The Apache Thrift Go client library exposed the potential during code ... |