| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2023-40477 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | |
| CVE-2022-48579 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | UnRAR before 6.2.3 allows extraction of files outside of the destinati ... |
| CVE-2022-30333 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal ... |
| CVE-2018-25018 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write durin ... |
| CVE-2017-20006 | vulnerable | fixed | fixed | fixed | fixed | fixed | fixed | UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack:: ... |
| CVE-2017-12942 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libunrar.a in UnRAR before 5.5.7 has a buffer overflow in the Unpack:: ... |
| CVE-2017-12941 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Unpa ... |
| CVE-2017-12940 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | libunrar.a in UnRAR before 5.5.7 has an out-of-bounds read in the Enco ... |
| CVE-2017-12938 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | fixed | UnRAR before 5.5.7 allows remote attackers to bypass a directory-trave ... |