Information on source package xdg-utils

Available versions

ReleaseVersion
jessie1.1.0~rc1+git20111210-7.4+deb8u1
stretch1.1.1-1+deb9u2
stretch (lts)1.1.1-1+deb9u1
buster1.1.3-1+deb10u1
bullseye1.1.3-4.1
bookworm1.1.3-4.1
trixie1.2.1-2
sid1.2.1-2

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2022-4055vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, postponed)vulnerablevulnerableWhen xdg-mail is configured to use thunderbird for mailto URLs, improp ...
CVE-2020-27748vulnerable (no DSA, ignored)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerablevulnerableA flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and ...

Resolved issues

BugDescription
CVE-2017-18266The open_envvar function in xdg-open in xdg-utils before 1.1.3 does no ...
CVE-2015-1877The open_generic_xdg_mime function in xdg-open in xdg-utils 1.1.0 rc1 ...
CVE-2014-9622Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported ...
CVE-2009-0068Interaction error in xdg-open allows remote attackers to execute arbit ...
CVE-2008-0386Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to e ...

Security announcements

DSA / DLADescription
DSA-4211-1xdg-utils - security update
DLA-1384-1xdg-utils - security update
DLA-217-1xdg-utils - security update
DSA-3165-1xdg-utils - security update
DSA-3131-1xdg-utils - security update

Search for package or bug name: Reporting problems