| Release | Version |
|---|---|
| bullseye | 4:20.12.3-2 |
| bookworm | 4:22.12.3-1 |
| bookworm (security) | 4:22.12.3-1+deb12u1 |
| trixie | 4:25.04.2-1 |
| trixie (security) | 4:25.04.2-1+deb13u1 |
| forky | 4:26.04.0-1 |
| sid | 4:26.04.0-1 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| TEMP-1139009-9CE18E | vulnerable | fixed | fixed | vulnerable | vulnerable | integer overflow in fax image allocation leads to undersized heap allocation |
| TEMP-1139008-F7B58F | vulnerable | fixed | fixed | vulnerable | vulnerable | unsigned integer wrap-around in fax backend leads to heap out-of-bounds read and write |
| TEMP-1139007-21322A | vulnerable | fixed | fixed | vulnerable | vulnerable | heap out-of-bounds read in fax backend Ghostscript header handling |
| TEMP-1139005-4885B2 | vulnerable | fixed | fixed | vulnerable | vulnerable | heap out-of-bounds read in fax backend FAXMAGIC comparison |
| TEMP-1139004-33118B | vulnerable | fixed | fixed | vulnerable | vulnerable | heap out-of-bounds write in fax backend on zero-length input |
| Bug | Description |
|---|---|
| CVE-2020-9359 | KDE Okular before 1.10.0 allows code execution via an action link in a ... |
| CVE-2018-1000801 | okular version 18.08 and earlier contains a Directory Traversal vulner ... |
| CVE-2010-2575 | Heap-based buffer overflow in the RLE decompression functionality in t ... |
| DSA / DLA | Description |
|---|---|
| DSA-6332-1 | okular - security update |
| DLA-2856-1 | okular - security update |
| DLA-2159-1 | okular - security update |
| DSA-4303-1 | okular - security update |
| DLA-1516-1 | okular - security update |