Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/calibre@0.8.51%2Bdfsg1-0.1
purl pkg:deb/debian/calibre@0.8.51%2Bdfsg1-0.1
Next non-vulnerable version 8.16.2+ds+~0.10.5-3~bpo13+1
Latest non-vulnerable version 8.16.2+ds+~0.10.5-3~bpo13+1
Risk 4.5
Vulnerabilities affecting this package (10)
Vulnerability Summary Fixed by
VCID-1uhd-3upf-nqbu
Aliases:
CVE-2011-4126
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged users the ability to mount any device to anywhere.
1.22.0+dfsg1-1~bpo70+2
Affected by 7 other vulnerabilities.
VCID-4gvv-bsf9-vqca
Aliases:
CVE-2023-46303
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.
6.13.0+repack-2+deb12u5
Affected by 10 other vulnerabilities.
VCID-4kgm-mmjn-g3a7
Aliases:
CVE-2016-10187
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
2.75.1+dfsg-1
Affected by 5 other vulnerabilities.
VCID-favj-1bjh-9uff
Aliases:
CVE-2021-44686
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py.
6.13.0+repack-2+deb12u5
Affected by 10 other vulnerabilities.
VCID-pa4n-csyj-wqet
Aliases:
CVE-2024-7009
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.
5.12.0+dfsg-1+deb11u2
Affected by 13 other vulnerabilities.
VCID-qsbr-up7k-kbcr
Aliases:
CVE-2011-4124
Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privileges.
1.22.0+dfsg1-1~bpo70+2
Affected by 7 other vulnerabilities.
VCID-stnm-9pm7-gqbv
Aliases:
CVE-2011-4125
A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the ability of unprivileged users to execute any program as root.
1.22.0+dfsg1-1~bpo70+2
Affected by 7 other vulnerabilities.
VCID-xhf1-k7jg-6ued
Aliases:
CVE-2018-7889
gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.
3.39.1+dfsg-3
Affected by 4 other vulnerabilities.
VCID-ycp8-ws8x-3qbn
Aliases:
CVE-2024-7008
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution.
5.12.0+dfsg-1+deb11u2
Affected by 13 other vulnerabilities.
VCID-z6j2-32tf-g7ax
Aliases:
CVE-2010-1028
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation.
2.75.1+dfsg-1~bpo8+1
Affected by 6 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:54:31.864554+00:00 Debian Oval Importer Affected by VCID-pa4n-csyj-wqet https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:22:36.334410+00:00 Debian Oval Importer Affected by VCID-stnm-9pm7-gqbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T23:13:06.493162+00:00 Debian Oval Importer Affected by VCID-ycp8-ws8x-3qbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:58:06.912998+00:00 Debian Oval Importer Affected by VCID-4kgm-mmjn-g3a7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:56:38.985702+00:00 Debian Oval Importer Affected by VCID-qsbr-up7k-kbcr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:38:03.662724+00:00 Debian Oval Importer Affected by VCID-favj-1bjh-9uff https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:23:57.542431+00:00 Debian Oval Importer Affected by VCID-xhf1-k7jg-6ued https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:05:46.154222+00:00 Debian Oval Importer Affected by VCID-1uhd-3upf-nqbu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:53:00.151075+00:00 Debian Oval Importer Affected by VCID-4gvv-bsf9-vqca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:22:13.296738+00:00 Debian Oval Importer Affected by VCID-z6j2-32tf-g7ax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:26:55.085566+00:00 Debian Oval Importer Affected by VCID-pa4n-csyj-wqet https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T23:56:08.363904+00:00 Debian Oval Importer Affected by VCID-stnm-9pm7-gqbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:48:56.158383+00:00 Debian Oval Importer Affected by VCID-ycp8-ws8x-3qbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:34:27.307687+00:00 Debian Oval Importer Affected by VCID-4kgm-mmjn-g3a7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:33:02.553032+00:00 Debian Oval Importer Affected by VCID-qsbr-up7k-kbcr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:14:51.225295+00:00 Debian Oval Importer Affected by VCID-favj-1bjh-9uff https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:01:10.335792+00:00 Debian Oval Importer Affected by VCID-xhf1-k7jg-6ued https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:43:46.895753+00:00 Debian Oval Importer Affected by VCID-1uhd-3upf-nqbu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:37:27.073380+00:00 Debian Oval Importer Affected by VCID-4gvv-bsf9-vqca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:09:30.463352+00:00 Debian Oval Importer Affected by VCID-z6j2-32tf-g7ax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:57:23.396115+00:00 Debian Oval Importer Affected by VCID-pa4n-csyj-wqet https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:27:54.731299+00:00 Debian Oval Importer Affected by VCID-stnm-9pm7-gqbv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:23:35.565940+00:00 Debian Oval Importer Affected by VCID-ycp8-ws8x-3qbn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:09:53.745340+00:00 Debian Oval Importer Affected by VCID-4kgm-mmjn-g3a7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:08:32.772070+00:00 Debian Oval Importer Affected by VCID-qsbr-up7k-kbcr https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:51:12.085064+00:00 Debian Oval Importer Affected by VCID-favj-1bjh-9uff https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:38:14.467635+00:00 Debian Oval Importer Affected by VCID-xhf1-k7jg-6ued https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:21:37.944062+00:00 Debian Oval Importer Affected by VCID-1uhd-3upf-nqbu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:22:35.403037+00:00 Debian Oval Importer Affected by VCID-4gvv-bsf9-vqca https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:02:04.464865+00:00 Debian Oval Importer Affected by VCID-z6j2-32tf-g7ax https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0