Search for packages
| purl | pkg:deb/debian/calibre@2.75.1%2Bdfsg-1 |
| Next non-vulnerable version | 8.16.2+ds+~0.10.5-3~bpo13+1 |
| Latest non-vulnerable version | 8.16.2+ds+~0.10.5-3~bpo13+1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-4gvv-bsf9-vqca
Aliases: CVE-2023-46303 |
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution. |
Affected by 10 other vulnerabilities. |
|
VCID-favj-1bjh-9uff
Aliases: CVE-2021-44686 |
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) in html_preprocess_rules in ebooks/conversion/preprocess.py. |
Affected by 10 other vulnerabilities. |
|
VCID-pa4n-csyj-wqet
Aliases: CVE-2024-7009 |
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution. |
Affected by 13 other vulnerabilities. |
|
VCID-xhf1-k7jg-6ued
Aliases: CVE-2018-7889 |
gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call. |
Affected by 4 other vulnerabilities. |
|
VCID-ycp8-ws8x-3qbn
Aliases: CVE-2024-7008 |
Multiple vulnerabilities have been discovered in calibre, the worst of which could lead to remote code execution. |
Affected by 13 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-4kgm-mmjn-g3a7 | The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. |
CVE-2016-10187
|