Search for packages
Package details: pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1
purl pkg:deb/debian/epiphany-browser@3.32.1.2-3~deb10u1
Next non-vulnerable version 48.3-2
Latest non-vulnerable version 48.3-2
Risk 4.0
Vulnerabilities affecting this package (7)
Vulnerability Summary Fixed by
VCID-hg6a-nnf7-aaan
Aliases:
CVE-2021-45087
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 when View Source mode or Reader mode is used, as demonstrated by a a page title.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
VCID-kr21-knq3-aaaf
Aliases:
CVE-2019-25085
A vulnerability was found in GNOME gvdb. It has been classified as critical. This affects the function gvdb_table_write_contents_async of the file gvdb-builder.c. The manipulation leads to use after free. It is possible to initiate the attack remotely. The name of the patch is d83587b2a364eb9a9a53be7e6a708074e252de14. It is recommended to apply a patch to fix this issue. The identifier VDB-216789 was assigned to this vulnerability.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
VCID-qccg-re6f-aaaf
Aliases:
CVE-2022-29536
In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
VCID-v3v3-16gd-aaas
Aliases:
CVE-2023-26081
In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
43.1-1
Affected by 1 other vulnerability.
VCID-wdyq-k3mq-aaah
Aliases:
CVE-2021-45086
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
VCID-xmbp-1n9r-aaab
Aliases:
CVE-2021-45088
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an error page.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
VCID-zk2g-37wy-aaah
Aliases:
CVE-2021-45085
XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an about: page, as demonstrated by ephy-about:overview when a user visits an XSS payload page often enough to place that page on the Most Visited list.
3.38.2-1+deb11u3
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-869c-shsa-aaad libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via certain window.open and document.write calls. CVE-2018-12016
VCID-gex6-76gc-aaag ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via JavaScript code that triggers access to a NULL URL, as demonstrated by a crafted window.open call. CVE-2018-11396

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T23:54:04.184219+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 36.1.3
2025-06-21T20:07:18.425646+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 36.1.3
2025-06-21T19:13:55.488755+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T19:06:46.930187+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T18:35:10.238094+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:49:35.717896+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:28:53.905061+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:21:30.978813+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:41:57.917750+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:02:11.926337+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T14:59:13.570916+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 36.1.3
2025-06-21T11:43:15.177032+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T11:30:04.561759+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T08:48:50.080837+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 36.1.3
2025-06-21T08:13:10.873661+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas None 36.1.3
2025-06-21T07:03:12.768468+00:00 Debian Oval Importer Affected by VCID-kr21-knq3-aaaf None 36.1.3
2025-06-21T04:42:58.770626+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah None 36.1.3
2025-06-21T03:14:48.965646+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 36.1.3
2025-06-21T00:34:17.831808+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag None 36.1.3
2025-06-21T00:32:42.990749+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah None 36.1.3
2025-06-21T00:22:02.789203+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan None 36.1.3
2025-06-20T22:45:58.236982+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 36.1.3
2025-06-20T21:54:28.863395+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf None 36.1.3
2025-06-20T21:33:18.674463+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad None 36.1.3
2025-06-20T21:26:27.008563+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 36.1.3
2025-06-20T20:43:48.625930+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab None 36.1.3
2025-06-20T20:18:29.948548+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 36.1.3
2025-06-08T13:08:06.918884+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:17:35.052310+00:00 Debian Oval Importer Affected by VCID-kr21-knq3-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:15:28.871904+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:42:44.013612+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:35:52.370852+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:05:32.098379+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:22:32.074411+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:14:46.571440+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:07:40.504857+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:36:04.922388+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T07:55:34.029096+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:59:01.471984+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T04:50:34.286887+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T01:54:28.859699+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas None 36.1.0
2025-06-08T00:42:56.931023+00:00 Debian Oval Importer Affected by VCID-kr21-knq3-aaaf None 36.1.0
2025-06-07T22:19:54.959521+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah None 36.1.0
2025-06-07T17:56:55.871642+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag None 36.1.0
2025-06-07T17:55:21.524544+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah None 36.1.0
2025-06-07T17:44:56.282953+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan None 36.1.0
2025-06-07T15:17:51.941552+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf None 36.1.0
2025-06-07T14:55:52.218397+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad None 36.1.0
2025-06-07T14:15:41.742742+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab None 36.1.0
2025-06-05T14:12:30.066825+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 36.1.0
2025-04-12T21:03:25.725108+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:43:27.580199+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:55:44.962642+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:03:24.559763+00:00 Debian Oval Importer Affected by VCID-kr21-knq3-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:01:13.378003+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:27:32.149086+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:20:22.900252+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:48:50.809203+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:03:32.805378+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:46:46.117344+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:39:29.253419+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:07:31.689264+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:28:00.396503+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:30:00.607502+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:21:43.108890+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T00:26:07.408779+00:00 Debian Oval Importer Affected by VCID-v3v3-16gd-aaas None 36.0.0
2025-04-07T23:15:14.387050+00:00 Debian Oval Importer Affected by VCID-kr21-knq3-aaaf None 36.0.0
2025-04-07T20:51:26.708153+00:00 Debian Oval Importer Affected by VCID-wdyq-k3mq-aaah None 36.0.0
2025-04-07T16:33:48.234560+00:00 Debian Oval Importer Fixing VCID-gex6-76gc-aaag None 36.0.0
2025-04-07T16:32:10.101568+00:00 Debian Oval Importer Affected by VCID-zk2g-37wy-aaah None 36.0.0
2025-04-07T16:21:08.402817+00:00 Debian Oval Importer Affected by VCID-hg6a-nnf7-aaan None 36.0.0
2025-04-07T13:49:21.475250+00:00 Debian Oval Importer Affected by VCID-qccg-re6f-aaaf None 36.0.0
2025-04-07T13:27:50.289875+00:00 Debian Oval Importer Fixing VCID-869c-shsa-aaad None 36.0.0
2025-04-07T12:48:39.145185+00:00 Debian Oval Importer Affected by VCID-xmbp-1n9r-aaab None 36.0.0
2025-04-07T06:47:41.021032+00:00 Debian Importer Fixing VCID-869c-shsa-aaad None 36.0.0
2025-04-05T19:16:32.604256+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 36.0.0
2025-04-05T16:16:51.014697+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 36.0.0
2025-04-05T11:31:05.076180+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 36.0.0
2025-04-05T06:04:50.768203+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 36.0.0
2025-04-04T06:02:30.335026+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 36.0.0
2025-04-04T01:25:05.450602+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 36.0.0
2025-04-04T00:03:58.361107+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 36.0.0
2025-04-03T23:11:33.847894+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 36.0.0
2025-02-21T10:04:21.397276+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 35.1.0
2025-02-20T20:39:06.576479+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 35.1.0
2025-02-20T07:55:23.960797+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 35.1.0
2025-02-20T07:55:20.513980+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 35.1.0
2025-02-20T07:55:15.996528+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 35.1.0
2025-02-20T07:55:11.809089+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 35.1.0
2025-02-19T09:18:59.317647+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 35.1.0
2025-02-19T00:58:48.673099+00:00 Debian Importer Fixing VCID-869c-shsa-aaad None 35.1.0
2025-02-19T00:49:28.977625+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 35.1.0
2024-11-23T01:23:46.600536+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 35.0.0
2024-11-23T01:23:43.131960+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 35.0.0
2024-11-23T01:23:38.709790+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 35.0.0
2024-11-23T01:23:34.410942+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 35.0.0
2024-11-22T06:41:11.159976+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 35.0.0
2024-11-20T05:05:46.375701+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.3.2
2024-10-09T23:54:19.009222+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 34.0.2
2024-10-09T23:54:15.506293+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 34.0.2
2024-10-09T23:54:11.001829+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 34.0.2
2024-10-09T23:54:06.723956+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 34.0.2
2024-10-09T05:52:36.337079+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.0.2
2024-09-19T07:29:28.805967+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 34.0.1
2024-09-19T07:29:25.372477+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 34.0.1
2024-09-19T07:29:21.084464+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 34.0.1
2024-09-19T07:29:16.919250+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 34.0.1
2024-09-18T17:02:03.422865+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.0.1
2024-04-26T02:14:58.490677+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 34.0.0rc4
2024-04-25T14:27:20.887903+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 34.0.0rc4
2024-04-25T05:57:46.552940+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 34.0.0rc4
2024-04-25T05:57:42.896950+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 34.0.0rc4
2024-04-25T05:57:38.785680+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 34.0.0rc4
2024-04-25T05:57:34.647281+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 34.0.0rc4
2024-04-24T15:54:13.815125+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.0.0rc4
2024-04-24T12:14:44.111245+00:00 Debian Importer Fixing VCID-869c-shsa-aaad None 34.0.0rc4
2024-04-24T12:13:05.227329+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 34.0.0rc4
2024-01-12T12:12:55.308525+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 34.0.0rc2
2024-01-11T16:03:30.204832+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 34.0.0rc2
2024-01-11T07:58:48.869439+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 34.0.0rc2
2024-01-11T07:58:44.805047+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 34.0.0rc2
2024-01-11T07:58:40.396361+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 34.0.0rc2
2024-01-11T07:58:36.127617+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 34.0.0rc2
2024-01-10T18:15:02.437147+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.0.0rc2
2024-01-10T14:08:50.338019+00:00 Debian Importer Fixing VCID-869c-shsa-aaad None 34.0.0rc2
2024-01-10T14:06:19.945485+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 34.0.0rc2
2024-01-05T08:12:53.572045+00:00 Debian Importer Affected by VCID-v3v3-16gd-aaas None 34.0.0rc1
2024-01-05T01:25:55.024488+00:00 Debian Importer Affected by VCID-qccg-re6f-aaaf None 34.0.0rc1
2024-01-04T18:24:44.373006+00:00 Debian Importer Affected by VCID-xmbp-1n9r-aaab None 34.0.0rc1
2024-01-04T18:24:40.815174+00:00 Debian Importer Affected by VCID-hg6a-nnf7-aaan None 34.0.0rc1
2024-01-04T18:24:37.024007+00:00 Debian Importer Affected by VCID-wdyq-k3mq-aaah None 34.0.0rc1
2024-01-04T18:24:33.230022+00:00 Debian Importer Affected by VCID-zk2g-37wy-aaah None 34.0.0rc1
2024-01-04T07:46:13.054904+00:00 Debian Importer Affected by VCID-kr21-knq3-aaaf None 34.0.0rc1
2024-01-04T05:12:21.999199+00:00 Debian Importer Fixing VCID-869c-shsa-aaad None 34.0.0rc1
2024-01-04T05:10:54.211199+00:00 Debian Importer Fixing VCID-gex6-76gc-aaag None 34.0.0rc1