Search for packages
| purl | pkg:deb/debian/epiphany-browser@3.38.2-1%2Bdeb11u3 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-mqdb-bsdk-vqfc
Aliases: CVE-2025-3839 |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
|
VCID-v3v3-16gd-aaas
Aliases: CVE-2023-26081 |
In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-hg6a-nnf7-aaan | XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 when View Source mode or Reader mode is used, as demonstrated by a a page title. |
CVE-2021-45087
|
| VCID-kr21-knq3-aaaf | A vulnerability was found in GNOME gvdb. It has been classified as critical. This affects the function gvdb_table_write_contents_async of the file gvdb-builder.c. The manipulation leads to use after free. It is possible to initiate the attack remotely. The name of the patch is d83587b2a364eb9a9a53be7e6a708074e252de14. It is recommended to apply a patch to fix this issue. The identifier VDB-216789 was assigned to this vulnerability. |
CVE-2019-25085
|
| VCID-qccg-re6f-aaaf | In GNOME Epiphany before 41.4 and 42.x before 42.2, an HTML document can trigger a client buffer overflow (in ephy_string_shorten in the UI process) via a long page title. The issue occurs because the number of bytes for a UTF-8 ellipsis character is not properly considered. |
CVE-2022-29536
|
| VCID-v3v3-16gd-aaas | In Epiphany (aka GNOME Web) through 43.0, untrusted web content can trick users into exfiltrating passwords, because autofill occurs in sandboxed contexts. |
CVE-2023-26081
|
| VCID-wdyq-k3mq-aaah | XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 because a server's suggested_filename is used as the pdf_name value in PDF.js. |
CVE-2021-45086
|
| VCID-xmbp-1n9r-aaab | XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an error page. |
CVE-2021-45088
|
| VCID-zk2g-37wy-aaah | XSS can occur in GNOME Web (aka Epiphany) before 40.4 and 41.x before 41.1 via an about: page, as demonstrated by ephy-about:overview when a user visits an XSS payload page often enough to place that page on the Most Visited list. |
CVE-2021-45085
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T23:54:04.186122+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 36.1.3 |
| 2025-06-21T20:07:18.428130+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 36.1.3 |
| 2025-06-21T19:13:55.490949+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T19:06:46.932161+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T16:28:53.906802+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:21:30.980761+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:41:57.919662+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T14:59:13.573247+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 36.1.3 |
| 2025-06-21T11:43:15.179145+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T11:30:04.563961+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T08:48:50.083261+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 36.1.3 |
| 2025-06-21T08:13:10.876270+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | None | 36.1.3 |
| 2025-06-21T07:03:12.770466+00:00 | Debian Oval Importer | Fixing | VCID-kr21-knq3-aaaf | None | 36.1.3 |
| 2025-06-21T05:25:00.373310+00:00 | Debian Importer | Affected by | VCID-mqdb-bsdk-vqfc | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-21T04:42:58.773097+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.1.3 |
| 2025-06-21T00:32:42.993130+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | None | 36.1.3 |
| 2025-06-21T00:22:02.791271+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 36.1.3 |
| 2025-06-21T00:01:46.536373+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 36.1.3 |
| 2025-06-20T22:45:58.238868+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 36.1.3 |
| 2025-06-20T21:54:28.865704+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | None | 36.1.3 |
| 2025-06-20T21:26:27.010645+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 36.1.3 |
| 2025-06-20T20:43:48.627800+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 36.1.3 |
| 2025-06-20T20:18:29.950542+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.1.3 |
| 2025-06-08T13:08:06.920755+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:17:35.053851+00:00 | Debian Oval Importer | Fixing | VCID-kr21-knq3-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:15:28.873764+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:42:44.015133+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:35:52.372734+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:14:46.573029+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:07:40.506394+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:36:04.923901+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:59:01.473623+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T04:50:34.289318+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T01:54:28.861292+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | None | 36.1.0 |
| 2025-06-08T00:42:56.933533+00:00 | Debian Oval Importer | Fixing | VCID-kr21-knq3-aaaf | None | 36.1.0 |
| 2025-06-07T22:19:54.961374+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.1.0 |
| 2025-06-07T17:55:21.526256+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | None | 36.1.0 |
| 2025-06-07T17:44:56.284465+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 36.1.0 |
| 2025-06-07T15:17:51.943117+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | None | 36.1.0 |
| 2025-06-07T14:15:41.745128+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 36.1.0 |
| 2025-06-05T14:12:30.069482+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.1.0 |
| 2025-04-23T12:47:31.169220+00:00 | Debian Importer | Affected by | VCID-mqdb-bsdk-vqfc | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-12T21:03:25.730105+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:55:44.967560+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:03:24.564324+00:00 | Debian Oval Importer | Fixing | VCID-kr21-knq3-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:01:13.383013+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:27:32.154417+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:20:22.905215+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T07:46:46.122203+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:39:29.258237+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:07:31.694139+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:30:00.613030+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:21:43.113952+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T00:26:07.414341+00:00 | Debian Oval Importer | Fixing | VCID-v3v3-16gd-aaas | None | 36.0.0 |
| 2025-04-07T23:15:14.391887+00:00 | Debian Oval Importer | Fixing | VCID-kr21-knq3-aaaf | None | 36.0.0 |
| 2025-04-07T20:51:26.714900+00:00 | Debian Oval Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.0.0 |
| 2025-04-07T16:32:10.106525+00:00 | Debian Oval Importer | Fixing | VCID-zk2g-37wy-aaah | None | 36.0.0 |
| 2025-04-07T16:21:08.407682+00:00 | Debian Oval Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 36.0.0 |
| 2025-04-07T13:49:21.480426+00:00 | Debian Oval Importer | Fixing | VCID-qccg-re6f-aaaf | None | 36.0.0 |
| 2025-04-07T12:48:39.150111+00:00 | Debian Oval Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 36.0.0 |
| 2025-04-05T19:16:32.608614+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 36.0.0 |
| 2025-04-05T16:16:51.019705+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 36.0.0 |
| 2025-04-05T11:31:05.080769+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 36.0.0 |
| 2025-04-05T06:04:50.774078+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 36.0.0 |
| 2025-04-04T02:43:21.705987+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 36.0.0 |
| 2025-04-04T01:25:05.455179+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 36.0.0 |
| 2025-04-04T00:03:58.366517+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 36.0.0 |
| 2025-04-03T23:11:33.852588+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 36.0.0 |
| 2025-02-21T10:04:15.924592+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 35.1.0 |
| 2025-02-21T10:04:15.227653+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 35.1.0 |
| 2025-02-20T20:39:06.581588+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 35.1.0 |
| 2025-02-20T07:55:23.965741+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 35.1.0 |
| 2025-02-20T07:55:20.519523+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 35.1.0 |
| 2025-02-20T07:55:16.002229+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 35.1.0 |
| 2025-02-20T07:55:11.814114+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 35.1.0 |
| 2025-02-19T09:18:59.322770+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 35.1.0 |
| 2024-11-23T23:44:25.769530+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-23T01:23:46.605461+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 35.0.0 |
| 2024-11-23T01:23:43.137150+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 35.0.0 |
| 2024-11-23T01:23:38.715514+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 35.0.0 |
| 2024-11-23T01:23:34.417935+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 35.0.0 |
| 2024-11-22T06:41:11.165322+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 35.0.0 |
| 2024-11-20T05:05:46.380362+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.3.2 |
| 2024-10-10T21:19:57.919866+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-09T23:54:19.013462+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 34.0.2 |
| 2024-10-09T23:54:15.511837+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 34.0.2 |
| 2024-10-09T23:54:11.006395+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 34.0.2 |
| 2024-10-09T23:54:06.735002+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 34.0.2 |
| 2024-10-09T05:52:36.342940+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.0.2 |
| 2024-09-20T02:20:32.296148+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-19T07:29:28.810788+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 34.0.1 |
| 2024-09-19T07:29:25.377604+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 34.0.1 |
| 2024-09-19T07:29:21.089622+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 34.0.1 |
| 2024-09-19T07:29:16.924420+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 34.0.1 |
| 2024-09-18T17:02:03.427466+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.0.1 |
| 2024-04-26T02:14:56.906199+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |
| 2024-04-26T02:14:56.035051+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 34.0.0rc4 |
| 2024-04-25T14:27:20.892536+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 34.0.0rc4 |
| 2024-04-25T05:57:46.557653+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 34.0.0rc4 |
| 2024-04-25T05:57:42.901299+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 34.0.0rc4 |
| 2024-04-25T05:57:38.789891+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 34.0.0rc4 |
| 2024-04-25T05:57:34.652218+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 34.0.0rc4 |
| 2024-04-24T15:54:13.820768+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.0.0rc4 |
| 2024-01-12T12:13:00.077652+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc2 |
| 2024-01-12T12:12:53.548796+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 34.0.0rc2 |
| 2024-01-11T16:03:30.210030+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 34.0.0rc2 |
| 2024-01-11T07:58:48.874334+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 34.0.0rc2 |
| 2024-01-11T07:58:44.809245+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 34.0.0rc2 |
| 2024-01-11T07:58:40.400548+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 34.0.0rc2 |
| 2024-01-11T07:58:36.132796+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 34.0.0rc2 |
| 2024-01-10T18:15:02.443072+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.0.0rc2 |
| 2024-01-05T08:12:59.072028+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc1 |
| 2024-01-05T08:12:51.907812+00:00 | Debian Importer | Affected by | VCID-v3v3-16gd-aaas | None | 34.0.0rc1 |
| 2024-01-05T01:25:55.028576+00:00 | Debian Importer | Fixing | VCID-qccg-re6f-aaaf | None | 34.0.0rc1 |
| 2024-01-04T18:24:44.377115+00:00 | Debian Importer | Fixing | VCID-xmbp-1n9r-aaab | None | 34.0.0rc1 |
| 2024-01-04T18:24:40.820358+00:00 | Debian Importer | Fixing | VCID-hg6a-nnf7-aaan | None | 34.0.0rc1 |
| 2024-01-04T18:24:37.028828+00:00 | Debian Importer | Fixing | VCID-wdyq-k3mq-aaah | None | 34.0.0rc1 |
| 2024-01-04T18:24:33.234114+00:00 | Debian Importer | Fixing | VCID-zk2g-37wy-aaah | None | 34.0.0rc1 |
| 2024-01-04T07:46:13.059028+00:00 | Debian Importer | Fixing | VCID-kr21-knq3-aaaf | None | 34.0.0rc1 |