UbuntuUpdates.org

Bugs fixes in "calibre"

Origin Bug number Title Date fixed
CVE CVE-2018-7889 gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code 2018-04-13
CVE CVE-2016-10187 The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. 2018-04-13
Launchpad 1758699 [CVE] JavaScript in a book can access local files using XMLHttpRequest 2018-04-13
CVE CVE-2018-7889 gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code 2018-04-13
CVE CVE-2016-10187 The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. 2018-04-13
Launchpad 1758699 [CVE] JavaScript in a book can access local files using XMLHttpRequest 2018-04-13
CVE CVE-2018-7889 gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code 2018-04-12
CVE CVE-2016-10187 The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. 2018-04-12
Launchpad 1758699 [CVE] JavaScript in a book can access local files using XMLHttpRequest 2018-04-12
CVE CVE-2018-7889 gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code 2018-04-12
CVE CVE-2016-10187 The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. 2018-04-12
Launchpad 1758699 [CVE] JavaScript in a book can access local files using XMLHttpRequest 2018-04-12
Debian 808198 markdown-calibre: ImportError: No module named markdown.__main__ - Debian Bug report logs 2016-04-05
Launchpad 1282898 Broken Edit Metadata in Bulk commits 1.25.0 2015-09-09
Launchpad 1282898 Broken Edit Metadata in Bulk commits 1.25.0 2015-08-26
Launchpad 922368 calibre crashed with SIGSEGV in createClassType() 2012-01-31
Debian 640026 insecure plugin updater - Debian Bug report logs 2012-01-07
Debian 654751 new upstream version available - Debian Bug report logs 2012-01-07
Debian 649558 calibre: python-cssutils upgrade - Debian Bug report logs 2011-12-20
Debian 646674 calibre: please install manual pages in a way man can find - Debian Bug report logs 2011-12-20



About   -   Send Feedback to @ubuntu_updates