calibre
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | Ebook management application |
| Version | 7.17.0-3 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-650 | 3.18.0-1 | 3.19.0-1 | High | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2018-7889 | AVG-650 | High | Yes | Arbitrary command execution | gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 11 Mar 2018 | ASA-201803-8 | AVG-650 | High | arbitrary command execution |