CVEs
TW edited this page Aug 15, 2018
·
6 revisions
You can find out about the CVEs assigned to borg in the changelogs:
- https://github.com/borgbackup/borg/blob/1.0-maint/docs/changes.rst
- https://github.com/borgbackup/borg/blob/1.1-maint/docs/changes.rst
- https://github.com/borgbackup/borg/blob/master/docs/changes.rst
Additionally, there were these CVEs which are not in the logs as they did not affect any borg release:
- Vulnerable
-
No Borg releases were affected.
- Fixed in
-
Borg
- Important Note
-
n/a
- Mitre
-
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4082
- Description
-
An attacker with write access to a backup store can cause future backups to be uploaded without encryption.