Register | Log in

gdown

Google Drive public file downloader

Choose email to subscribe with

general

source: gdown (main)
version: 6.0.0+dfsg-1
maintainer: Debian Python Team (DMD)
uploaders: Edward Betts [DMD]
arch: all
std-ver: 4.7.4
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

stable: 5.2.0+dfsg-2
testing: 6.0.0+dfsg-1
unstable: 6.0.0+dfsg-1

versioned links

5.2.0+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.0.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

gdown

action needed

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2025-01-11 Last update: 2026-01-22 10:30

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2026-40491: (needs triaging) gdown is a Google Drive public file/folder downloader. Versions prior to 5.2.2 are vulnerable to a Path Traversal attack within the extractall functionality. When extracting a maliciously crafted ZIP or TAR archive, the library fails to sanitize or validate the filenames of the archive members. This allow files to be written outside the intended destination directory, potentially leading to arbitrary file overwrite and Remote Code Execution (RCE). Version 5.2.2 contains a fix.

You can find information about how to handle this issue in the security team's documentation.

Created: 2026-04-18 Last update: 2026-04-28 19:02

news

[2026-04-26] gdown 6.0.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-04-20] Accepted gdown 6.0.0+dfsg-1 (source) into unstable (Edward Betts)
[2026-01-20] gdown 5.2.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-01-14] Accepted gdown 5.2.1+dfsg-1 (source) into unstable (Edward Betts)
[2025-01-16] gdown 5.2.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-01-10] Accepted gdown 5.2.0+dfsg-2 (source) into unstable (Edward Betts)
[2025-01-10] Accepted gdown 5.2.0+dfsg-1 (source all) into unstable (Debian FTP Masters) (signed by: Edward Betts)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 1)
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 5.2.1+dfsg-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing