libcdio - Debian Package Tracker

general

source: libcdio (main)
version: 2.2.0-4
maintainer: Gabriel F. T. Gomes (DMD)
arch: any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.1.0-2
oldstable: 2.1.0-4
stable: 2.2.0-4
testing: 2.2.0-4
unstable: 2.2.0-4

versioned links

2.1.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.1.0-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.0-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libcdio++-dev
libcdio++1t64
libcdio-dev
libcdio-utils
libcdio19t64
libiso9660++-dev
libiso9660++1
libiso9660-12
libiso9660-dev
libudf-dev
libudf0t64

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2024-36600: Buffer Overflow Vulnerability in libcdio 2.2.0 (fixed in 2.3.0) allows an attacker to execute arbitrary code via a crafted ISO 9660 image file.

Created: 2026-02-28 Last update: 2026-02-28 15:02

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2024-36600: Buffer Overflow Vulnerability in libcdio 2.2.0 (fixed in 2.3.0) allows an attacker to execute arbitrary code via a crafted ISO 9660 image file.

Created: 2026-02-28 Last update: 2026-02-28 15:02

A new upstream version is available: 2.3.0.rc1 high

A new upstream version 2.3.0.rc1 is available, you should consider packaging it.

Created: 2025-12-12 Last update: 2026-02-28 13:18

lintian reports 1 error and 1 warning high

Lintian reports 1 error and 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2025-04-10 Last update: 2026-01-20 18:02

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2024-36600: (needs triaging) Buffer Overflow Vulnerability in libcdio 2.2.0 (fixed in 2.3.0) allows an attacker to execute arbitrary code via a crafted ISO 9660 image file.

You can find information about how to handle this issue in the security team's documentation.

Created: 2026-02-28 Last update: 2026-02-28 15:02

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.7.2).

Created: 2025-12-23 Last update: 2025-12-23 20:00

news

[rss feed]

[2025-04-08] libcdio 2.2.0-4 MIGRATED to testing (Debian testing watch)
[2025-04-03] libcdio 2.2.0-3 MIGRATED to testing (Debian testing watch)
[2025-04-03] Accepted libcdio 2.2.0-4 (source) into unstable (Gabriel F. T. Gomes)
[2025-03-31] Accepted libcdio 2.2.0-3 (source) into unstable (Gabriel F. T. Gomes)
[2025-03-16] Accepted libcdio 2.2.0-2 (source) into unstable (Gabriel F. T. Gomes)
[2025-03-08] Accepted libcdio 2.2.0-1 (source) into unstable (Gabriel F. T. Gomes)
[2025-01-26] Accepted libcdio 2.2.0-1~exp1 (source amd64) into experimental (Debian FTP Masters) (signed by: Gabriel F. T. Gomes)
[2025-01-26] libcdio 2.1.0-5 MIGRATED to testing (Debian testing watch)
[2025-01-19] Accepted libcdio 2.1.0-5 (source) into unstable (Gabriel F. T. Gomes)
[2024-04-25] libcdio 2.1.0-4.2 MIGRATED to testing (Debian testing watch)
[2024-04-12] Accepted libcdio 2.1.0-4.2 (source) into unstable (Sebastian Ramacher)
[2024-02-29] Accepted libcdio 2.1.0-4.1 (source) into unstable (Lukas Märdian)
[2024-01-31] Accepted libcdio 2.1.0-4.1~exp1 (source) into experimental (Steve Langasek)
[2022-10-02] libcdio 2.1.0-4 MIGRATED to testing (Debian testing watch)
[2022-09-27] Accepted libcdio 2.1.0-4 (source) into unstable (Gabriel F. T. Gomes)
[2021-11-08] libcdio 2.1.0-3 MIGRATED to testing (Debian testing watch)
[2021-11-02] Accepted libcdio 2.1.0-3 (source) into unstable (Gabriel F. T. Gomes)
[2021-05-26] Accepted libcdio 2.1.0-2~bpo10+1 (source amd64) into buster-backports->backports-policy, buster-backports (Debian FTP Masters) (signed by: Mattia Rizzolo)
[2020-08-18] libcdio 2.1.0-2 MIGRATED to testing (Debian testing watch)
[2020-08-12] Accepted libcdio 2.1.0-2 (source) into unstable (Gabriel F. T. Gomes)
[2020-07-13] Accepted libcdio 2.1.0-1 (source amd64) into experimental, experimental (Debian FTP Masters) (signed by: Gabriel F. T. Gomes)
[2018-06-20] libcdio 2.0.0-2 MIGRATED to testing (Debian testing watch)
[2018-06-14] Accepted libcdio 2.0.0-2 (source) into unstable (Matthias Klose)
[2018-01-30] Accepted libcdio 2.0.0-1 (source amd64) into experimental, experimental (Matthias Klose)
[2017-12-11] libcdio 1.0.0-2 MIGRATED to testing (Debian testing watch)
[2017-12-06] Accepted libcdio 1.0.0-2 (source) into unstable (Matthias Klose)
[2017-12-05] Accepted libcdio 1.0.0-1 (source amd64) into unstable, unstable (Matthias Klose)
[2017-11-20] libcdio 0.94-1 MIGRATED to testing (Debian testing watch)
[2017-11-14] Accepted libcdio 0.94-1 (source) into unstable (Matthias Klose)
[2017-10-27] Accepted libcdio 0.94-0.2 (source amd64) into experimental, experimental (Matthias Klose)

bugs [bug history graph]

all: 2
RC: 1
I&N: 0
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (1, 1)
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.2.0-4build1
5 bugs