Debian Security Advisory
DSA-4974-1 nextcloud-desktop -- security update
- Date Reported:
- 19 Sep 2021
- Affected Packages:
- Security database references:
- In the Debian bugtracking system: Bug 989846.
In Mitre's CVE dictionary: CVE-2021-22895, CVE-2021-32728.
- More information:
Two vulnerabilities were discovered in the Nextcloud desktop client, which could result in information disclosure.
For the oldstable distribution (buster), these problems have been fixed in version 2.5.1-3+deb10u2.
For the stable distribution (bullseye), these problems have been fixed in version 3.1.1-2+deb11u1.
We recommend that you upgrade your nextcloud-desktop packages.
For the detailed security status of nextcloud-desktop please refer to its security tracker page at: https://security-tracker.debian.org/tracker/nextcloud-desktop