Debian 11 — xloadimage — multiple vulnerabilities (4 CVEs) — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2005-0638 CVE-2005-0639 CVE-2005-3178 CVE-2006-4484 Upstream summary: xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which […]