Debian 11

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2014-1745 CVE-2015-7096 CVE-2015-7098 CVE-2016-4590 CVE-2016-4591 CVE-2016-4622 CVE-2016-4624 CVE-2016-4692  +12 more Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0455 CVE-2004-0827 CVE-2004-0981 CVE-2005-0005 CVE-2005-0397 CVE-2005-0406 CVE-2005-0759 CVE-2005-0760  +12 more Upstream summary: The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-4330 CVE-2016-4331 CVE-2016-4332 CVE-2016-4333 CVE-2017-17505 CVE-2017-17506 CVE-2017-17507 CVE-2017-17508  +12 more Upstream summary: In the HDF5 1.8.16 library's failure to check if the number of dimensions for an array […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-0745 CVE-2006-1526 CVE-2006-4447 CVE-2006-6101 CVE-2006-6102 CVE-2006-6103 CVE-2007-1003 CVE-2007-2437  +12 more Upstream summary: X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2005-2097 CVE-2005-3191 CVE-2005-3192 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627  +12 more Upstream summary: xpdf and kpdf do not properly validate the "loca" table in PDF files, which allows local […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-15586 CVE-2020-16845 CVE-2020-24553 CVE-2020-28362 CVE-2020-28366 CVE-2020-28367 CVE-2020-29509 CVE-2020-29510  +12 more Upstream summary: Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-0981 CVE-2005-0397 CVE-2005-4601 CVE-2006-3743 CVE-2006-3744 CVE-2006-4144 CVE-2006-5456 CVE-2007-0770  +12 more Upstream summary: Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2007-0404 CVE-2007-0405 CVE-2007-5712 CVE-2007-5828 CVE-2008-2302 CVE-2008-3909 CVE-2009-2659 CVE-2009-3695  +12 more Upstream summary: bin/compile-messages.py in Django 0.95 does not quote argument strings before invoking the msgfmt program through the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2002-1477 CVE-2002-1478 CVE-2002-1479 CVE-2004-1736 CVE-2004-1737 CVE-2005-10004 CVE-2005-1524 CVE-2005-1525  +12 more Upstream summary: graphs.php in Cacti before 0.6.8 allows remote authenticated Cacti administrators to execute arbitrary commands via shell […]