Debian 11

Debian 11 — pspp — multiple vulnerabilities (18 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — pspp — multiple vulnerabilities (18 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-10791 CVE-2017-10792 CVE-2017-12958 CVE-2017-12959 CVE-2017-12960 CVE-2017-12961 CVE-2018-20230 CVE-2019-9211  +10 more Upstream summary: There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP […]

Read more
Debian 11 — odoo — multiple vulnerabilities (18 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — odoo — multiple vulnerabilities (18 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-15634 CVE-2018-15641 CVE-2019-11782 CVE-2019-11783 CVE-2019-11784 CVE-2021-23166 CVE-2021-23176 CVE-2021-23178  +10 more Upstream summary: Cross-site scripting (XSS) issue in attachment management in Odoo Community 14.0 and earlier and Odoo Enterprise […]

Read more
Debian 11 — node-negotiator — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — node-negotiator — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-10539 Upstream summary: negotiator is an HTTP content negotiator for Node.js and is used by many modules and frameworks including Express and Koa. The header for "Accept-Language", when […]

Read more
Debian 11 — shadowsocks-libev — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — shadowsocks-libev — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2017-15924 CVE-2019-5152 CVE-2019-5163 CVE-2019-5164 Upstream summary: In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing allows command injection via shell metacharacters in a JSON configuration request received via […]

Read more
Debian 11 — python-sql — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — python-sql — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2024-9774 Upstream summary: A vulnerability was found in python-sql where unary operators do not escape non-Expression. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis […]

Read more
Debian 11 — gnome-autoar — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — gnome-autoar — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-36241 CVE-2021-28650 Upstream summary: autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a […]

Read more
Debian 11 — pgpdump — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — pgpdump — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2016-4021 Upstream summary: The read_binary function in buffer.c in pgpdump before 0.30 allows context-dependent attackers to cause a denial of service (infinite loop and CPU consumption) via crafted […]

Read more
Debian 11 — sane-backends — multiple vulnerabilities (16 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — sane-backends — multiple vulnerabilities (16 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2003-0773 CVE-2003-0774 CVE-2003-0775 CVE-2003-0776 CVE-2003-0777 CVE-2003-0778 CVE-2017-6318 CVE-2020-12861  +8 more Upstream summary: saned in sane-backends 1.0.7 and earlier does not check the IP address of the connecting host […]

Read more
Debian 11 — ruby-sanitize — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — ruby-sanitize — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-3740 CVE-2020-4054 CVE-2023-23627 CVE-2023-36823 Upstream summary: A specially crafted HTML fragment can cause Sanitize gem for Ruby to allow non-whitelisted attributes to be used on a whitelisted HTML […]

Read more
CHAT