Debian 11

Debian 11 — foomatic-filters — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — foomatic-filters — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2004-0801 CVE-2010-5325 CVE-2011-2697 CVE-2011-2923 CVE-2011-2924 CVE-2011-2964 CVE-2015-8327 CVE-2015-8560 Upstream summary: Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS […]

Read more
Debian 11 — libdbi-perl — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — libdbi-perl — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2005-0077 CVE-2013-7490 CVE-2013-7491 CVE-2014-10401 CVE-2014-10402 CVE-2019-20919 CVE-2020-14392 CVE-2020-14393 Upstream summary: The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on […]

Read more
Debian 11 — zoph — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — zoph — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-0402 CVE-2007-3905 CVE-2008-3258 CVE-2008-6837 CVE-2008-6838 CVE-2009-2343 CVE-2014-9235 CVE-2014-9236 Upstream summary: SQL injection vulnerability in Zoph before 0.5pre1 allows remote attackers to execute arbitrary SQL commands. Table of contents […]

Read more
Debian 11 — fai — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — fai — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2006-6614 Upstream summary: The save_log_local function in Fully Automatic Installation (FAI) 2.10.1, and possibly 3.1.2, when verbose mode is enabled, stores the root password hash in /var/log/fai/current/fai.log, whose […]

Read more
Debian 11 — sqliteodbc — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — sqliteodbc — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-12050 Upstream summary: SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.9996-4, has a race condition leading to root privilege escalation because any user can replace a […]

Read more
Debian 11 — civetweb — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — civetweb — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-27304 CVE-2025-55763 CVE-2025-9648 Upstream summary: The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based […]

Read more
Debian 11 — velocity — vulnerability — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — velocity — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-13936 Upstream summary: An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the […]

Read more
Debian 11 — libuv1 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — libuv1 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-8252 CVE-2021-22918 CVE-2024-24806 Upstream summary: The implementation of realpath in libuv < 10.22.1, < 12.18.4, and < 14.9.0 used within Node.js incorrectly determined the buffer size which can […]

Read more
Debian 11 — civicrm — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — civicrm — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2018-1999022 CVE-2020-36388 CVE-2020-36389 CVE-2021-21252 CVE-2023-25440 CVE-2023-28115 CVE-2025-3573 CVE-2025-65187 Upstream summary: PEAR HTML_QuickForm version 3.2.14 contains an eval injection (CWE-95) vulnerability in HTML_QuickForm's getSubmitValue method, HTML_QuickForm's validate method, HTML_QuickForm_hierselect's […]

Read more
Debian 11 — node-elliptic — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on Debian 11

Debian 11 — node-elliptic — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read  •  Source: Debian Security Tracker Related CVEs: CVE-2020-13822 CVE-2020-28498 CVE-2024-42459 CVE-2024-42460 CVE-2024-42461 CVE-2024-48948 CVE-2024-48949 CVE-2025-14505 Upstream summary: The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleability via variations in encoding, leading '\0' bytes, or […]

Read more
CHAT