Search for packages
Package details: pkg:deb/debian/bacula@2.4.4-1
purl pkg:deb/debian/bacula@2.4.4-1
Next non-vulnerable version 9.6.7-3
Latest non-vulnerable version 9.6.7-3
Risk 3.4
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-5m5g-vu3k-aaah
Aliases:
CVE-2020-11061
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10.
9.4.2-2+deb10u1
Affected by 1 other vulnerability.
9.6.7-3
Affected by 0 other vulnerabilities.
VCID-8k5m-7eeq-aaac
Aliases:
CVE-2007-5626
make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffing the network.
5.0.2-2.2+squeeze1
Affected by 2 other vulnerabilities.
VCID-ased-nxvr-aaaq
Aliases:
CVE-2012-4430
The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.
5.2.6+dfsg-9
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-a6sf-ufkr-aaas mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mtx.##### temporary file, probably a related issue to CVE-2005-2995. CVE-2008-5373

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:00:46.683310+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:56:13.587663+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:24:41.830460+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:40:58.657329+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-20T23:44:58.089678+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.1.3
2025-06-20T22:24:35.187612+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.1.3
2025-06-20T21:58:17.512170+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.1.3
2025-06-20T21:40:33.143158+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas None 36.1.3
2025-06-08T12:46:03.905412+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:25:11.974745+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:53:25.984039+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:32:28.987229+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:41:21.922542+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:19:13.088149+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:35:13.431922+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T17:07:51.327751+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.1.0
2025-06-07T15:48:49.804124+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.1.0
2025-06-07T15:21:44.610636+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.1.0
2025-06-07T15:03:21.266332+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas None 36.1.0
2025-04-12T20:30:44.174153+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:32:57.890495+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:11:20.300193+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:38:31.705886+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:13:49.450206+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:13:45.024328+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:50:35.458234+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:07:32.016432+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T15:41:22.315811+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.0.0
2025-04-07T14:19:38.043229+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.0.0
2025-04-07T13:53:07.927745+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.0.0
2025-04-07T13:35:12.223763+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas None 36.0.0
2024-11-29T07:02:42.010761+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-26T21:39:38.212342+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-26T08:58:58.762762+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-14T13:26:40.652149+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T20:57:53.556151+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T12:35:30.772281+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-21T09:55:29.084975+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T17:35:23.046510+00:00 Debian Oval Importer Fixing VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T14:54:13.253300+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1