Search for packages
| purl | pkg:deb/debian/bacula@5.2.6%2Bdfsg-9 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5m5g-vu3k-aaah
Aliases: CVE-2020-11061 |
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ased-nxvr-aaaq | The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors. |
CVE-2012-4430
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T16:56:13.593173+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:40:58.663986+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-20T23:44:58.096102+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | None | 36.1.3 |
| 2025-06-20T22:24:35.193662+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.1.3 |
| 2025-06-08T12:25:11.979864+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T09:41:21.927865+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:35:13.437353+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T17:07:51.332263+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | None | 36.1.0 |
| 2025-06-07T15:48:49.808891+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.1.0 |
| 2025-04-12T20:30:44.188671+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:11:20.315116+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-08T08:13:45.039015+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:07:32.031372+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T15:41:22.330716+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | None | 36.0.0 |
| 2025-04-07T14:19:38.059402+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.0.0 |
| 2024-11-29T07:02:42.026037+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T13:26:40.666772+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T09:55:29.103950+00:00 | Debian Oval Importer | Fixing | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |