Search for packages
Package details: pkg:deb/debian/bacula@1.36.2-2sarge1
purl pkg:deb/debian/bacula@1.36.2-2sarge1
Next non-vulnerable version 9.6.7-3
Latest non-vulnerable version 9.6.7-3
Risk 4.0
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-5m5g-vu3k-aaah
Aliases:
CVE-2020-11061
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10.
9.4.2-2+deb10u1
Affected by 1 other vulnerability.
9.6.7-3
Affected by 0 other vulnerabilities.
VCID-8k5m-7eeq-aaac
Aliases:
CVE-2007-5626
make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffing the network.
5.0.2-2.2+squeeze1
Affected by 2 other vulnerabilities.
VCID-a6sf-ufkr-aaas
Aliases:
CVE-2008-5373
mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mtx.##### temporary file, probably a related issue to CVE-2005-2995.
2.4.4-1
Affected by 3 other vulnerabilities.
VCID-ased-nxvr-aaaq
Aliases:
CVE-2012-4430
The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors.
5.2.6+dfsg-9
Affected by 1 other vulnerability.
VCID-ndxs-4ceg-aaah
Aliases:
CVE-2005-2995
bacula 1.36.3 and earlier allows local users to modify or read sensitive files via symlink attacks on (1) the temporary file used by autoconf/randpass when openssl is not available, or (2) the mtx.[PID] temporary file in mtx-changer.in.
1.38.11-8
Affected by 4 other vulnerabilities.
VCID-un1q-y2x6-aaas
Aliases:
CVE-2005-2096
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.
1.38.11-8
Affected by 4 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T18:00:46.678280+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T16:56:13.583549+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:52:47.533490+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:24:41.826720+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:40:58.652342+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:08:51.143745+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T00:03:00.894579+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas None 36.1.3
2025-06-20T23:44:58.085116+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.1.3
2025-06-20T23:04:31.161130+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah None 36.1.3
2025-06-20T22:24:35.183512+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.1.3
2025-06-20T21:58:17.507550+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.1.3
2025-06-20T21:40:33.138244+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas None 36.1.3
2025-06-08T12:46:03.901663+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T12:25:11.970717+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:53:25.980223+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:32:28.984061+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T09:41:21.918888+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:46:07.842472+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:19:13.084401+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:35:13.428220+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:03:41.424328+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T17:25:49.030608+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas None 36.1.0
2025-06-07T17:07:51.324533+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.1.0
2025-06-07T16:27:45.539064+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah None 36.1.0
2025-06-07T15:48:49.800296+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.1.0
2025-06-07T15:21:44.607040+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.1.0
2025-06-07T15:03:21.254371+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas None 36.1.0
2025-04-12T20:42:00.225781+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:38:06.615399+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T20:30:44.164881+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:32:57.880574+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:11:20.290144+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:38:31.696308+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:13:49.440384+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T08:13:45.014412+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T07:17:39.635830+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:50:35.449000+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:07:32.006366+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:35:40.981999+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T16:00:08.679993+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas None 36.0.0
2025-04-07T15:41:22.306669+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq None 36.0.0
2025-04-07T14:59:36.791767+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah None 36.0.0
2025-04-07T14:19:38.032060+00:00 Debian Oval Importer Affected by VCID-5m5g-vu3k-aaah None 36.0.0
2025-04-07T13:53:07.917754+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac None 36.0.0
2025-04-07T13:35:12.214666+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas None 36.0.0
2024-11-29T07:02:42.001316+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-26T21:39:38.201065+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-26T08:58:58.752836+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-25T10:48:46.351556+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-11-25T08:56:30.140034+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 35.0.0
2024-10-14T13:26:40.641081+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T20:57:53.546262+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-12T12:35:30.762166+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-11T21:58:53.124713+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-10-11T20:45:19.482019+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.2
2024-09-21T09:55:29.074723+00:00 Debian Oval Importer Affected by VCID-ased-nxvr-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T17:35:23.035018+00:00 Debian Oval Importer Affected by VCID-a6sf-ufkr-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T14:54:13.241108+00:00 Debian Oval Importer Affected by VCID-8k5m-7eeq-aaac https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T11:15:16.289263+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-09-20T11:02:03.667262+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.1
2024-02-04T23:24:18.484618+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-04T23:24:17.714989+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 34.0.0rc2
2024-02-04T23:03:38.549097+00:00 Debian Oval Importer Affected by VCID-ndxs-4ceg-aaah None 34.0.0rc2
2024-02-02T21:05:25.157550+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 34.0.0rc2
2024-02-02T21:05:15.789241+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 34.0.0rc2
2024-02-02T17:12:56.204724+00:00 Debian Oval Importer Affected by VCID-un1q-y2x6-aaas None 34.0.0rc2