Search for packages
| purl | pkg:deb/debian/bacula@1.38.11-8 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-5m5g-vu3k-aaah
Aliases: CVE-2020-11061 |
In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. Disabling verify jobs mitigates the problem. This issue is also patched in Bareos versions 19.2.8, 18.2.9 and 17.2.10. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
|
VCID-8k5m-7eeq-aaac
Aliases: CVE-2007-5626 |
make_catalog_backup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffing the network. |
Affected by 2 other vulnerabilities. |
|
VCID-a6sf-ufkr-aaas
Aliases: CVE-2008-5373 |
mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mtx.##### temporary file, probably a related issue to CVE-2005-2995. |
Affected by 3 other vulnerabilities. |
|
VCID-ased-nxvr-aaaq
Aliases: CVE-2012-4430 |
The dump_resource function in dird/dird_conf.c in Bacula before 5.2.11 does not properly enforce ACL rules, which allows remote authenticated users to obtain resource dump information via unspecified vectors. |
Affected by 1 other vulnerability. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-ndxs-4ceg-aaah | bacula 1.36.3 and earlier allows local users to modify or read sensitive files via symlink attacks on (1) the temporary file used by autoconf/randpass when openssl is not available, or (2) the mtx.[PID] temporary file in mtx-changer.in. |
CVE-2005-2995
|
| VCID-un1q-y2x6-aaas | zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file. |
CVE-2005-2096
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T18:00:46.680632+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T16:56:13.585477+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:52:47.535682+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:24:41.828695+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:40:58.654839+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:08:51.146441+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T00:03:00.896657+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | None | 36.1.3 |
| 2025-06-20T23:44:58.087508+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | None | 36.1.3 |
| 2025-06-20T23:04:31.162821+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | None | 36.1.3 |
| 2025-06-20T22:24:35.185584+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.1.3 |
| 2025-06-20T21:58:17.509913+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | None | 36.1.3 |
| 2025-06-20T21:40:33.140782+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | None | 36.1.3 |
| 2025-06-08T12:46:03.903570+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T12:25:11.972970+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:53:25.981898+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:32:28.985696+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T09:41:21.920760+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:46:07.844426+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:19:13.086306+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:35:13.430100+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:03:41.426322+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T17:25:49.032515+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | None | 36.1.0 |
| 2025-06-07T17:07:51.326190+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | None | 36.1.0 |
| 2025-06-07T16:27:45.541148+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | None | 36.1.0 |
| 2025-06-07T15:48:49.801991+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.1.0 |
| 2025-06-07T15:21:44.608701+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | None | 36.1.0 |
| 2025-06-07T15:03:21.256179+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | None | 36.1.0 |
| 2025-04-12T20:42:00.230289+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:38:06.620427+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T20:30:44.169412+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:32:57.885614+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:11:20.295158+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:38:31.700905+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:13:49.445341+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T08:13:45.019330+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T07:17:39.641127+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:50:35.453438+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:07:32.011281+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:35:40.987195+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T16:00:08.684991+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | None | 36.0.0 |
| 2025-04-07T15:41:22.311081+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | None | 36.0.0 |
| 2025-04-07T14:59:36.796873+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | None | 36.0.0 |
| 2025-04-07T14:19:38.037584+00:00 | Debian Oval Importer | Affected by | VCID-5m5g-vu3k-aaah | None | 36.0.0 |
| 2025-04-07T13:53:07.922672+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | None | 36.0.0 |
| 2025-04-07T13:35:12.219159+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | None | 36.0.0 |
| 2024-11-29T07:02:42.005818+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-26T21:39:38.206255+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-26T08:58:58.757795+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-25T10:48:46.356185+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-11-25T08:56:30.145598+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 35.0.0 |
| 2024-10-14T13:26:40.646491+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T20:57:53.551280+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-12T12:35:30.767200+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-11T21:58:53.129855+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-10-11T20:45:19.487049+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.2 |
| 2024-09-21T09:55:29.079562+00:00 | Debian Oval Importer | Affected by | VCID-ased-nxvr-aaaq | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T17:35:23.040575+00:00 | Debian Oval Importer | Affected by | VCID-a6sf-ufkr-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T14:54:13.245824+00:00 | Debian Oval Importer | Affected by | VCID-8k5m-7eeq-aaac | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T11:15:16.293660+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-09-20T11:02:03.672289+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.1 |
| 2024-02-04T23:24:18.488732+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc2 |
| 2024-02-04T23:24:17.719131+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-02-04T23:03:38.553272+00:00 | Debian Oval Importer | Fixing | VCID-ndxs-4ceg-aaah | None | 34.0.0rc2 |
| 2024-02-02T21:05:25.161723+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 34.0.0rc2 |
| 2024-02-02T21:05:15.793546+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 34.0.0rc2 |
| 2024-02-02T17:12:56.208791+00:00 | Debian Oval Importer | Fixing | VCID-un1q-y2x6-aaas | None | 34.0.0rc2 |