There are 3 open security issues in bullseye.
3 issues left for the package maintainer to handle:
- CVE-2021-42612:
(needs triaging)
A use after free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have other unspecified impact via a crafted text document.
- CVE-2021-42613:
(needs triaging)
A double free in cleanup_index in index.c in Halibut 1.2 allows an attacker to cause a denial of service or possibly have other unspecified impact via a crafted text document.
- CVE-2021-42614:
(needs triaging)
A use after free in info_width_internal in bk_info.c in Halibut 1.2 allows an attacker to cause a segmentation fault or possibly have unspecified other impact via a crafted text document.
You can find information about how to handle these issues in the security team's documentation.