There is 1 open security issue in bullseye.
commit 3573ca0eecc56ce75d5db24bab41c2fc423bf3ea Author: Geert Stappers <email@example.com> Date: Mon Apr 5 22:42:24 2021 +0200 Chomp file ends Removed empty lines from end of src/*.[ch] files. If the new last line became '#endif' was the condition of the '#if' added. commit ad90eb075dfeeb1936e8bc0f323fcc23f89364d4 Author: Simon Kelley <firstname.lastname@example.org> Date: Fri Apr 9 16:08:05 2021 +0100 Fix bug in TCP process handling. Fix bug which caused dnsmasq to lose track of processes forked to handle TCP DNS connections under heavy load. The code checked that at least one free process table slot was available before listening on TCP sockets, but didn't take into account that more than one TCP connection could arrive, so that check was not sufficient to ensure that there would be slots for all new processes. It compounded this error by silently failing to store the process when it did run out of slots. Even when this bug is triggered, all the right things happen, and answers are still returned. Only under very exceptional circumstances, does the bug manifest itself: see https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2021q2/014976.html Thanks to Tijs Van Buggenhout for finding the conditions under which the bug manifests itself, and then working out exactly what was going on. commit d55e2d086d1ff30c427fa5e0ecc79746de8a81b7 Author: Simon Kelley <email@example.com> Date: Fri Apr 9 15:19:28 2021 +0100 Handle DHCPREBIND requests in the DHCPv6 server. Patch by srk, based on submitted patch from firstname.lastname@example.org commit fe9c966a493dc6726d6b484f22d58cf8f5167a18 Author: Simon Kelley <email@example.com> Date: Thu Apr 8 22:41:46 2021 +0100 Fix debian/changelog format problem.
There are 2 open security issues in buster.
You can find information about how to handle these issues in the security team's documentation.