There are 2 open security issues in bullseye.
2 issues left for the package maintainer to handle:
- CVE-2021-42248:
(needs triaging)
GJSON <= 1.9.2 allows attackers to cause a redos via crafted JSON input.
- CVE-2021-42836:
(needs triaging)
GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack.
You can find information about how to handle these issues in the security team's documentation.