There is 1 open security issue in bullseye.
1 issue left for the package maintainer to handle:
(postponed; to be fixed through a stable update)
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ XML parser to wait in an infinite loop, which may sometimes consume system resources for prolonged duration. This vulnerability is present within XercesJ version 2.12.1 and the previous versions.
You can find information about how to handle this issue in the security team's documentation.