There is 1 open security issue in buster.
1 issue left for the package maintainer to handle:
A flaw was found in slapi-nis in versions before 0.56.7. A NULL pointer dereference during the parsing of the Binding DN could allow an unauthenticated attacker to crash the 389-ds-base directory server. The highest threat from this vulnerability is to system availability.
You can find information about how to handle this issue in the security team's documentation.