Debian Golang-Github-Nats-Io-Jwt vulnerabilities

CVE-2021-3127 [HIGH] CVE-2021-3127: golang-github-nats-io-jwt - NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorrect Access ... NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorrect Access Control because Import Token bindings are mishandled. Scope: local bookworm: resolved (fixed in 2.2.0-1) forky: resolved (fixed in 2.2.0-1) sid: resolved (fixed in 2.2.0-1) trixie: resolved (fixed in 2.2.0-1)

CVE-2020-26892 [CRITICAL] CVE-2020-26892: golang-github-nats-io-jwt - The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control be... The JWT library in NATS nats-server before 2.1.9 has Incorrect Access Control because of how expired credentials are handled. Scope: local bookworm: resolved (fixed in 2.2.0-1) forky: resolved (fixed in 2.2.0-1) sid: resolved (fixed in 2.2.0-1) trixie: resolved (fixed in 2.2.0-1)

CVE-2020-26521 [HIGH] CVE-2020-26521: golang-github-nats-io-jwt - The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a n... The JWT library in NATS nats-server before 2.1.9 allows a denial of service (a nil dereference in Go code). Scope: local bookworm: resolved (fixed in 2.2.0-1) forky: resolved (fixed in 2.2.0-1) sid: resolved (fixed in 2.2.0-1) trixie: resolved (fixed in 2.2.0-1)