Debian-LTS has issued an advisory on March 23: https://www.debian.org/lts/security/2021/dla-2603 The issues are fixed upstream in 20.09.
Status comment: (none) => Patches available from upstream
release 20.09 already done for mga7 with bug 27626
Indeed. *** This bug has been marked as a duplicate of bug 27626 ***
Status: NEW => RESOLVEDResolution: (none) => DUPLICATE