mosquitto: packages in aports are older than vulnerable versions
CVE-2021-28166 affects mosquitto 2.0.0 - 2.0.9, but version 1.6.x is in the stable branches (3.13 / 3.12).
CVE-2021-28166 affects mosquitto 2.0.0 - 2.0.9, but version 1.6.x is in the stable branches (3.13 / 3.12).