Candidates for DTSAs

The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.

List of vulnerable packages in testing

Package	Migration	Bug	Urgency	Remote
beets	check	CVE-2026-42052	not yet assigned	no
chromium	check	CVE-2026-7896	not yet assigned	no	(fixed in stable?)
		CVE-2026-7897	not yet assigned	no	(fixed in stable?)
		CVE-2026-7898	not yet assigned	no	(fixed in stable?)
		CVE-2026-7899	not yet assigned	no	(fixed in stable?)
		CVE-2026-7900	not yet assigned	no	(fixed in stable?)
		CVE-2026-7901	not yet assigned	no	(fixed in stable?)
		CVE-2026-7902	not yet assigned	no	(fixed in stable?)
		CVE-2026-7903	not yet assigned	no	(fixed in stable?)
		CVE-2026-7904	not yet assigned	no	(fixed in stable?)
		CVE-2026-7905	not yet assigned	no	(fixed in stable?)
		CVE-2026-7906	not yet assigned	no	(fixed in stable?)
		CVE-2026-7907	not yet assigned	no	(fixed in stable?)
		CVE-2026-7908	not yet assigned	no	(fixed in stable?)
		CVE-2026-7909	not yet assigned	no	(fixed in stable?)
		CVE-2026-7910	not yet assigned	no	(fixed in stable?)
		CVE-2026-7911	not yet assigned	no	(fixed in stable?)
		CVE-2026-7912	not yet assigned	no	(fixed in stable?)
		CVE-2026-7913	not yet assigned	no	(fixed in stable?)
		CVE-2026-7914	not yet assigned	no	(fixed in stable?)
		CVE-2026-7915	not yet assigned	no	(fixed in stable?)
		CVE-2026-7916	not yet assigned	no	(fixed in stable?)
		CVE-2026-7917	not yet assigned	no	(fixed in stable?)
		CVE-2026-7918	not yet assigned	no	(fixed in stable?)
		CVE-2026-7919	not yet assigned	no	(fixed in stable?)
		CVE-2026-7920	not yet assigned	no	(fixed in stable?)
		CVE-2026-7921	not yet assigned	no	(fixed in stable?)
		CVE-2026-7922	not yet assigned	no	(fixed in stable?)
		CVE-2026-7923	not yet assigned	no	(fixed in stable?)
		CVE-2026-7924	not yet assigned	no	(fixed in stable?)
		CVE-2026-7925	not yet assigned	no	(fixed in stable?)
		CVE-2026-7926	not yet assigned	no	(fixed in stable?)
		CVE-2026-7927	not yet assigned	no	(fixed in stable?)
		CVE-2026-7928	not yet assigned	no	(fixed in stable?)
		CVE-2026-7929	not yet assigned	no	(fixed in stable?)
		CVE-2026-7930	not yet assigned	no	(fixed in stable?)
		CVE-2026-7931	not yet assigned	no	(fixed in stable?)
		CVE-2026-7932	not yet assigned	no	(fixed in stable?)
		CVE-2026-7933	not yet assigned	no	(fixed in stable?)
		CVE-2026-7934	not yet assigned	no	(fixed in stable?)
		CVE-2026-7935	not yet assigned	no	(fixed in stable?)
		CVE-2026-7936	not yet assigned	no	(fixed in stable?)
		CVE-2026-7937	not yet assigned	no	(fixed in stable?)
		CVE-2026-7938	not yet assigned	no	(fixed in stable?)
		CVE-2026-7939	not yet assigned	no	(fixed in stable?)
		CVE-2026-7940	not yet assigned	no	(fixed in stable?)
		CVE-2026-7941	not yet assigned	no	(fixed in stable?)
		CVE-2026-7942	not yet assigned	no	(fixed in stable?)
		CVE-2026-7943	not yet assigned	no	(fixed in stable?)
		CVE-2026-7944	not yet assigned	no	(fixed in stable?)
		CVE-2026-7945	not yet assigned	no	(fixed in stable?)
		CVE-2026-7946	not yet assigned	no	(fixed in stable?)
		CVE-2026-7947	not yet assigned	no	(fixed in stable?)
		CVE-2026-7948	not yet assigned	no	(fixed in stable?)
		CVE-2026-7949	not yet assigned	no	(fixed in stable?)
		CVE-2026-7950	not yet assigned	no	(fixed in stable?)
		CVE-2026-7951	not yet assigned	no	(fixed in stable?)
		CVE-2026-7952	not yet assigned	no	(fixed in stable?)
		CVE-2026-7953	not yet assigned	no	(fixed in stable?)
		CVE-2026-7954	not yet assigned	no	(fixed in stable?)
		CVE-2026-7955	not yet assigned	no	(fixed in stable?)
		CVE-2026-7956	not yet assigned	no	(fixed in stable?)
		CVE-2026-7957	not yet assigned	no	(fixed in stable?)
		CVE-2026-7958	not yet assigned	no	(fixed in stable?)
		CVE-2026-7959	not yet assigned	no	(fixed in stable?)
		CVE-2026-7960	not yet assigned	no	(fixed in stable?)
		CVE-2026-7961	not yet assigned	no	(fixed in stable?)
		CVE-2026-7962	not yet assigned	no	(fixed in stable?)
		CVE-2026-7963	not yet assigned	no	(fixed in stable?)
		CVE-2026-7964	not yet assigned	no	(fixed in stable?)
		CVE-2026-7965	not yet assigned	no	(fixed in stable?)
		CVE-2026-7966	not yet assigned	no	(fixed in stable?)
		CVE-2026-7967	not yet assigned	no	(fixed in stable?)
		CVE-2026-7968	not yet assigned	no	(fixed in stable?)
		CVE-2026-7969	not yet assigned	no	(fixed in stable?)
		CVE-2026-7970	not yet assigned	no	(fixed in stable?)
		CVE-2026-7971	not yet assigned	no	(fixed in stable?)
		CVE-2026-7972	not yet assigned	no	(fixed in stable?)
		CVE-2026-7973	not yet assigned	no	(fixed in stable?)
		CVE-2026-7974	not yet assigned	no	(fixed in stable?)
		CVE-2026-7975	not yet assigned	no	(fixed in stable?)
		CVE-2026-7976	not yet assigned	no	(fixed in stable?)
		CVE-2026-7977	not yet assigned	no	(fixed in stable?)
		CVE-2026-7978	not yet assigned	no	(fixed in stable?)
		CVE-2026-7979	not yet assigned	no	(fixed in stable?)
		CVE-2026-7980	not yet assigned	no	(fixed in stable?)
		CVE-2026-7981	not yet assigned	no	(fixed in stable?)
		CVE-2026-7982	not yet assigned	no	(fixed in stable?)
		CVE-2026-7983	not yet assigned	no	(fixed in stable?)
		CVE-2026-7984	not yet assigned	no	(fixed in stable?)
		CVE-2026-7985	not yet assigned	no	(fixed in stable?)
		CVE-2026-7986	not yet assigned	no	(fixed in stable?)
		CVE-2026-7987	not yet assigned	no	(fixed in stable?)
		CVE-2026-7988	not yet assigned	no	(fixed in stable?)
		CVE-2026-7989	not yet assigned	no	(fixed in stable?)
		CVE-2026-7990	not yet assigned	no	(fixed in stable?)
		CVE-2026-7991	not yet assigned	no	(fixed in stable?)
		CVE-2026-7992	not yet assigned	no	(fixed in stable?)
		CVE-2026-7993	not yet assigned	no	(fixed in stable?)
		CVE-2026-7994	not yet assigned	no	(fixed in stable?)
		CVE-2026-7995	not yet assigned	no	(fixed in stable?)
		CVE-2026-7996	not yet assigned	no	(fixed in stable?)
		CVE-2026-7997	not yet assigned	no	(fixed in stable?)
		CVE-2026-7998	not yet assigned	no	(fixed in stable?)
		CVE-2026-7999	not yet assigned	no	(fixed in stable?)
		CVE-2026-8000	not yet assigned	no	(fixed in stable?)
		CVE-2026-8001	not yet assigned	no	(fixed in stable?)
		CVE-2026-8002	not yet assigned	no	(fixed in stable?)
		CVE-2026-8003	not yet assigned	no	(fixed in stable?)
		CVE-2026-8004	not yet assigned	no	(fixed in stable?)
		CVE-2026-8005	not yet assigned	no	(fixed in stable?)
		CVE-2026-8006	not yet assigned	no	(fixed in stable?)
		CVE-2026-8007	not yet assigned	no	(fixed in stable?)
		CVE-2026-8008	not yet assigned	no	(fixed in stable?)
		CVE-2026-8009	not yet assigned	no	(fixed in stable?)
		CVE-2026-8010	not yet assigned	no	(fixed in stable?)
		CVE-2026-8011	not yet assigned	no	(fixed in stable?)
		CVE-2026-8012	not yet assigned	no	(fixed in stable?)
		CVE-2026-8013	not yet assigned	no	(fixed in stable?)
		CVE-2026-8014	not yet assigned	no	(fixed in stable?)
		CVE-2026-8015	not yet assigned	no	(fixed in stable?)
		CVE-2026-8016	not yet assigned	no	(fixed in stable?)
		CVE-2026-8017	not yet assigned	no	(fixed in stable?)
		CVE-2026-8018	not yet assigned	no	(fixed in stable?)
		CVE-2026-8019	not yet assigned	no	(fixed in stable?)
		CVE-2026-8020	not yet assigned	no	(fixed in stable?)
		CVE-2026-8021	not yet assigned	no	(fixed in stable?)
		CVE-2026-8022	not yet assigned	no	(fixed in stable?)
		CVE-2026-8509	not yet assigned	no	(fixed in stable?)
		CVE-2026-8510	not yet assigned	no	(fixed in stable?)
		CVE-2026-8511	not yet assigned	no	(fixed in stable?)
		CVE-2026-8512	not yet assigned	no	(fixed in stable?)
		CVE-2026-8513	not yet assigned	no	(fixed in stable?)
		CVE-2026-8514	not yet assigned	no	(fixed in stable?)
		CVE-2026-8515	not yet assigned	no	(fixed in stable?)
		CVE-2026-8516	not yet assigned	no	(fixed in stable?)
		CVE-2026-8517	not yet assigned	no	(fixed in stable?)
		CVE-2026-8518	not yet assigned	no	(fixed in stable?)
		CVE-2026-8519	not yet assigned	no	(fixed in stable?)
		CVE-2026-8520	not yet assigned	no	(fixed in stable?)
		CVE-2026-8521	not yet assigned	no	(fixed in stable?)
		CVE-2026-8522	not yet assigned	no	(fixed in stable?)
		CVE-2026-8523	not yet assigned	no	(fixed in stable?)
		CVE-2026-8524	not yet assigned	no	(fixed in stable?)
		CVE-2026-8525	not yet assigned	no	(fixed in stable?)
		CVE-2026-8526	not yet assigned	no	(fixed in stable?)
		CVE-2026-8527	not yet assigned	no	(fixed in stable?)
		CVE-2026-8528	not yet assigned	no	(fixed in stable?)
		CVE-2026-8529	not yet assigned	no	(fixed in stable?)
		CVE-2026-8530	not yet assigned	no	(fixed in stable?)
		CVE-2026-8531	not yet assigned	no	(fixed in stable?)
		CVE-2026-8532	not yet assigned	no	(fixed in stable?)
		CVE-2026-8533	not yet assigned	no	(fixed in stable?)
		CVE-2026-8534	not yet assigned	no	(fixed in stable?)
		CVE-2026-8535	not yet assigned	no	(fixed in stable?)
		CVE-2026-8536	not yet assigned	no	(fixed in stable?)
		CVE-2026-8537	not yet assigned	no	(fixed in stable?)
		CVE-2026-8538	not yet assigned	no	(fixed in stable?)
		CVE-2026-8539	not yet assigned	no	(fixed in stable?)
		CVE-2026-8540	not yet assigned	no	(fixed in stable?)
		CVE-2026-8541	not yet assigned	no	(fixed in stable?)
		CVE-2026-8542	not yet assigned	no	(fixed in stable?)
		CVE-2026-8543	not yet assigned	no	(fixed in stable?)
		CVE-2026-8544	not yet assigned	no	(fixed in stable?)
		CVE-2026-8545	not yet assigned	no	(fixed in stable?)
		CVE-2026-8546	not yet assigned	no	(fixed in stable?)
		CVE-2026-8547	not yet assigned	no	(fixed in stable?)
		CVE-2026-8548	not yet assigned	no	(fixed in stable?)
		CVE-2026-8549	not yet assigned	no	(fixed in stable?)
		CVE-2026-8550	not yet assigned	no	(fixed in stable?)
		CVE-2026-8551	not yet assigned	no	(fixed in stable?)
		CVE-2026-8552	not yet assigned	no	(fixed in stable?)
		CVE-2026-8553	not yet assigned	no	(fixed in stable?)
		CVE-2026-8554	not yet assigned	no	(fixed in stable?)
		CVE-2026-8555	not yet assigned	no	(fixed in stable?)
		CVE-2026-8556	not yet assigned	no	(fixed in stable?)
		CVE-2026-8557	not yet assigned	no	(fixed in stable?)
		CVE-2026-8558	not yet assigned	no	(fixed in stable?)
		CVE-2026-8559	not yet assigned	no	(fixed in stable?)
		CVE-2026-8560	not yet assigned	no	(fixed in stable?)
		CVE-2026-8561	not yet assigned	no	(fixed in stable?)
		CVE-2026-8562	not yet assigned	no	(fixed in stable?)
		CVE-2026-8563	not yet assigned	no	(fixed in stable?)
		CVE-2026-8564	not yet assigned	no	(fixed in stable?)
		CVE-2026-8565	not yet assigned	no	(fixed in stable?)
		CVE-2026-8566	not yet assigned	no	(fixed in stable?)
		CVE-2026-8567	not yet assigned	no	(fixed in stable?)
		CVE-2026-8568	not yet assigned	no	(fixed in stable?)
		CVE-2026-8569	not yet assigned	no	(fixed in stable?)
		CVE-2026-8570	not yet assigned	no	(fixed in stable?)
		CVE-2026-8571	not yet assigned	no	(fixed in stable?)
		CVE-2026-8572	not yet assigned	no	(fixed in stable?)
		CVE-2026-8573	not yet assigned	no	(fixed in stable?)
		CVE-2026-8574	not yet assigned	no	(fixed in stable?)
		CVE-2026-8575	not yet assigned	no	(fixed in stable?)
		CVE-2026-8576	not yet assigned	no	(fixed in stable?)
		CVE-2026-8577	not yet assigned	no	(fixed in stable?)
		CVE-2026-8578	not yet assigned	no	(fixed in stable?)
		CVE-2026-8579	not yet assigned	no	(fixed in stable?)
		CVE-2026-8580	not yet assigned	no	(fixed in stable?)
		CVE-2026-8581	not yet assigned	no	(fixed in stable?)
		CVE-2026-8582	not yet assigned	no	(fixed in stable?)
		CVE-2026-8583	not yet assigned	no	(fixed in stable?)
		CVE-2026-8584	not yet assigned	no	(fixed in stable?)
		CVE-2026-8585	not yet assigned	no	(fixed in stable?)
		CVE-2026-8586	not yet assigned	no	(fixed in stable?)
		CVE-2026-8587	not yet assigned	no	(fixed in stable?)
cyborg	check	CVE-2026-40213	not yet assigned	no
		CVE-2026-40214	not yet assigned	no
deskflow	check	CVE-2026-41476	not yet assigned	no
dnsmasq	check	CVE-2026-2291	not yet assigned	no
		CVE-2026-4890	not yet assigned	no
		CVE-2026-4891	not yet assigned	no
		CVE-2026-4892	not yet assigned	no
		CVE-2026-4893	not yet assigned	no
		CVE-2026-5172	not yet assigned	no
dovecot	check	CVE-2026-27851	not yet assigned	no
		CVE-2026-33603	not yet assigned	no
		CVE-2026-40016	not yet assigned	no
		CVE-2026-40020	not yet assigned	no
		CVE-2026-42006	not yet assigned	no
edk2	check	CVE-2024-38798	not yet assigned	no
emacs	check	CVE-2026-6861	not yet assigned	no
expat	check	CVE-2026-45186	not yet assigned	no
flask	check	CVE-2026-27205	not yet assigned	no
gsasl	check	TEMP-0000000-22A1BA	not yet assigned	?
imagemagick	check	CVE-2026-33899	not yet assigned	no
		CVE-2026-33900	not yet assigned	no
		CVE-2026-33901	not yet assigned	no
		CVE-2026-33902	not yet assigned	no
		CVE-2026-33905	not yet assigned	no
		CVE-2026-33908	not yet assigned	no
		CVE-2026-34238	not yet assigned	no
		CVE-2026-40169	not yet assigned	no
		CVE-2026-40183	not yet assigned	no
		CVE-2026-40310	not yet assigned	no
		CVE-2026-40311	not yet assigned	no
		CVE-2026-40312	not yet assigned	no
		CVE-2026-42050	not yet assigned	no
incus	check	CVE-2026-35527	not yet assigned	no
		CVE-2026-40195	not yet assigned	no
		CVE-2026-40197	not yet assigned	no
		CVE-2026-40243	not yet assigned	no
		CVE-2026-40251	not yet assigned	no
		CVE-2026-41647	not yet assigned	no
		CVE-2026-41648	not yet assigned	no
		CVE-2026-41684	not yet assigned	no
		CVE-2026-41685	not yet assigned	no
ironic	check	CVE-2026-42510	not yet assigned	no
		CVE-2026-42997	not yet assigned	no
		CVE-2026-44916	not yet assigned	no
		CVE-2026-44919	not yet assigned	no
kdenlive	check	CVE-2026-45184	not yet assigned	no
krb5	check	CVE-2026-40355	not yet assigned	no
		CVE-2026-40356	not yet assigned	no
lcms2	check	CVE-2026-42798	not yet assigned	no
libapache-session-browseable-perl	check	CVE-2026-8503	not yet assigned	no
libcrypt-argon2-perl	check	CVE-2026-8463	not yet assigned	no
libdancer-perl	check	CVE-2026-5080	not yet assigned	no
libhttp-tiny-perl	check	CVE-2026-7010	not yet assigned	no
libimage-exiftool-perl	check	CVE-2026-7580	not yet assigned	no
libimager-perl	check	CVE-2026-8669	not yet assigned	no
libskia	check	CVE-2026-7920	not yet assigned	no
		CVE-2026-7923	not yet assigned	no
		CVE-2026-7949	not yet assigned	no
libssh2	check	CVE-2026-7598	not yet assigned	no
libtext-csv-xs-perl	check	CVE-2026-7111	not yet assigned	no
libwww-perl	check	CVE-2026-8368	not yet assigned	no
libyaml-syck-perl	check	CVE-2026-5089	not yet assigned	no
lldpd	check	CVE-2026-46433	not yet assigned	?
lxc	check	CVE-2026-39402	not yet assigned	no
mbedtls	check	CVE-2026-25834	not yet assigned	no
		CVE-2026-25835	not yet assigned	no
		CVE-2026-34872	not yet assigned	no
		CVE-2026-34873	not yet assigned	no
		CVE-2026-34874	not yet assigned	no
		CVE-2026-34875	not yet assigned	no
		CVE-2026-34876	not yet assigned	no
nginx	check	CVE-2026-40460	not yet assigned	no
		CVE-2026-40701	not yet assigned	no
		CVE-2026-42926	not yet assigned	no
		CVE-2026-42934	not yet assigned	no
		CVE-2026-42945	not yet assigned	no
		CVE-2026-42946	not yet assigned	no
node-multiparty	check	CVE-2026-8159	not yet assigned	no
		CVE-2026-8161	not yet assigned	no
		CVE-2026-8162	not yet assigned	no
node-proxy-agents	check	CVE-2026-44240	not yet assigned	no
node-ws	check	CVE-2026-45736	not yet assigned	no
node-xmldom	check	CVE-2026-41672	not yet assigned	no
		CVE-2026-41673	not yet assigned	no
		CVE-2026-41674	not yet assigned	no
		CVE-2026-41675	not yet assigned	no
openjpeg2	check	CVE-2026-6192	not yet assigned	no
postgresql-18	check	CVE-2026-6472	not yet assigned	no
		CVE-2026-6473	not yet assigned	no
		CVE-2026-6474	not yet assigned	no
		CVE-2026-6475	not yet assigned	no
		CVE-2026-6476	not yet assigned	no
		CVE-2026-6477	not yet assigned	no
		CVE-2026-6478	not yet assigned	no
		CVE-2026-6479	not yet assigned	no
		CVE-2026-6575	not yet assigned	no
		CVE-2026-6637	not yet assigned	no
		CVE-2026-6638	not yet assigned	no
pydicom	check	CVE-2026-32711	not yet assigned	no
python-aiohttp	check	CVE-2026-22815	not yet assigned	no
		CVE-2026-34513	not yet assigned	no
		CVE-2026-34514	not yet assigned	no
		CVE-2026-34516	not yet assigned	no
		CVE-2026-34517	not yet assigned	no
		CVE-2026-34518	not yet assigned	no
		CVE-2026-34519	not yet assigned	no
		CVE-2026-34520	not yet assigned	no
		CVE-2026-34525	not yet assigned	no
python-biopython	check	CVE-2025-68463	not yet assigned	no
python-django	check	CVE-2026-35192	not yet assigned	no
		CVE-2026-5766	not yet assigned	no
		CVE-2026-6907	not yet assigned	no
python-git	check	CVE-2026-42215	not yet assigned	no
		CVE-2026-42284	not yet assigned	no
		CVE-2026-44243	not yet assigned	no
		CVE-2026-44244	not yet assigned	no
python-multipart	check	CVE-2026-40347	not yet assigned	no
python3.14	check	CVE-2026-1502	not yet assigned	no
		CVE-2026-4786	not yet assigned	no
		CVE-2026-5713	not yet assigned	no
		CVE-2026-6019	not yet assigned	no
		CVE-2026-6100	not yet assigned	no
qemu	check	CVE-2024-6519	not yet assigned	no
		CVE-2026-3890	not yet assigned	?
		CVE-2026-5744	not yet assigned	?
		CVE-2026-5761	not yet assigned	?
		CVE-2026-5763	not yet assigned	?
		CVE-2026-6502	not yet assigned	?
ruby-rack-session	check	CVE-2026-39324	not yet assigned	no
rust-gix-fs	check	CVE-2026-44471	not yet assigned	no
rust-openssl	check	CVE-2026-41676	not yet assigned	no
		CVE-2026-41677	not yet assigned	no
		CVE-2026-41678	not yet assigned	no
		CVE-2026-41681	not yet assigned	no
		CVE-2026-41898	not yet assigned	no
starman	check	CVE-2026-40560	not yet assigned	no
streamlink	check	CVE-2026-44353	not yet assigned	?
swupdate	check	CVE-2026-28525	not yet assigned	no
		CVE-2026-2966	not yet assigned	no
		CVE-2026-2967	not yet assigned	no
		CVE-2026-2968	not yet assigned	no
		CVE-2026-5244	not yet assigned	no
		CVE-2026-5245	not yet assigned	no
		CVE-2026-5246	not yet assigned	no
		CVE-2026-6985	not yet assigned	no
		CVE-2026-6986	not yet assigned	no
tensorflow	check	CVE-2026-2492	not yet assigned	no
thrift	check	CVE-2025-48431	not yet assigned	no
		CVE-2026-41602	not yet assigned	no
		CVE-2026-41603	not yet assigned	no
		CVE-2026-41606	not yet assigned	no
		CVE-2026-41607	not yet assigned	no
thunderbird	check	CVE-2026-8090	not yet assigned	no	(fixed in stable?)
		CVE-2026-8092	not yet assigned	no	(fixed in stable?)
		CVE-2026-8094	not yet assigned	no	(fixed in stable?)
tomcat11	check	CVE-2026-41284	not yet assigned	no
		CVE-2026-41293	not yet assigned	no
		CVE-2026-42498	not yet assigned	no
		CVE-2026-43512	not yet assigned	no
		CVE-2026-43513	not yet assigned	no
		CVE-2026-43514	not yet assigned	no
		CVE-2026-43515	not yet assigned	no
twisted	check	CVE-2026-42304	not yet assigned	no
wlc	check	CVE-2026-42150	not yet assigned	no
xrdp	check	CVE-2026-32105	not yet assigned	no
		CVE-2026-32107	not yet assigned	no
		CVE-2026-32623	not yet assigned	no
		CVE-2026-32624	not yet assigned	no
		CVE-2026-33145	not yet assigned	no
		CVE-2026-33516	not yet assigned	no
		CVE-2026-33689	not yet assigned	no
		CVE-2026-35512	not yet assigned	no