The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.
| Package | Migration | Bug | Urgency | Remote | |
|---|---|---|---|---|---|
| archvsync | check | CVE-2017-8805 | not yet assigned | no | |
| golang-1.8 | check | CVE-2017-15041 | not yet assigned | no | |
| CVE-2017-15042 | not yet assigned | no | |||
| libsdl2 | check | CVE-2017-2888 | not yet assigned | no | |
| libsdl2-image | check | CVE-2017-2887 | not yet assigned | no | |
| libvirt | check | CVE-2017-1000256 | not yet assigned | ? | |
| memcached | check | CVE-2017-9951 | medium** | yes | |
| mupdf | check | CVE-2017-14685 | medium** | yes | |
| CVE-2017-14686 | medium** | yes | |||
| CVE-2017-14687 | medium** | yes | |||
| musl | check | CVE-2017-15650 | not yet assigned | ? | |
| openjpeg2 | check | CVE-2017-14039 | medium** | yes | |
| CVE-2017-14040 | medium** | yes | |||
| CVE-2017-14041 | medium** | yes | |||
| CVE-2017-14151 | medium** | yes | |||
| CVE-2017-14152 | medium** | yes | |||
| sdl-image1.2 | check | CVE-2017-2887 | not yet assigned | no | |
| sssd | check | CVE-2017-12173 | not yet assigned | ? | |
| virtualbox (contrib) | check | CVE-2017-10392 | not yet assigned | ? | |
| virtualbox (contrib) | CVE-2017-10407 | not yet assigned | ? | ||
| virtualbox (contrib) | CVE-2017-10408 | not yet assigned | ? | ||
| virtualbox (contrib) | CVE-2017-10428 | not yet assigned | ? | ||
| yadifa | check | CVE-2017-14339 | high** | yes |