Candidates for DTSAs

The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.

List of vulnerable packages in testing

Package	Migration	Bug	Urgency	Remote
dwarfutils	check	CVE-2016-7410	not yet assigned	?
		CVE-2016-7510	not yet assigned	?
		CVE-2016-7511	not yet assigned	?
firefox-esr	check	CVE-2016-5257	high**	yes	(fixed in stable?)
		CVE-2016-5261	high**	yes	(fixed in stable?)
		CVE-2016-5270	high**	yes	(fixed in stable?)
		CVE-2016-5274	high**	yes	(fixed in stable?)
		CVE-2016-5276	high**	yes	(fixed in stable?)
		CVE-2016-5277	high**	yes	(fixed in stable?)
		CVE-2016-5280	high**	yes	(fixed in stable?)
		CVE-2016-5281	high**	yes	(fixed in stable?)
		CVE-2016-5250	medium**	yes	(fixed in stable?)
		CVE-2016-5272	medium**	yes	(fixed in stable?)
		CVE-2016-5278	medium**	yes	(fixed in stable?)
		CVE-2016-5284	medium**	yes	(fixed in stable?)
glibc	check	CVE-2016-6323	not yet assigned	?
irssi	check	CVE-2016-7553	not yet assigned	?
linux	check	CVE-2016-6136	low**	no
		CVE-2016-6156	low**	no
		CVE-2016-5400	medium**	no
		CVE-2016-5412	medium**	no
		CVE-2016-5696	medium**	yes
		CVE-2016-6480	medium**	no
		CVE-2016-6516	medium**	no
		CVE-2016-6828	not yet assigned	?
openssl	check	CVE-2016-2182	high**	yes
		CVE-2016-6303	high**	yes
		CVE-2016-2177	low	yes
		CVE-2016-2178	low	no
		CVE-2016-2179	medium**	yes
		CVE-2016-2180	medium**	yes
		CVE-2016-2181	medium**	yes
		CVE-2016-6302	medium**	yes
		CVE-2016-6304	not yet assigned	?
		CVE-2016-6306	not yet assigned	?
		CVE-2016-7052	not yet assigned	?
unadf	check	CVE-2016-1243	not yet assigned	?	(fixed in stable?)
		CVE-2016-1244	not yet assigned	?	(fixed in stable?)
undertow	check	CVE-2016-7046	not yet assigned	?