| Package | Bug | Urgency | Remote |
|---|---|---|---|
| amd64-microcode (non-free-firmware) | CVE-2024-36350 | not yet assigned | no |
| CVE-2024-36357 | not yet assigned | no | |
| CVE-2025-0033 | not yet assigned | no | |
| CVE-2025-29934 | not yet assigned | no | |
| angular.js | CVE-2025-4690 | not yet assigned | no |
| avahi | CVE-2025-68276 | not yet assigned | no |
| CVE-2025-68468 | not yet assigned | no | |
| CVE-2025-68471 | not yet assigned | no | |
| ceph | CVE-2024-47866 | not yet assigned | no |
| chromium | CVE-2026-0899 | not yet assigned | ? |
| CVE-2026-0900 | not yet assigned | ? | |
| CVE-2026-0901 | not yet assigned | ? | |
| CVE-2026-0902 | not yet assigned | ? | |
| CVE-2026-0903 | not yet assigned | ? | |
| CVE-2026-0904 | not yet assigned | ? | |
| CVE-2026-0905 | not yet assigned | ? | |
| CVE-2026-0906 | not yet assigned | ? | |
| CVE-2026-0907 | not yet assigned | ? | |
| CVE-2026-0908 | not yet assigned | ? | |
| cosign | CVE-2026-22703 | not yet assigned | no |
| cpp-httplib | CVE-2025-46728 | not yet assigned | no |
| CVE-2025-53628 | not yet assigned | no | |
| CVE-2025-53629 | not yet assigned | no | |
| CVE-2025-66570 | not yet assigned | no | |
| CVE-2025-66577 | not yet assigned | no | |
| CVE-2026-21428 | not yet assigned | no | |
| CVE-2026-22776 | not yet assigned | no | |
| django-allauth | CVE-2025-65430 | not yet assigned | no |
| firefox-esr | CVE-2025-14327 | not yet assigned | no |
| CVE-2026-0877 | not yet assigned | no | |
| CVE-2026-0878 | not yet assigned | no | |
| CVE-2026-0879 | not yet assigned | no | |
| CVE-2026-0880 | not yet assigned | no | |
| CVE-2026-0882 | not yet assigned | no | |
| CVE-2026-0883 | not yet assigned | no | |
| CVE-2026-0884 | not yet assigned | no | |
| CVE-2026-0885 | not yet assigned | no | |
| CVE-2026-0886 | not yet assigned | no | |
| CVE-2026-0887 | not yet assigned | no | |
| CVE-2026-0890 | not yet assigned | no | |
| CVE-2026-0891 | not yet assigned | no | |
| fontforge | CVE-2025-15269 | not yet assigned | no |
| CVE-2025-15270 | not yet assigned | no | |
| CVE-2025-15271 | not yet assigned | no | |
| CVE-2025-15272 | not yet assigned | no | |
| CVE-2025-15273 | not yet assigned | no | |
| CVE-2025-15274 | not yet assigned | no | |
| CVE-2025-15275 | not yet assigned | no | |
| CVE-2025-15276 | not yet assigned | no | |
| CVE-2025-15277 | not yet assigned | no | |
| CVE-2025-15278 | not yet assigned | no | |
| CVE-2025-15279 | not yet assigned | no | |
| CVE-2025-15280 | not yet assigned | no | |
| frr | CVE-2025-61099 | not yet assigned | no |
| CVE-2025-61100 | not yet assigned | no | |
| CVE-2025-61101 | not yet assigned | no | |
| CVE-2025-61102 | not yet assigned | no | |
| CVE-2025-61105 | not yet assigned | no | |
| git-lfs | CVE-2025-26625 | not yet assigned | no |
| gokey | CVE-2025-13353 | not yet assigned | no |
| golang-1.24 | CVE-2025-61727 | not yet assigned | no |
| CVE-2025-61729 | not yet assigned | no | |
| golang-github-sigstore-fulcio | CVE-2026-22772 | not yet assigned | no |
| golang-go.crypto | CVE-2024-45337 | not yet assigned | no |
| CVE-2025-47913 | not yet assigned | no | |
| harfbuzz | CVE-2026-22693 | not yet assigned | no |
| jackson-core | CVE-2025-52999 | not yet assigned | no |
| joserfc | CVE-2025-65015 | not yet assigned | no |
| libpng1.6 | CVE-2026-22695 | not yet assigned | no |
| CVE-2026-22801 | not yet assigned | no | |
| libspf2 | CVE-2023-42118 | not yet assigned | no |
| linux | CVE-2013-7445 | not yet assigned | no |
| CVE-2018-12928 | low | no | |
| CVE-2019-15213 | not yet assigned | no | |
| CVE-2019-16089 | not yet assigned | no | |
| CVE-2019-19449 | not yet assigned | no | |
| CVE-2019-19814 | not yet assigned | no | |
| CVE-2019-20794 | not yet assigned | no | |
| CVE-2020-14304 | not yet assigned | no | |
| CVE-2020-36694 | not yet assigned | no | |
| CVE-2021-3847 | not yet assigned | no | |
| CVE-2021-3864 | not yet assigned | no | |
| CVE-2023-3397 | not yet assigned | no | |
| CVE-2023-4010 | not yet assigned | no | |
| CVE-2023-6238 | not yet assigned | no | |
| CVE-2023-6240 | not yet assigned | no | |
| CVE-2023-31082 | not yet assigned | no | |
| CVE-2023-37454 | not yet assigned | no | |
| CVE-2024-2193 | not yet assigned | no | |
| CVE-2024-21803 | not yet assigned | no | |
| CVE-2024-24864 | not yet assigned | no | |
| CVE-2024-25740 | not yet assigned | no | |
| CVE-2024-52560 | not yet assigned | no | |
| CVE-2024-56709 | not yet assigned | no | |
| CVE-2024-58015 | not yet assigned | no | |
| CVE-2024-58074 | not yet assigned | no | |
| CVE-2024-58093 | not yet assigned | no | |
| CVE-2024-58094 | not yet assigned | no | |
| CVE-2024-58095 | not yet assigned | no | |
| CVE-2024-58096 | not yet assigned | no | |
| CVE-2024-58097 | not yet assigned | no | |
| CVE-2025-21709 | not yet assigned | no | |
| CVE-2025-21752 | not yet assigned | no | |
| CVE-2025-21807 | not yet assigned | no | |
| CVE-2025-21949 | not yet assigned | no | |
| CVE-2025-22104 | not yet assigned | no | |
| CVE-2025-22108 | not yet assigned | no | |
| CVE-2025-22109 | not yet assigned | no | |
| CVE-2025-22111 | not yet assigned | no | |
| CVE-2025-22116 | not yet assigned | no | |
| CVE-2025-22117 | not yet assigned | no | |
| CVE-2025-22127 | not yet assigned | no | |
| CVE-2025-23131 | not yet assigned | no | |
| CVE-2025-23132 | not yet assigned | no | |
| CVE-2025-23135 | not yet assigned | no | |
| CVE-2025-37743 | not yet assigned | no | |
| CVE-2025-37746 | not yet assigned | no | |
| CVE-2025-37880 | not yet assigned | no | |
| CVE-2025-37906 | not yet assigned | no | |
| CVE-2025-38029 | not yet assigned | no | |
| CVE-2025-38036 | not yet assigned | no | |
| CVE-2025-38041 | not yet assigned | no | |
| CVE-2025-38042 | not yet assigned | no | |
| CVE-2025-38064 | not yet assigned | no | |
| CVE-2025-38132 | not yet assigned | no | |
| CVE-2025-38137 | not yet assigned | no | |
| CVE-2025-38140 | not yet assigned | no | |
| CVE-2025-38187 | not yet assigned | no | |
| CVE-2025-38199 | not yet assigned | no | |
| CVE-2025-38203 | not yet assigned | no | |
| CVE-2025-38204 | not yet assigned | no | |
| CVE-2025-38205 | not yet assigned | no | |
| CVE-2025-38206 | not yet assigned | no | |
| CVE-2025-38207 | not yet assigned | no | |
| CVE-2025-38234 | not yet assigned | no | |
| CVE-2025-38237 | not yet assigned | no | |
| CVE-2025-38248 | not yet assigned | no | |
| CVE-2025-38261 | not yet assigned | no | |
| CVE-2025-38284 | not yet assigned | no | |
| CVE-2025-38311 | not yet assigned | no | |
| CVE-2025-38359 | not yet assigned | no | |
| CVE-2025-38421 | not yet assigned | no | |
| CVE-2025-38426 | not yet assigned | no | |
| CVE-2025-38584 | not yet assigned | no | |
| CVE-2025-38591 | not yet assigned | no | |
| CVE-2025-38597 | not yet assigned | no | |
| CVE-2025-38605 | not yet assigned | no | |
| CVE-2025-38621 | not yet assigned | no | |
| CVE-2025-38627 | not yet assigned | no | |
| CVE-2025-38636 | not yet assigned | no | |
| CVE-2025-39677 | not yet assigned | no | |
| CVE-2025-39762 | not yet assigned | no | |
| CVE-2025-39764 | not yet assigned | no | |
| CVE-2025-39775 | not yet assigned | no | |
| CVE-2025-39789 | not yet assigned | no | |
| CVE-2025-39822 | not yet assigned | no | |
| CVE-2025-39830 | not yet assigned | no | |
| CVE-2025-39833 | not yet assigned | no | |
| CVE-2025-39834 | not yet assigned | no | |
| CVE-2025-39859 | not yet assigned | no | |
| CVE-2025-39862 | not yet assigned | no | |
| CVE-2025-39872 | not yet assigned | no | |
| CVE-2025-39910 | not yet assigned | no | |
| CVE-2025-39925 | not yet assigned | no | |
| CVE-2025-39933 | not yet assigned | no | |
| CVE-2025-39958 | not yet assigned | no | |
| CVE-2025-40005 | not yet assigned | no | |
| CVE-2025-40025 | not yet assigned | no | |
| CVE-2025-40054 | not yet assigned | no | |
| CVE-2025-40064 | not yet assigned | no | |
| CVE-2025-40065 | not yet assigned | no | |
| CVE-2025-40074 | not yet assigned | no | |
| CVE-2025-40082 | not yet assigned | no | |
| CVE-2025-40086 | not yet assigned | no | |
| CVE-2025-40098 | not yet assigned | no | |
| CVE-2025-40102 | not yet assigned | no | |
| CVE-2025-40113 | not yet assigned | no | |
| CVE-2025-40130 | not yet assigned | no | |
| CVE-2025-40135 | not yet assigned | no | |
| CVE-2025-40136 | not yet assigned | no | |
| CVE-2025-40139 | not yet assigned | no | |
| CVE-2025-40146 | not yet assigned | no | |
| CVE-2025-40147 | not yet assigned | no | |
| CVE-2025-40149 | not yet assigned | no | |
| CVE-2025-40150 | not yet assigned | no | |
| CVE-2025-40158 | not yet assigned | no | |
| CVE-2025-40164 | not yet assigned | no | |
| CVE-2025-40168 | not yet assigned | no | |
| CVE-2025-40170 | not yet assigned | no | |
| CVE-2025-40217 | not yet assigned | no | |
| CVE-2025-40247 | not yet assigned | no | |
| CVE-2025-40276 | not yet assigned | no | |
| CVE-2025-40325 | not yet assigned | no | |
| CVE-2025-40334 | not yet assigned | no | |
| CVE-2025-40335 | not yet assigned | no | |
| CVE-2025-40338 | not yet assigned | no | |
| CVE-2025-40355 | not yet assigned | no | |
| CVE-2025-68174 | not yet assigned | no | |
| CVE-2025-68175 | not yet assigned | no | |
| CVE-2025-68193 | not yet assigned | no | |
| CVE-2025-68196 | not yet assigned | no | |
| CVE-2025-68206 | not yet assigned | no | |
| CVE-2025-68209 | not yet assigned | no | |
| CVE-2025-68212 | not yet assigned | no | |
| CVE-2025-68236 | not yet assigned | no | |
| CVE-2025-68239 | not yet assigned | no | |
| CVE-2025-68251 | not yet assigned | no | |
| CVE-2025-68304 | not yet assigned | no | |
| CVE-2025-68318 | not yet assigned | no | |
| CVE-2025-68319 | not yet assigned | no | |
| CVE-2025-68333 | not yet assigned | no | |
| CVE-2025-68334 | not yet assigned | no | |
| CVE-2025-68345 | not yet assigned | no | |
| CVE-2025-68351 | not yet assigned | no | |
| CVE-2025-68353 | not yet assigned | no | |
| CVE-2025-68357 | not yet assigned | no | |
| CVE-2025-68358 | not yet assigned | no | |
| CVE-2025-68359 | not yet assigned | no | |
| CVE-2025-68360 | not yet assigned | no | |
| CVE-2025-68365 | not yet assigned | no | |
| CVE-2025-68368 | not yet assigned | no | |
| CVE-2025-68376 | not yet assigned | no | |
| CVE-2025-68725 | not yet assigned | no | |
| CVE-2025-68729 | not yet assigned | no | |
| CVE-2025-68730 | not yet assigned | no | |
| CVE-2025-68735 | not yet assigned | no | |
| CVE-2025-68736 | not yet assigned | no | |
| CVE-2025-68745 | not yet assigned | no | |
| CVE-2025-68749 | not yet assigned | no | |
| CVE-2025-68751 | not yet assigned | no | |
| CVE-2025-68755 | not yet assigned | no | |
| CVE-2025-68767 | not yet assigned | no | |
| CVE-2025-68768 | not yet assigned | no | |
| CVE-2025-68769 | not yet assigned | no | |
| CVE-2025-68770 | not yet assigned | no | |
| CVE-2025-68771 | not yet assigned | no | |
| CVE-2025-68772 | not yet assigned | no | |
| CVE-2025-68773 | not yet assigned | no | |
| CVE-2025-68774 | not yet assigned | no | |
| CVE-2025-68775 | not yet assigned | no | |
| CVE-2025-68776 | not yet assigned | no | |
| CVE-2025-68777 | not yet assigned | no | |
| CVE-2025-68778 | not yet assigned | no | |
| CVE-2025-68780 | not yet assigned | no | |
| CVE-2025-68781 | not yet assigned | no | |
| CVE-2025-68782 | not yet assigned | no | |
| CVE-2025-68783 | not yet assigned | no | |
| CVE-2025-68784 | not yet assigned | no | |
| CVE-2025-68785 | not yet assigned | no | |
| CVE-2025-68786 | not yet assigned | no | |
| CVE-2025-68787 | not yet assigned | no | |
| CVE-2025-68788 | not yet assigned | no | |
| CVE-2025-68789 | not yet assigned | no | |
| CVE-2025-68792 | not yet assigned | no | |
| CVE-2025-68794 | not yet assigned | no | |
| CVE-2025-68795 | not yet assigned | no | |
| CVE-2025-68796 | not yet assigned | no | |
| CVE-2025-68797 | not yet assigned | no | |
| CVE-2025-68798 | not yet assigned | no | |
| CVE-2025-68799 | not yet assigned | no | |
| CVE-2025-68800 | not yet assigned | no | |
| CVE-2025-68801 | not yet assigned | no | |
| CVE-2025-68802 | not yet assigned | no | |
| CVE-2025-68803 | not yet assigned | no | |
| CVE-2025-68804 | not yet assigned | no | |
| CVE-2025-68806 | not yet assigned | no | |
| CVE-2025-68808 | not yet assigned | no | |
| CVE-2025-68809 | not yet assigned | no | |
| CVE-2025-68810 | not yet assigned | no | |
| CVE-2025-68811 | not yet assigned | no | |
| CVE-2025-68813 | not yet assigned | no | |
| CVE-2025-68814 | not yet assigned | no | |
| CVE-2025-68815 | not yet assigned | no | |
| CVE-2025-68816 | not yet assigned | no | |
| CVE-2025-68817 | not yet assigned | no | |
| CVE-2025-68818 | not yet assigned | no | |
| CVE-2025-68819 | not yet assigned | no | |
| CVE-2025-68820 | not yet assigned | no | |
| CVE-2025-68821 | not yet assigned | no | |
| CVE-2025-68822 | not yet assigned | no | |
| CVE-2025-68823 | not yet assigned | no | |
| CVE-2025-71064 | not yet assigned | no | |
| CVE-2025-71065 | not yet assigned | no | |
| CVE-2025-71066 | not yet assigned | no | |
| CVE-2025-71067 | not yet assigned | no | |
| CVE-2025-71068 | not yet assigned | no | |
| CVE-2025-71069 | not yet assigned | no | |
| CVE-2025-71071 | not yet assigned | no | |
| CVE-2025-71072 | not yet assigned | no | |
| CVE-2025-71073 | not yet assigned | no | |
| CVE-2025-71074 | not yet assigned | no | |
| CVE-2025-71075 | not yet assigned | no | |
| CVE-2025-71076 | not yet assigned | no | |
| CVE-2025-71077 | not yet assigned | no | |
| CVE-2025-71078 | not yet assigned | no | |
| CVE-2025-71079 | not yet assigned | no | |
| CVE-2025-71080 | not yet assigned | no | |
| CVE-2025-71081 | not yet assigned | no | |
| CVE-2025-71082 | not yet assigned | no | |
| CVE-2025-71083 | not yet assigned | no | |
| CVE-2025-71084 | not yet assigned | no | |
| CVE-2025-71085 | not yet assigned | no | |
| CVE-2025-71086 | not yet assigned | no | |
| CVE-2025-71087 | not yet assigned | no | |
| CVE-2025-71088 | not yet assigned | no | |
| CVE-2025-71089 | not yet assigned | no | |
| CVE-2025-71091 | not yet assigned | no | |
| CVE-2025-71093 | not yet assigned | no | |
| CVE-2025-71094 | not yet assigned | no | |
| CVE-2025-71095 | not yet assigned | no | |
| CVE-2025-71096 | not yet assigned | no | |
| CVE-2025-71097 | not yet assigned | no | |
| CVE-2025-71098 | not yet assigned | no | |
| CVE-2025-71099 | not yet assigned | no | |
| CVE-2025-71100 | not yet assigned | no | |
| CVE-2025-71101 | not yet assigned | no | |
| modsecurity-crs | CVE-2026-21876 | not yet assigned | no |
| msgpack-java | CVE-2026-21452 | not yet assigned | no |
| netty | CVE-2025-55163 | not yet assigned | no |
| CVE-2025-58056 | not yet assigned | no | |
| CVE-2025-58057 | not yet assigned | no | |
| CVE-2025-59419 | not yet assigned | no | |
| CVE-2025-67735 | not yet assigned | no | |
| node-elliptic | CVE-2025-14505 | not yet assigned | no |
| nodejs | CVE-2025-55130 | not yet assigned | ? |
| CVE-2025-55131 | not yet assigned | ? | |
| CVE-2025-55132 | not yet assigned | ? | |
| CVE-2025-59464 | not yet assigned | ? | |
| CVE-2025-59465 | not yet assigned | ? | |
| CVE-2025-59466 | not yet assigned | ? | |
| CVE-2026-21637 | not yet assigned | ? | |
| openexr | CVE-2025-12495 | not yet assigned | no |
| CVE-2025-12839 | not yet assigned | no | |
| CVE-2025-12840 | not yet assigned | no | |
| python-aiohttp | CVE-2025-69223 | not yet assigned | no |
| CVE-2025-69224 | not yet assigned | no | |
| CVE-2025-69225 | not yet assigned | no | |
| CVE-2025-69226 | not yet assigned | no | |
| CVE-2025-69227 | not yet assigned | no | |
| CVE-2025-69228 | not yet assigned | no | |
| CVE-2025-69229 | not yet assigned | no | |
| CVE-2025-69230 | not yet assigned | no | |
| python-authlib | CVE-2025-68158 | not yet assigned | no |
| python-django | CVE-2025-13372 | not yet assigned | no |
| CVE-2025-57833 | not yet assigned | no | |
| CVE-2025-59681 | not yet assigned | no | |
| CVE-2025-59682 | not yet assigned | no | |
| CVE-2025-64459 | not yet assigned | no | |
| CVE-2025-64460 | not yet assigned | no | |
| python-tornado | CVE-2025-67724 | not yet assigned | no |
| CVE-2025-67725 | not yet assigned | no | |
| CVE-2025-67726 | not yet assigned | no | |
| python-urllib3 | CVE-2025-66418 | not yet assigned | no |
| CVE-2026-21441 | not yet assigned | no | |
| qemu | CVE-2026-0665 | not yet assigned | ? |
| quickjs | CVE-2026-0821 | not yet assigned | no |
| CVE-2026-0822 | not yet assigned | no | |
| rtpengine | CVE-2025-53399 | not yet assigned | no |
| ruby3.3 | CVE-2025-58767 | not yet assigned | no |
| runc | CVE-2025-31133 | not yet assigned | no |
| CVE-2025-52565 | not yet assigned | no | |
| CVE-2025-52881 | not yet assigned | no | |
| starlette | CVE-2025-54121 | not yet assigned | no |
| CVE-2025-62727 | not yet assigned | no | |
| tomcat10 | CVE-2025-46701 | not yet assigned | no |
| CVE-2025-48976 | not yet assigned | no | |
| CVE-2025-48988 | not yet assigned | no | |
| CVE-2025-48989 | not yet assigned | no | |
| CVE-2025-49125 | not yet assigned | no | |
| CVE-2025-52520 | not yet assigned | no | |
| CVE-2025-53506 | not yet assigned | no | |
| CVE-2025-55668 | not yet assigned | no | |
| CVE-2025-55752 | not yet assigned | no | |
| CVE-2025-55754 | not yet assigned | no | |
| CVE-2025-61795 | not yet assigned | no | |
| tomcat11 | CVE-2025-46701 | not yet assigned | no |
| CVE-2025-48976 | not yet assigned | no | |
| CVE-2025-48988 | not yet assigned | no | |
| CVE-2025-48989 | not yet assigned | no | |
| CVE-2025-49125 | not yet assigned | no | |
| CVE-2025-52520 | not yet assigned | no | |
| CVE-2025-53506 | not yet assigned | no | |
| CVE-2025-55668 | not yet assigned | no | |
| CVE-2025-55752 | not yet assigned | no | |
| CVE-2025-55754 | not yet assigned | no | |
| CVE-2025-61795 | not yet assigned | no | |
| usbmuxd | CVE-2025-66004 | not yet assigned | no |
| vega.js | CVE-2025-26619 | not yet assigned | no |
| CVE-2025-27793 | not yet assigned | no | |
| CVE-2025-59840 | not yet assigned | no | |
| CVE-2025-65110 | not yet assigned | no | |
| CVE-2025-66648 | not yet assigned | no | |
| wlc | CVE-2026-22250 | not yet assigned | no |
| CVE-2026-22251 | not yet assigned | no | |
| zabbix | CVE-2025-27231 | not yet assigned | no |
| CVE-2025-27233 | not yet assigned | no | |
| CVE-2025-27238 | not yet assigned | no |
If a "*" is included in the urgency field, no DSA is planned for this vulnerability.
If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.