Vulnerable source packages among backports for stable

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.

Package	Bug	Urgency	Remote
apache-jena	CVE-2021-33192	not yet assigned	no
	CVE-2021-39239	not yet assigned	no
	CVE-2022-28890	not yet assigned	no
	CVE-2022-45136	not yet assigned	no
	CVE-2023-22665	not yet assigned	no
assimp	CVE-2022-38528	not yet assigned	no
	CVE-2022-45748	not yet assigned	no
claws-mail	CVE-2019-10735	low	no
cloud-init	CVE-2022-2084	not yet assigned	no
	CVE-2023-1786	not yet assigned	no
curl	CVE-2023-28319	not yet assigned	no
	CVE-2023-28321	not yet assigned	no
	CVE-2023-28322	not yet assigned	no
dcmtk	CVE-2022-43272	not yet assigned	no
dino-im	CVE-2023-28686	not yet assigned	no
dokuwiki	CVE-2022-28919	not yet assigned	no
	TEMP-1036279-2AE30C	not yet assigned	?
flask	CVE-2023-30861	not yet assigned	no
ghostwriter	CVE-2022-24724	not yet assigned	no
git	CVE-2023-25652	not yet assigned	no
	CVE-2023-25815	not yet assigned	no
	CVE-2023-29007	not yet assigned	no
glusterfs	CVE-2022-48340	not yet assigned	no
	CVE-2023-26253	not yet assigned	no
golang-1.16	CVE-2021-29923	not yet assigned	no
golang-1.17	CVE-2022-2879	not yet assigned	no
	CVE-2022-2880	not yet assigned	no
	CVE-2022-27664	not yet assigned	no
	CVE-2022-41715	not yet assigned	no
golang-1.19	CVE-2023-24539	not yet assigned	no
	CVE-2023-24540	not yet assigned	no
	CVE-2023-29400	not yet assigned	no
golang-golang-x-image	CVE-2022-41727	not yet assigned	no
golang-golang-x-net	CVE-2022-41717	not yet assigned	no
	CVE-2022-41721	not yet assigned	no
	CVE-2022-41723	not yet assigned	no
intel-microcode (non-free)	CVE-2022-21123	not yet assigned	no
	CVE-2022-21125	not yet assigned	no
	CVE-2022-21127	not yet assigned	no
	CVE-2022-21151	not yet assigned	no
	CVE-2022-21166	not yet assigned	no
	CVE-2022-21216	not yet assigned	no
	CVE-2022-21233	not yet assigned	no
	CVE-2022-33196	not yet assigned	no
	CVE-2022-33972	not yet assigned	no
	CVE-2022-38090	not yet assigned	no
irssi	CVE-2023-29132	not yet assigned	no
jsoup	CVE-2022-36033	not yet assigned	no
kodi	CVE-2023-23082	not yet assigned	no
	TEMP-0000000-7878AA	not yet assigned	?
lemonldap-ng	CVE-2023-28862	not yet assigned	no
less	CVE-2022-46663	not yet assigned	no
libbpf	CVE-2022-3533	not yet assigned	no
	CVE-2022-3534	not yet assigned	no
	CVE-2022-3606	not yet assigned	no
libowasp-esapi-java	CVE-2022-23457	not yet assigned	no
	CVE-2022-24891	not yet assigned	no
libstb	CVE-2021-42715	not yet assigned	no
	CVE-2021-42716	not yet assigned	no
	CVE-2022-28041	not yet assigned	no
	CVE-2022-28042	not yet assigned	no
libvirt	CVE-2022-0897	not yet assigned	no
	CVE-2023-2700	not yet assigned	no
linux	CVE-2013-7445	not yet assigned	no
	CVE-2018-12928	low	no
	CVE-2019-15213	not yet assigned	no
	CVE-2019-16089	not yet assigned	no
	CVE-2019-19449	not yet assigned	no
	CVE-2019-19814	not yet assigned	no
	CVE-2019-20794	not yet assigned	no
	CVE-2020-14304	not yet assigned	no
	CVE-2020-36694	not yet assigned	no
	CVE-2021-3847	not yet assigned	no
	CVE-2021-3864	not yet assigned	no
	CVE-2022-4543	not yet assigned	no
	CVE-2023-0160	not yet assigned	?
	CVE-2023-0597	not yet assigned	no
	CVE-2023-1192	not yet assigned	?
	CVE-2023-1193	not yet assigned	?
	CVE-2023-1194	not yet assigned	?
	CVE-2023-1380	not yet assigned	no
	CVE-2023-1583	not yet assigned	no
	CVE-2023-1611	not yet assigned	no
	CVE-2023-1859	not yet assigned	no
	CVE-2023-1989	not yet assigned	no
	CVE-2023-1990	not yet assigned	no
	CVE-2023-2002	not yet assigned	no
	CVE-2023-2124	not yet assigned	no
	CVE-2023-2156	not yet assigned	no
	CVE-2023-2176	not yet assigned	no
	CVE-2023-2194	not yet assigned	no
	CVE-2023-2235	not yet assigned	no
	CVE-2023-2269	not yet assigned	no
	CVE-2023-2430	not yet assigned	?
	CVE-2023-2898	not yet assigned	no
	CVE-2023-23005	not yet assigned	no
	CVE-2023-30456	not yet assigned	no
	CVE-2023-31082	not yet assigned	no
	CVE-2023-31083	not yet assigned	no
	CVE-2023-31084	not yet assigned	no
	CVE-2023-31436	not yet assigned	no
	CVE-2023-32233	not yet assigned	no
	CVE-2023-32250	not yet assigned	?
	CVE-2023-32254	not yet assigned	?
	CVE-2023-33203	not yet assigned	no
	CVE-2023-33288	not yet assigned	no
	CVE-2023-34255	not yet assigned	no
	CVE-2023-34256	not yet assigned	no
mediawiki	CVE-2023-29141	not yet assigned	no
node-terser	CVE-2022-25858	not yet assigned	no
nvidia-graphics-drivers (non-free)	CVE-2022-28181	not yet assigned	no
	CVE-2022-28183	not yet assigned	no
	CVE-2022-28184	not yet assigned	no
	CVE-2022-28185	not yet assigned	no
	CVE-2022-28191	not yet assigned	no
	CVE-2022-28192	not yet assigned	no
	CVE-2022-31607	not yet assigned	no
	CVE-2022-31608	not yet assigned	no
	CVE-2022-31615	not yet assigned	no
	CVE-2022-34665	not yet assigned	no
	CVE-2022-34666	not yet assigned	no
	CVE-2022-34670	not yet assigned	no
	CVE-2022-34673	not yet assigned	no
	CVE-2022-34674	not yet assigned	no
	CVE-2022-34675	not yet assigned	no
	CVE-2022-34677	not yet assigned	no
	CVE-2022-34679	not yet assigned	no
	CVE-2022-34680	not yet assigned	no
	CVE-2022-34682	not yet assigned	no
	CVE-2022-34684	not yet assigned	no
	CVE-2022-42254	not yet assigned	no
	CVE-2022-42255	not yet assigned	no
	CVE-2022-42256	not yet assigned	no
	CVE-2022-42257	not yet assigned	no
	CVE-2022-42258	not yet assigned	no
	CVE-2022-42259	not yet assigned	no
	CVE-2022-42260	not yet assigned	no
	CVE-2022-42261	not yet assigned	no
	CVE-2022-42262	not yet assigned	no
	CVE-2022-42263	not yet assigned	no
	CVE-2022-42264	not yet assigned	no
	CVE-2022-42265	not yet assigned	no
	CVE-2023-0180	not yet assigned	no
	CVE-2023-0181	not yet assigned	no
	CVE-2023-0183	not yet assigned	no
	CVE-2023-0184	not yet assigned	no
	CVE-2023-0185	not yet assigned	no
	CVE-2023-0187	not yet assigned	no
	CVE-2023-0188	not yet assigned	no
	CVE-2023-0189	not yet assigned	no
	CVE-2023-0190	not yet assigned	no
	CVE-2023-0191	not yet assigned	no
	CVE-2023-0194	not yet assigned	no
	CVE-2023-0195	not yet assigned	no
	CVE-2023-0198	not yet assigned	no
	CVE-2023-0199	not yet assigned	no
nvidia-graphics-drivers-legacy-390xx (non-free)	CVE-2022-28181	not yet assigned	no
	CVE-2022-28185	not yet assigned	no
	CVE-2022-31607	not yet assigned	no
	CVE-2022-31608	not yet assigned	no
	CVE-2022-31615	not yet assigned	no
	CVE-2022-34665	not yet assigned	no
	CVE-2022-34666	not yet assigned	no
	CVE-2022-34670	not yet assigned	no
	CVE-2022-34674	not yet assigned	no
	CVE-2022-34675	not yet assigned	no
	CVE-2022-34677	not yet assigned	no
	CVE-2022-34680	not yet assigned	no
	CVE-2022-42257	not yet assigned	no
	CVE-2022-42258	not yet assigned	no
	CVE-2022-42259	not yet assigned	no
	CVE-2023-0180	not yet assigned	no
	CVE-2023-0184	not yet assigned	no
	CVE-2023-0185	not yet assigned	no
	CVE-2023-0188	not yet assigned	no
	CVE-2023-0189	not yet assigned	no
	CVE-2023-0190	not yet assigned	no
	CVE-2023-0191	not yet assigned	no
	CVE-2023-0194	not yet assigned	no
	CVE-2023-0195	not yet assigned	no
	CVE-2023-0198	not yet assigned	no
	CVE-2023-0199	not yet assigned	no
odoo	CVE-2021-23166	not yet assigned	no
	CVE-2021-23176	not yet assigned	no
	CVE-2021-23178	not yet assigned	no
	CVE-2021-23186	not yet assigned	no
	CVE-2021-23203	not yet assigned	no
	CVE-2021-26263	not yet assigned	no
	CVE-2021-26947	not yet assigned	no
	CVE-2021-44476	not yet assigned	no
	CVE-2021-44775	not yet assigned	no
	CVE-2021-45071	not yet assigned	no
	CVE-2021-45111	not yet assigned	no
openldap	CVE-2023-2953	not yet assigned	no
openvswitch	CVE-2019-25076	not yet assigned	no
	CVE-2021-36980	not yet assigned	no
	CVE-2022-4337	not yet assigned	no
	CVE-2022-4338	not yet assigned	no
	CVE-2023-1668	not yet assigned	no
otrs2 (non-free)	CVE-2021-36100	not yet assigned	no
	CVE-2021-41182	not yet assigned	no
	CVE-2021-41183	not yet assigned	no
	CVE-2021-41184	not yet assigned	no
	CVE-2022-4427	not yet assigned	no
pyjwt	CVE-2022-29217	not yet assigned	no
python-django	CVE-2022-28346	not yet assigned	no
	CVE-2022-28347	not yet assigned	no
	CVE-2022-34265	not yet assigned	no
	CVE-2022-36359	not yet assigned	no
	CVE-2022-41323	not yet assigned	no
	CVE-2023-23969	not yet assigned	no
	CVE-2023-24580	not yet assigned	no
	CVE-2023-31047	not yet assigned	no
python-werkzeug	CVE-2023-23934	not yet assigned	no
	CVE-2023-25577	not yet assigned	no
qemu	CVE-2019-12067	low	no
	CVE-2020-25741	not yet assigned	no
	CVE-2020-25742	not yet assigned	no
	CVE-2020-25743	not yet assigned	no
	CVE-2020-35503	not yet assigned	no
	CVE-2021-3735	not yet assigned	no
	CVE-2021-20255	not yet assigned	no
	CVE-2022-3872	not yet assigned	no
	CVE-2023-0330	not yet assigned	no
	CVE-2023-1544	not yet assigned	no
redis	CVE-2023-28856	not yet assigned	no
ruby-commonmarker	CVE-2022-39209	not yet assigned	no
	CVE-2023-22483	not yet assigned	no
	CVE-2023-22484	not yet assigned	no
	CVE-2023-22485	not yet assigned	no
	CVE-2023-22486	not yet assigned	no
	CVE-2023-24824	not yet assigned	no
	CVE-2023-26485	not yet assigned	no
ruby-devise-two-factor	CVE-2021-43177	not yet assigned	no
ruby-kubeclient	CVE-2022-0759	not yet assigned	no
ruby-nokogiri	CVE-2022-23476	not yet assigned	no
ruby-sanitize	CVE-2023-23627	not yet assigned	no
ruby-tzinfo	CVE-2022-31163	not yet assigned	no
samba	CVE-2018-14628	not yet assigned	no
sympa	CVE-2020-26880	not yet assigned	no
webkit2gtk	CVE-2021-30887	not yet assigned	no
	CVE-2021-30890	not yet assigned	no
	CVE-2021-30934	not yet assigned	no
	CVE-2021-30936	not yet assigned	no
	CVE-2021-30951	not yet assigned	no
	CVE-2021-30952	not yet assigned	no
	CVE-2021-30953	not yet assigned	no
	CVE-2021-30954	not yet assigned	no
	CVE-2021-30984	not yet assigned	no
	CVE-2022-0108	not yet assigned	no
	CVE-2022-22589	not yet assigned	no
	CVE-2022-22590	not yet assigned	no
	CVE-2022-22592	not yet assigned	no
	CVE-2022-22594	not yet assigned	no
	CVE-2022-22620	not yet assigned	no
	CVE-2022-22624	not yet assigned	no
	CVE-2022-22628	not yet assigned	no
	CVE-2022-22629	not yet assigned	no
	CVE-2022-22637	not yet assigned	no
	CVE-2022-22662	not yet assigned	no
	CVE-2022-22677	not yet assigned	no
	CVE-2022-26700	not yet assigned	no
	CVE-2022-26709	not yet assigned	no
	CVE-2022-26710	not yet assigned	no
	CVE-2022-26716	not yet assigned	no
	CVE-2022-26717	not yet assigned	no
	CVE-2022-26719	not yet assigned	no
	CVE-2022-30293	not yet assigned	no
	CVE-2022-32792	not yet assigned	no
	CVE-2022-32816	not yet assigned	no
	CVE-2022-32885	not yet assigned	no
	CVE-2022-32886	not yet assigned	no
	CVE-2022-32888	not yet assigned	no
	CVE-2022-32891	not yet assigned	no
	CVE-2022-32893	not yet assigned	no
	CVE-2022-32923	not yet assigned	no
	CVE-2022-42799	not yet assigned	no
	CVE-2022-42823	not yet assigned	no
	CVE-2022-42824	not yet assigned	no
	CVE-2022-42826	not yet assigned	no
	CVE-2022-42852	not yet assigned	no
	CVE-2022-42856	not yet assigned	no
	CVE-2022-42863	not yet assigned	no
	CVE-2022-42867	not yet assigned	no
	CVE-2022-46691	not yet assigned	no
	CVE-2022-46692	not yet assigned	no
	CVE-2022-46698	not yet assigned	no
	CVE-2022-46699	not yet assigned	no
	CVE-2022-46700	not yet assigned	no
	CVE-2023-23517	not yet assigned	no
	CVE-2023-23518	not yet assigned	no
	CVE-2023-23529	not yet assigned	no
	CVE-2023-25358	not yet assigned	no
	CVE-2023-25360	not yet assigned	no
	CVE-2023-25361	not yet assigned	no
	CVE-2023-25362	not yet assigned	no
	CVE-2023-25363	not yet assigned	no
	CVE-2023-27932	not yet assigned	no
	CVE-2023-27954	not yet assigned	no
	CVE-2023-28204	not yet assigned	?
	CVE-2023-28205	not yet assigned	no
	CVE-2023-32373	not yet assigned	?
xerial-sqlite-jdbc	CVE-2023-32697	not yet assigned	no
zabbix	CVE-2022-43515	not yet assigned	no
	CVE-2022-46768	not yet assigned	no

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.