Vulnerable source packages among backports for stable

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
apache-jenaCVE-2021-33192not yet assignedno
CVE-2021-39239not yet assignedno
CVE-2022-28890not yet assignedno
claws-mailCVE-2019-10735lowno
cloud-initCVE-2022-2084not yet assigned?
dcmtkCVE-2021-41687not yet assignedno
CVE-2021-41688not yet assignedno
CVE-2021-41689not yet assignedno
CVE-2021-41690not yet assignedno
CVE-2022-2119not yet assignedno
CVE-2022-2120not yet assignedno
CVE-2022-2121not yet assignedno
dokuwikiCVE-2016-7964lowno
CVE-2022-28919not yet assignedno
e2fsprogsCVE-2022-1304not yet assignedno
exim4CVE-2021-38371not yet assignedno
ghostwriterCVE-2022-24724not yet assignedno
gitCVE-2022-24765not yet assignedno
CVE-2022-29187not yet assignedno
golang-1.16CVE-2021-29923not yet assignedno
intel-microcode (non-free)CVE-2022-21123not yet assignedno
CVE-2022-21125not yet assignedno
CVE-2022-21127not yet assignedno
CVE-2022-21151not yet assignedno
CVE-2022-21166not yet assignedno
CVE-2022-21233not yet assigned?
libowasp-esapi-javaCVE-2022-23457not yet assignedno
CVE-2022-24891not yet assignedno
libvirtCVE-2022-0897not yet assignedno
linuxCVE-2013-7445not yet assignedno
CVE-2018-12928lowno
CVE-2019-15213not yet assignedno
CVE-2019-16089not yet assignedno
CVE-2019-19378not yet assignedno
CVE-2019-19449not yet assignedno
CVE-2019-19814not yet assignedno
CVE-2019-20794not yet assignedno
CVE-2020-14304not yet assignedno
CVE-2020-15802not yet assignedno
CVE-2020-26555not yet assignedno
CVE-2020-36516not yet assignedno
CVE-2021-3714not yet assigned?
CVE-2021-3847not yet assignedno
CVE-2021-3864not yet assigned?
CVE-2022-0400not yet assigned?
CVE-2022-1184not yet assigned?
CVE-2022-1247not yet assigned?
CVE-2022-1462not yet assignedno
CVE-2022-1679not yet assignedno
CVE-2022-1882not yet assignedno
CVE-2022-2585not yet assigned?
CVE-2022-2586not yet assigned?
CVE-2022-2588not yet assigned?
CVE-2022-2590not yet assigned?
CVE-2022-20158not yet assignedno
CVE-2022-21505not yet assigned?
CVE-2022-23816not yet assigned?
CVE-2022-23825not yet assignedno
CVE-2022-26373not yet assigned?
CVE-2022-36879not yet assignedno
CVE-2022-36946not yet assignedno
nimCVE-2021-41259not yet assignedno
node-terserCVE-2022-25858not yet assignedno
nvidia-graphics-drivers (non-free)CVE-2022-28181not yet assignedno
CVE-2022-28183not yet assignedno
CVE-2022-28184not yet assignedno
CVE-2022-28185not yet assignedno
CVE-2022-28191not yet assignedno
CVE-2022-28192not yet assignedno
CVE-2022-31607not yet assigned?
CVE-2022-31608not yet assigned?
CVE-2022-31615not yet assigned?
nvidia-graphics-drivers-legacy-390xx (non-free)CVE-2022-28181not yet assignedno
CVE-2022-28185not yet assignedno
CVE-2022-31607not yet assigned?
CVE-2022-31608not yet assigned?
CVE-2022-31615not yet assigned?
openldapCVE-2022-29155not yet assignedno
openvswitchCVE-2021-36980not yet assignedno
otrs2 (non-free)CVE-2021-36100not yet assignedno
CVE-2021-41182not yet assignedno
CVE-2021-41183not yet assignedno
CVE-2021-41184not yet assignedno
pyjwtCVE-2022-29217not yet assignedno
python-djangoCVE-2022-28346not yet assignedno
CVE-2022-28347not yet assignedno
CVE-2022-34265not yet assignedno
CVE-2022-36359not yet assignedno
qemuCVE-2019-12067lowno
CVE-2020-14394not yet assigned?
CVE-2020-25741not yet assignedno
CVE-2020-25742not yet assignedno
CVE-2020-25743not yet assignedno
CVE-2020-35503not yet assignedno
CVE-2021-3507not yet assignedno
CVE-2021-3735not yet assigned?
CVE-2021-20255not yet assignedno
CVE-2022-0216not yet assigned?
CVE-2022-1050not yet assignedno
CVE-2022-35414not yet assignedno
redisCVE-2022-24735not yet assignedno
CVE-2022-24736not yet assignedno
CVE-2022-31144not yet assignedno
ruby-devise-two-factorCVE-2021-43177not yet assignedno
ruby-kubeclientCVE-2022-0759not yet assignedno
webkit2gtkCVE-2021-30887not yet assignedno
CVE-2021-30890not yet assignedno
CVE-2021-30934not yet assignedno
CVE-2021-30936not yet assignedno
CVE-2021-30951not yet assignedno
CVE-2021-30952not yet assignedno
CVE-2021-30953not yet assignedno
CVE-2021-30954not yet assignedno
CVE-2021-30984not yet assignedno
CVE-2022-22589not yet assignedno
CVE-2022-22590not yet assignedno
CVE-2022-22592not yet assignedno
CVE-2022-22594not yet assignedno
CVE-2022-22620not yet assignedno
CVE-2022-22624not yet assigned?
CVE-2022-22628not yet assigned?
CVE-2022-22629not yet assigned?
CVE-2022-22637not yet assigned?
CVE-2022-22662not yet assignedno
CVE-2022-22677not yet assigned?
CVE-2022-26700not yet assigned?
CVE-2022-26709not yet assigned?
CVE-2022-26710not yet assigned?
CVE-2022-26716not yet assigned?
CVE-2022-26717not yet assigned?
CVE-2022-26719not yet assigned?
CVE-2022-30293not yet assignedno
CVE-2022-32792not yet assigned?
CVE-2022-32816not yet assigned?
wolfsslCVE-2022-34293not yet assignedno
zabbixCVE-2022-23132not yet assignedno
CVE-2022-23133not yet assignedno
CVE-2022-23134not yet assignedno
CVE-2022-24349not yet assignedno
CVE-2022-24917not yet assignedno
CVE-2022-24918not yet assignedno
CVE-2022-24919not yet assignedno
CVE-2022-35229not yet assignedno
CVE-2022-35230not yet assignedno

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems