Vulnerable source packages among backports for stable

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
antCVE-2018-10886not yet assignedno
TEMP-0904191-9063D5not yet assigned?
bind9CVE-2018-5740not yet assigned?
botanCVE-2018-12435low**no
CVE-2018-9860medium**yes
glusterfsCVE-2018-10841medium**yes
CVE-2018-10904not yet assignedno
CVE-2018-10907not yet assignedno
CVE-2018-10911not yet assignedno
CVE-2018-10913not yet assignedno
CVE-2018-10914not yet assignedno
CVE-2018-10923not yet assignedno
CVE-2018-10926not yet assignedno
CVE-2018-10927not yet assignedno
CVE-2018-10928not yet assignedno
CVE-2018-10929not yet assignedno
CVE-2018-10930not yet assignedno
h2oCVE-2018-0608high**yes
htslibCVE-2018-13843lowyes
CVE-2018-13844lowyes
CVE-2018-13845lowyes
jetty9CVE-2017-7656lowyes
CVE-2017-7657lowyes
CVE-2017-7658lowyes
CVE-2018-12536lowyes
jrubyCVE-2018-1000073medium**yes
CVE-2018-1000074medium**yes
CVE-2018-1000075medium**yes
CVE-2018-1000076high**yes
CVE-2018-1000077medium**yes
CVE-2018-1000078medium**yes
CVE-2018-1000079medium**yes
knot-resolverCVE-2018-10920not yet assignedno
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-10723medium**no
CVE-2016-8660lowno
CVE-2017-0630low**yes
CVE-2017-1000379high**no
CVE-2018-1000026medium**yes
CVE-2018-1128medium**yes
CVE-2018-1129low**yes
CVE-2018-12896low**no
CVE-2018-12928lowno
CVE-2018-12929medium**no
CVE-2018-12930high**no
CVE-2018-12931high**no
CVE-2018-13053medium**no
CVE-2018-13096medium**yes
CVE-2018-13097medium**yes
CVE-2018-13098medium**yes
CVE-2018-13099medium**yes
CVE-2018-13100medium**yes
CVE-2018-14609not yet assignedno
CVE-2018-14610not yet assignedno
CVE-2018-14611not yet assignedno
CVE-2018-14612not yet assignedno
CVE-2018-14613not yet assignedno
CVE-2018-14614not yet assignedno
CVE-2018-14615not yet assignedno
CVE-2018-14616not yet assignedno
CVE-2018-14617not yet assignedno
CVE-2018-14625not yet assignedno
CVE-2018-15471not yet assignedno
CVE-2018-17182not yet assigned?
CVE-2018-3693medium**no
CVE-2018-7755low**no
linux-grsecCVE-2017-5715medium**no
CVE-2017-5753medium**no
CVE-2017-5754medium**no
modsecurity-crsCVE-2018-16384lowno
nginxCVE-2013-0337lowyes
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-5715medium**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-5753medium**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-5754medium**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-6266medium**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-6267medium**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-6272high**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2018-6249high**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2018-6253medium**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-6266medium**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-6267medium**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-6272high**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2018-6249high**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2018-6253medium**no
openjdk-9CVE-2017-10274medium**yes
CVE-2017-10281medium**yes
CVE-2017-10285medium**yes
CVE-2017-10295medium**yes
CVE-2017-10345low**yes
CVE-2017-10346medium**yes
CVE-2017-10347medium**yes
CVE-2017-10348medium**yes
CVE-2017-10349medium**yes
CVE-2017-10350medium**yes
CVE-2017-10355medium**yes
CVE-2017-10356low**no
CVE-2017-10357medium**yes
CVE-2017-10388medium**yes
CVE-2018-2579medium**yes
CVE-2018-2582medium**yes
CVE-2018-2588medium**yes
CVE-2018-2599medium**yes
CVE-2018-2602low**no
CVE-2018-2603medium**yes
CVE-2018-2618medium**yes
CVE-2018-2629low**yes
CVE-2018-2633medium**yes
CVE-2018-2634medium**yes
CVE-2018-2637medium**yes
CVE-2018-2641low**yes
CVE-2018-2663medium**yes
CVE-2018-2677medium**yes
CVE-2018-2678medium**yes
otrs2 (non-free)CVE-2018-14593not yet assignedno
password-storeCVE-2018-12356high**yes
pycryptodomeCVE-2018-6594medium**yes
python-djangoCVE-2018-14574not yet assignedno
qpdfCVE-2018-9918medium**yes
ruby-grapeCVE-2018-3769medium**yes
ruby-net-ldapCVE-2017-17718medium**yes
ruby-sanitizeCVE-2018-3740medium**yes
suricataCVE-2018-14568not yet assignedno
systemdCVE-2018-6954high**no
wesnoth-1.14CVE-2018-1999023not yet assignedno
wineCVE-2018-12932lowyes
CVE-2018-12933lowyes
zabbixCVE-2017-2826lowyes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems