Vulnerable source packages in the testing suite

Package	Bug	Urgency	Remote
9base	CVE-2014-1935	low	???	unstable is vulnerable
android-tools	CVE-2012-5564	not yet assigned	???	unstable is vulnerable
apache2	CVE-2013-5704	not yet assigned	???	unstable is vulnerable
apt-xapian-index	CVE-2013-1064	low	???	unstable is vulnerable
augeas	CVE-2013-6412	not yet assigned	???	unstable is vulnerable
autotrace	CVE-2013-1953	low	???	unstable is vulnerable
axiom	CVE-2014-1640	low	???	unstable is vulnerable
bind9	CVE-2014-0591	not yet assigned	???	fixed in unstable
biomaj-watcher (contrib)	CVE-2013-1636	low	???	unstable is vulnerable
blender	CVE-2010-5105	low	???	unstable is vulnerable
cacti	CVE-2014-2327	not yet assigned	???	unstable is vulnerable
check-mk	CVE-2014-2329	not yet assigned	???	unstable is vulnerable
	CVE-2014-2330	not yet assigned	???	unstable is vulnerable
	CVE-2014-2331	not yet assigned	???	unstable is vulnerable
	CVE-2014-2332	not yet assigned	???	unstable is vulnerable
chromium-browser	CVE-2014-1716	not yet assigned	???	fixed in unstable
	CVE-2014-1717	not yet assigned	???	fixed in unstable
	CVE-2014-1718	not yet assigned	???	fixed in unstable
	CVE-2014-1719	not yet assigned	???	fixed in unstable
	CVE-2014-1720	not yet assigned	???	fixed in unstable
	CVE-2014-1721	not yet assigned	???	fixed in unstable
	CVE-2014-1722	not yet assigned	???	fixed in unstable
	CVE-2014-1723	not yet assigned	???	fixed in unstable
	CVE-2014-1724	not yet assigned	???	fixed in unstable
	CVE-2014-1725	not yet assigned	???	fixed in unstable
	CVE-2014-1726	not yet assigned	???	fixed in unstable
	CVE-2014-1727	not yet assigned	???	fixed in unstable
	CVE-2014-1728	not yet assigned	???	fixed in unstable
	CVE-2014-1729	not yet assigned	???	fixed in unstable
cinder	CVE-2013-2255	not yet assigned	???	unstable is vulnerable
claws-mail	CVE-2014-2576	not yet assigned	???	unstable is vulnerable
collabtive	CVE-2010-5285	low	???	unstable is vulnerable
devscripts	CVE-2014-1833	low	???	unstable is vulnerable
dovecot	CVE-2013-6171	low	???	unstable is vulnerable
eglibc	CVE-2012-3406	low	???	unstable is vulnerable
	CVE-2013-2207	low	???	unstable is vulnerable
ekiga	CVE-2013-1864	low	???	unstable is vulnerable
elfutils	CVE-2014-0172	low	???	fixed in unstable
elixir	CVE-2012-2146	low	???	unstable is vulnerable
eyed3	CVE-2014-1934	low	???	unstable is vulnerable
freeradius	CVE-2014-2015	low	???	unstable is vulnerable
freetype	CVE-2014-2240	not yet assigned	???	unstable is vulnerable
	CVE-2014-2241	not yet assigned	???	unstable is vulnerable
fwsnort	CVE-2014-0039	low	???	unstable is vulnerable
gamera	CVE-2014-1937	low	???	unstable is vulnerable
ganglia-web	CVE-2013-6395	not yet assigned	???	unstable is vulnerable
gcc-4.6	CVE-2002-2439	low	???	unstable is vulnerable
gcc-4.7	CVE-2002-2439	low	???	unstable is vulnerable
gdm3	CVE-2013-7273	low	???	unstable is vulnerable
gnome-shell	CVE-2013-7220	not yet assigned	???	unstable is vulnerable
	CVE-2013-7221	not yet assigned	???	unstable is vulnerable
gnustep-base	CVE-2014-2980	not yet assigned	???	unstable is vulnerable
graphicsmagick	CVE-2014-1947	not yet assigned	???	unstable is vulnerable
hawtjni	CVE-2013-2035	low	???	unstable is vulnerable
ibm-3270 (non-free)	CVE-2012-5662	not yet assigned	???	unstable is vulnerable
jbigkit	CVE-2013-6369	not yet assigned	???	fixed in unstable
kde-runtime	CVE-2013-7252	not yet assigned	???	unstable is vulnerable
kdeplasma-addons	CVE-2013-2120	low	???	unstable is vulnerable
keystone	CVE-2013-2255	not yet assigned	???	unstable is vulnerable
kfreebsd-10	CVE-2011-2393	low	???	unstable is vulnerable
	CVE-2012-4576	not yet assigned	???	unstable is vulnerable
kfreebsd-8	CVE-2011-2393	low	???	unstable is vulnerable
	CVE-2012-5363	low	???	unstable is vulnerable
	CVE-2012-5365	low	???	unstable is vulnerable
	CVE-2013-3077	not yet assigned	???	unstable is vulnerable
	CVE-2013-3266	not yet assigned	???	unstable is vulnerable
	CVE-2013-4851	not yet assigned	???	unstable is vulnerable
	CVE-2013-5209	not yet assigned	???	unstable is vulnerable
	CVE-2013-5691	not yet assigned	???	unstable is vulnerable
	CVE-2013-5710	not yet assigned	???	unstable is vulnerable
	CVE-2014-1453	not yet assigned	???	unstable is vulnerable
kfreebsd-9	CVE-2011-2393	low	???	unstable is vulnerable
	CVE-2012-5363	low	???	unstable is vulnerable
	CVE-2012-5365	low	???	unstable is vulnerable
	CVE-2014-1453	not yet assigned	???	unstable is vulnerable
lcms	CVE-2014-0459	not yet assigned	???	unstable is vulnerable
lcms2	CVE-2014-0459	low	???	unstable is vulnerable
libav	CVE-2011-3935	not yet assigned	???	unstable is vulnerable
	CVE-2012-6617	not yet assigned	???	unstable is vulnerable
	CVE-2013-0851	not yet assigned	???	unstable is vulnerable
	CVE-2013-0852	not yet assigned	???	unstable is vulnerable
	CVE-2013-7021	not yet assigned	???	unstable is vulnerable
	CVE-2014-2097	not yet assigned	???	unstable is vulnerable
	CVE-2014-2098	not yet assigned	???	unstable is vulnerable
	CVE-2014-2099	not yet assigned	???	unstable is vulnerable
	CVE-2014-2263	not yet assigned	???	unstable is vulnerable
libdata-uuid-perl	CVE-2013-4184	low	???	unstable is vulnerable
libgd2	CVE-2014-2497	low	???	unstable is vulnerable
libmms	CVE-2014-2892	not yet assigned	???	unstable is vulnerable
libnet-server-perl	CVE-2013-1841	low	???	unstable is vulnerable
libplrpc-perl	CVE-2013-7284	high	???	unstable is vulnerable
libspoon-perl	CVE-2012-6143	low	???	unstable is vulnerable
libuser	CVE-2012-5630	low	???	unstable is vulnerable
	CVE-2012-5644	low	???	unstable is vulnerable
libv8-3.14	CVE-2013-2632	not yet assigned	???	unstable is vulnerable
	CVE-2013-2838	not yet assigned	???	unstable is vulnerable
	CVE-2013-2882	not yet assigned	???	unstable is vulnerable
	CVE-2013-2919	not yet assigned	???	unstable is vulnerable
	CVE-2013-6638	not yet assigned	???	unstable is vulnerable
	CVE-2013-6649	not yet assigned	???	unstable is vulnerable
	CVE-2013-6650	not yet assigned	???	unstable is vulnerable
	CVE-2013-6668	not yet assigned	???	unstable is vulnerable
	CVE-2014-1704	not yet assigned	???	unstable is vulnerable
	CVE-2014-1705	not yet assigned	???	unstable is vulnerable
	CVE-2014-1716	not yet assigned	???	unstable is vulnerable
	CVE-2014-1717	not yet assigned	???	unstable is vulnerable
	CVE-2014-1729	not yet assigned	???	unstable is vulnerable
libvirt	CVE-2013-6456	not yet assigned	???	unstable is vulnerable
linux	CVE-2014-0155	low	???	unstable is vulnerable
	CVE-2012-4542	not yet assigned	???	unstable is vulnerable
	CVE-2014-1690	not yet assigned	???	unstable is vulnerable
	CVE-2014-2851	not yet assigned	???	unstable is vulnerable
llvm-toolchain-3.3	CVE-2014-2893	not yet assigned	???	unstable is vulnerable
llvm-toolchain-3.4	CVE-2014-2893	not yet assigned	???	unstable is vulnerable
lucene-solr	CVE-2012-6612	not yet assigned	???	unstable is vulnerable
mariadb-5.5	CVE-2014-0384	not yet assigned	???	unstable is vulnerable
	CVE-2014-2419	not yet assigned	???	unstable is vulnerable
	CVE-2014-2430	not yet assigned	???	unstable is vulnerable
	CVE-2014-2431	not yet assigned	???	unstable is vulnerable
	CVE-2014-2432	not yet assigned	???	unstable is vulnerable
	CVE-2014-2436	not yet assigned	???	unstable is vulnerable
	CVE-2014-2438	not yet assigned	???	unstable is vulnerable
	CVE-2014-2440	not yet assigned	???	unstable is vulnerable
memcached	CVE-2013-7291	low	???	unstable is vulnerable
miniupnpd	CVE-2013-1461	not yet assigned	???	unstable is vulnerable
	CVE-2013-1462	not yet assigned	???	unstable is vulnerable
mojarra	CVE-2013-5855	low	???	unstable is vulnerable
moodle	CVE-2013-3630	not yet assigned	???	unstable is vulnerable
mysql-5.5	CVE-2012-5615	low	???	unstable is vulnerable
	CVE-2014-0001	low	???	unstable is vulnerable
	CVE-2012-2750	not yet assigned	???	unstable is vulnerable
	CVE-2014-0384	not yet assigned	???	unstable is vulnerable
	CVE-2014-2419	not yet assigned	???	unstable is vulnerable
	CVE-2014-2430	not yet assigned	???	unstable is vulnerable
	CVE-2014-2431	not yet assigned	???	unstable is vulnerable
	CVE-2014-2432	not yet assigned	???	unstable is vulnerable
	CVE-2014-2436	not yet assigned	???	unstable is vulnerable
	CVE-2014-2438	not yet assigned	???	unstable is vulnerable
	CVE-2014-2440	not yet assigned	???	unstable is vulnerable
nagios-nrpe	CVE-2014-2913	low	???	unstable is vulnerable
nagios3	CVE-2013-7107	low	???	unstable is vulnerable
	CVE-2013-7108	low	???	unstable is vulnerable
	CVE-2013-7205	low	???	unstable is vulnerable
net-snmp	CVE-2012-6151	low	???	fixed in unstable
	CVE-2014-2284	not yet assigned	???	fixed in unstable
network-manager	CVE-2012-1096	low	???	unstable is vulnerable
neutron	CVE-2014-0187	not yet assigned	???	unstable is vulnerable
nginx	CVE-2011-4968	low	???	unstable is vulnerable
node-connect	CVE-2013-7370	not yet assigned	???	unstable is vulnerable
nova	CVE-2013-0326	low	???	unstable is vulnerable
	CVE-2013-2255	not yet assigned	???	unstable is vulnerable
	CVE-2013-6491	not yet assigned	???	unstable is vulnerable
	CVE-2014-2573	not yet assigned	???	unstable is vulnerable
ntp	CVE-2013-5211	low	???	unstable is vulnerable
oath-toolkit	CVE-2013-7322	low	???	unstable is vulnerable
obby	CVE-2011-4092	low	???	unstable is vulnerable
offlineimap	CVE-2010-4533	low	???	unstable is vulnerable
opencryptoki	CVE-2012-4454	low	???	unstable is vulnerable
	CVE-2012-4455	low	???	unstable is vulnerable
openjdk-6	CVE-2012-5373	low	???	unstable is vulnerable
openjdk-7	CVE-2012-5373	low	???	unstable is vulnerable
	CVE-2014-1876	low	???	fixed in unstable
	CVE-2013-5838	not yet assigned	???	unstable is vulnerable
	CVE-2014-0429	not yet assigned	???	fixed in unstable
	CVE-2014-0446	not yet assigned	???	fixed in unstable
	CVE-2014-0451	not yet assigned	???	fixed in unstable
	CVE-2014-0452	not yet assigned	???	fixed in unstable
	CVE-2014-0453	not yet assigned	???	fixed in unstable
	CVE-2014-0454	not yet assigned	???	fixed in unstable
	CVE-2014-0455	not yet assigned	???	fixed in unstable
	CVE-2014-0456	not yet assigned	???	fixed in unstable
	CVE-2014-0457	not yet assigned	???	fixed in unstable
	CVE-2014-0458	not yet assigned	???	fixed in unstable
	CVE-2014-0460	not yet assigned	???	fixed in unstable
	CVE-2014-0461	not yet assigned	???	fixed in unstable
	CVE-2014-2397	not yet assigned	???	fixed in unstable
	CVE-2014-2398	not yet assigned	???	fixed in unstable
	CVE-2014-2402	not yet assigned	???	fixed in unstable
	CVE-2014-2403	not yet assigned	???	fixed in unstable
	CVE-2014-2412	not yet assigned	???	fixed in unstable
	CVE-2014-2413	not yet assigned	???	fixed in unstable
	CVE-2014-2414	not yet assigned	???	fixed in unstable
	CVE-2014-2421	not yet assigned	???	fixed in unstable
	CVE-2014-2423	not yet assigned	???	fixed in unstable
	CVE-2014-2427	not yet assigned	???	fixed in unstable
openldap	CVE-2013-4449	low	???	unstable is vulnerable
openslp-dfsg	CVE-2012-4428	low	???	unstable is vulnerable
owncloud	CVE-2012-5236	low	???	unstable is vulnerable
pacemaker	CVE-2013-0281	low	???	fixed in unstable
pam	CVE-2013-7041	low	???	unstable is vulnerable
	CVE-2014-2583	low	???	unstable is vulnerable
perdition	CVE-2013-4584	low	???	unstable is vulnerable
php5	CVE-2010-4657	low	???	unstable is vulnerable
	CVE-2014-2497	not yet assigned	???	unstable is vulnerable
phpbb3	TEMP-0000000-B0A7A6	low	???	unstable is vulnerable
pillow	CVE-2014-1932	not yet assigned	???	unstable is vulnerable
	CVE-2014-1933	not yet assigned	???	unstable is vulnerable
planet-venus	CVE-2011-1156	low	???	unstable is vulnerable
	CVE-2011-1157	low	???	unstable is vulnerable
	CVE-2011-1158	low	???	unstable is vulnerable
postgresql-9.1	CVE-2014-0061	low	???	unstable is vulnerable
	CVE-2014-2669	not yet assigned	???	unstable is vulnerable
pyrad	CVE-2013-0342	low	???	unstable is vulnerable
python-django	CVE-2014-0472	not yet assigned	???	fixed in unstable
	CVE-2014-0473	not yet assigned	???	fixed in unstable
	CVE-2014-0474	not yet assigned	???	fixed in unstable
python-rply	CVE-2014-1938	not yet assigned	???	unstable is vulnerable
python2.7	CVE-2013-1752	low	???	unstable is vulnerable
	CVE-2013-1753	low	???	unstable is vulnerable
	CVE-2013-7040	low	???	unstable is vulnerable
python3.3	CVE-2013-1752	low	???	unstable is vulnerable
	CVE-2013-1753	low	???	unstable is vulnerable
	CVE-2013-7040	low	???	unstable is vulnerable
	CVE-2014-2667	not yet assigned	???	unstable is vulnerable
python3.4	CVE-2013-1752	low	???	unstable is vulnerable
	CVE-2013-1753	low	???	unstable is vulnerable
	CVE-2014-2667	not yet assigned	???	unstable is vulnerable
qemu	CVE-2013-4148	low	???	unstable is vulnerable
	CVE-2013-4149	low	???	unstable is vulnerable
	CVE-2013-4150	low	???	unstable is vulnerable
	CVE-2013-4151	low	???	unstable is vulnerable
	CVE-2013-4526	low	???	unstable is vulnerable
	CVE-2013-4527	low	???	unstable is vulnerable
	CVE-2013-4529	low	???	unstable is vulnerable
	CVE-2013-4531	low	???	unstable is vulnerable
	CVE-2013-4532	low	???	unstable is vulnerable
	CVE-2013-4533	low	???	unstable is vulnerable
	CVE-2013-4534	low	???	unstable is vulnerable
	CVE-2013-4535	low	???	unstable is vulnerable
	CVE-2013-4536	low	???	unstable is vulnerable
	CVE-2013-4537	low	???	unstable is vulnerable
	CVE-2013-4538	low	???	unstable is vulnerable
	CVE-2013-4539	low	???	unstable is vulnerable
	CVE-2013-4540	low	???	unstable is vulnerable
	CVE-2013-4541	low	???	unstable is vulnerable
	CVE-2013-4542	low	???	unstable is vulnerable
	CVE-2013-6399	low	???	unstable is vulnerable
	CVE-2013-4530	not yet assigned	???	unstable is vulnerable
	CVE-2013-4544	not yet assigned	???	fixed in unstable
	CVE-2014-0142	not yet assigned	???	fixed in unstable
	CVE-2014-0143	not yet assigned	???	fixed in unstable
	CVE-2014-0144	not yet assigned	???	fixed in unstable
	CVE-2014-0145	not yet assigned	???	fixed in unstable
	CVE-2014-0146	not yet assigned	???	fixed in unstable
	CVE-2014-0147	not yet assigned	???	fixed in unstable
	CVE-2014-0148	not yet assigned	???	fixed in unstable
	CVE-2014-0182	not yet assigned	???	unstable is vulnerable
	CVE-2014-2894	not yet assigned	???	fixed in unstable
rails-4.0	CVE-2014-0080	not yet assigned	???	unstable is vulnerable
	CVE-2014-0081	not yet assigned	???	unstable is vulnerable
readline6	CVE-2014-2524	low	???	unstable is vulnerable
redmine	CVE-2014-1985	not yet assigned	???	unstable is vulnerable
ruby-rack-ssl	CVE-2014-2538	low	???	unstable is vulnerable
ruby1.9.1	CVE-2011-3624	low	???	unstable is vulnerable
	CVE-2014-2734	not yet assigned	???	unstable is vulnerable
ruby2.0	CVE-2014-2734	not yet assigned	???	unstable is vulnerable
ruby2.1	CVE-2014-2734	not yet assigned	???	unstable is vulnerable
smb4k	CVE-2014-2581	low	???	unstable is vulnerable
speech-dispatcher	CVE-2014-1724	low	???	unstable is vulnerable
tiff	CVE-2013-4243	low	???	unstable is vulnerable
transifex-client	CVE-2013-7110	low	???	unstable is vulnerable
tweepy	CVE-2012-5825	low	???	unstable is vulnerable
udns	CVE-2008-1447	not yet assigned	???	unstable is vulnerable
virtualenvwrapper	TEMP-0745580-D90EF4	not yet assigned	???	unstable is vulnerable
vlc	CVE-2013-6933	not yet assigned	???	unstable is vulnerable
w3af	CVE-2013-2099	low	???	unstable is vulnerable
web2ldap	CVE-2013-7258	low	???	unstable is vulnerable
wireshark	CVE-2014-2907	not yet assigned	???	unstable is vulnerable
wordpress	CVE-2012-5868	low	???	unstable is vulnerable
xen	CVE-2013-1442	not yet assigned	???	unstable is vulnerable
	CVE-2013-4355	not yet assigned	???	unstable is vulnerable
	CVE-2013-4356	not yet assigned	???	unstable is vulnerable
	CVE-2013-4361	not yet assigned	???	unstable is vulnerable
	CVE-2013-4368	not yet assigned	???	unstable is vulnerable
	CVE-2013-4369	not yet assigned	???	unstable is vulnerable
	CVE-2013-4370	not yet assigned	???	unstable is vulnerable
	CVE-2013-4371	not yet assigned	???	unstable is vulnerable
	CVE-2013-4494	not yet assigned	???	unstable is vulnerable
	CVE-2013-4551	not yet assigned	???	unstable is vulnerable
	CVE-2013-4553	not yet assigned	???	unstable is vulnerable
	CVE-2013-6375	not yet assigned	???	unstable is vulnerable
	CVE-2013-6400	not yet assigned	???	unstable is vulnerable
	CVE-2014-1642	not yet assigned	???	unstable is vulnerable
	CVE-2014-1666	not yet assigned	???	unstable is vulnerable
	CVE-2014-1895	not yet assigned	???	unstable is vulnerable
	CVE-2014-1896	not yet assigned	???	unstable is vulnerable
	CVE-2014-1950	not yet assigned	???	unstable is vulnerable
	CVE-2014-2580	not yet assigned	???	unstable is vulnerable
	CVE-2014-2599	not yet assigned	???	unstable is vulnerable
xfe	CVE-2014-2079	not yet assigned	???	unstable is vulnerable
xorg-server	CVE-2013-6424	low	???	unstable is vulnerable
xymon	CVE-2013-4173	not yet assigned	???	unstable is vulnerable
zendframework	CVE-2014-2681	not yet assigned	???	fixed in unstable
	CVE-2014-2682	not yet assigned	???	fixed in unstable
	CVE-2014-2683	not yet assigned	???	fixed in unstable
	CVE-2014-2684	not yet assigned	???	fixed in unstable
	CVE-2014-2685	not yet assigned	???	fixed in unstable
zookeeper	CVE-2014-0085	not yet assigned	???	unstable is vulnerable

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.

Home - Testing Security Team - Debian Security - Source (SVN)