Vulnerable source packages in the testing suite

Candidates for DTSAs

Package	Bug	Urgency	Remote	Status
389-ds-base	CVE-2021-3514	not yet assigned	?	unstable is vulnerable
ansible	CVE-2021-20178	not yet assigned	?	unstable is vulnerable
	CVE-2021-20180	not yet assigned	?	unstable is vulnerable
	CVE-2021-20191	not yet assigned	?	unstable is vulnerable
	CVE-2021-20228	not yet assigned	no	fixed in unstable
aom	CVE-2021-30473	not yet assigned	?	unstable is vulnerable
avahi	CVE-2021-3468	not yet assigned	?	unstable is vulnerable
	CVE-2021-3502	not yet assigned	?	unstable is vulnerable
bind9	CVE-2021-25214	not yet assigned	no	fixed in unstable
	CVE-2021-25215	not yet assigned	no	fixed in unstable
	CVE-2021-25216	not yet assigned	no	fixed in unstable
busybox	CVE-2021-28831	not yet assigned	no	unstable is vulnerable
cakephp	CVE-2020-15400	not yet assigned	no	unstable is vulnerable
ceph	CVE-2020-25678	not yet assigned	no	fixed in unstable
	CVE-2020-27839	not yet assigned	?	fixed in unstable
	CVE-2021-20288	not yet assigned	no	fixed in unstable
chromium	CVE-2021-21201	not yet assigned	no	fixed in unstable
	CVE-2021-21202	not yet assigned	no	fixed in unstable
	CVE-2021-21203	not yet assigned	no	fixed in unstable
	CVE-2021-21204	not yet assigned	no	fixed in unstable
	CVE-2021-21205	not yet assigned	no	fixed in unstable
	CVE-2021-21206	not yet assigned	no	fixed in unstable
	CVE-2021-21207	not yet assigned	no	fixed in unstable
	CVE-2021-21208	not yet assigned	no	fixed in unstable
	CVE-2021-21209	not yet assigned	no	fixed in unstable
	CVE-2021-21210	not yet assigned	no	fixed in unstable
	CVE-2021-21211	not yet assigned	no	fixed in unstable
	CVE-2021-21212	not yet assigned	no	fixed in unstable
	CVE-2021-21213	not yet assigned	no	fixed in unstable
	CVE-2021-21214	not yet assigned	no	fixed in unstable
	CVE-2021-21215	not yet assigned	no	fixed in unstable
	CVE-2021-21216	not yet assigned	no	fixed in unstable
	CVE-2021-21217	not yet assigned	no	fixed in unstable
	CVE-2021-21218	not yet assigned	no	fixed in unstable
	CVE-2021-21219	not yet assigned	no	fixed in unstable
	CVE-2021-21220	not yet assigned	no	fixed in unstable
	CVE-2021-21221	not yet assigned	no	fixed in unstable
	CVE-2021-21222	not yet assigned	no	fixed in unstable
	CVE-2021-21223	not yet assigned	no	fixed in unstable
	CVE-2021-21224	not yet assigned	no	fixed in unstable
	CVE-2021-21225	not yet assigned	no	fixed in unstable
	CVE-2021-21226	not yet assigned	no	fixed in unstable
	CVE-2021-21227	not yet assigned	no	fixed in unstable
	CVE-2021-21228	not yet assigned	no	fixed in unstable
	CVE-2021-21229	not yet assigned	no	fixed in unstable
	CVE-2021-21230	not yet assigned	no	fixed in unstable
	CVE-2021-21231	not yet assigned	no	fixed in unstable
	CVE-2021-21232	not yet assigned	no	fixed in unstable
	CVE-2021-21233	not yet assigned	no	fixed in unstable
cifs-utils	CVE-2021-20208	not yet assigned	no	fixed in unstable
civicrm	CVE-2021-21252	not yet assigned	no	unstable is vulnerable
composer	CVE-2021-29472	not yet assigned	no	fixed in unstable
djvulibre	CVE-2021-3500	not yet assigned	?	unstable is vulnerable
dogtag-pki	CVE-2020-25715	not yet assigned	?	unstable is vulnerable
exiv2	CVE-2021-3482	not yet assigned	no	unstable is vulnerable
	CVE-2021-29457	not yet assigned	no	unstable is vulnerable
	CVE-2021-29458	not yet assigned	no	unstable is vulnerable
	CVE-2021-29463	not yet assigned	no	unstable is vulnerable
	CVE-2021-29464	not yet assigned	no	unstable is vulnerable
	CVE-2021-29470	not yet assigned	no	unstable is vulnerable
	CVE-2021-29473	not yet assigned	no	unstable is vulnerable
file-roller	CVE-2020-36314	not yet assigned	no	fixed in unstable
firmware-nonfree (non-free)	CVE-2020-12313	not yet assigned	no	unstable is vulnerable
	CVE-2020-12317	not yet assigned	no	unstable is vulnerable
	CVE-2020-12319	not yet assigned	no	unstable is vulnerable
	CVE-2020-12321	not yet assigned	no	unstable is vulnerable
gnome-autoar	CVE-2021-28650	not yet assigned	no	unstable is vulnerable
godot	CVE-2021-26825	not yet assigned	no	unstable is vulnerable
	CVE-2021-26826	not yet assigned	no	unstable is vulnerable
golang-1.15	CVE-2020-29510	not yet assigned	no	unstable is vulnerable
	CVE-2020-29511	not yet assigned	no	unstable is vulnerable
golang-github-containers-image	CVE-2021-20291	not yet assigned	no	unstable is vulnerable
golang-github-gin-gonic-gin	CVE-2020-28483	not yet assigned	no	unstable is vulnerable
golang-github-nats-io-jwt	CVE-2020-26521	not yet assigned	no	unstable is vulnerable
	CVE-2020-26892	not yet assigned	no	unstable is vulnerable
golang-github-pires-go-proxyproto	CVE-2021-23351	not yet assigned	no	unstable is vulnerable
golang-github-russellhaering-goxmldsig	CVE-2020-7711	not yet assigned	no	unstable is vulnerable
golang-github-ulikunitz-xz	CVE-2021-29482	not yet assigned	no	unstable is vulnerable
google-oauth-client-java	CVE-2020-7692	not yet assigned	no	unstable is vulnerable
gpac	CVE-2020-23928	not yet assigned	no	unstable is vulnerable
	CVE-2020-23930	not yet assigned	no	unstable is vulnerable
	CVE-2020-23931	not yet assigned	no	unstable is vulnerable
	CVE-2020-23932	not yet assigned	no	unstable is vulnerable
	CVE-2020-35979	not yet assigned	no	unstable is vulnerable
	CVE-2020-35980	not yet assigned	no	unstable is vulnerable
	CVE-2020-35981	not yet assigned	no	unstable is vulnerable
	CVE-2020-35982	not yet assigned	no	unstable is vulnerable
	CVE-2021-28300	not yet assigned	no	unstable is vulnerable
	CVE-2021-29279	not yet assigned	no	unstable is vulnerable
	CVE-2021-30014	not yet assigned	no	unstable is vulnerable
	CVE-2021-30015	not yet assigned	no	unstable is vulnerable
	CVE-2021-30019	not yet assigned	no	unstable is vulnerable
	CVE-2021-30020	not yet assigned	no	unstable is vulnerable
	CVE-2021-30022	not yet assigned	no	unstable is vulnerable
	CVE-2021-30199	not yet assigned	no	unstable is vulnerable
	CVE-2021-31254	not yet assigned	no	unstable is vulnerable
	CVE-2021-31255	not yet assigned	no	unstable is vulnerable
	CVE-2021-31256	not yet assigned	no	unstable is vulnerable
	CVE-2021-31257	not yet assigned	no	unstable is vulnerable
	CVE-2021-31258	not yet assigned	no	unstable is vulnerable
	CVE-2021-31259	not yet assigned	no	unstable is vulnerable
	CVE-2021-31260	not yet assigned	no	unstable is vulnerable
	CVE-2021-31261	not yet assigned	no	unstable is vulnerable
	CVE-2021-31262	not yet assigned	no	unstable is vulnerable
graphviz	CVE-2020-18032	not yet assigned	no	unstable is vulnerable
hivex	CVE-2021-3504	not yet assigned	?	unstable is vulnerable
imagemagick	CVE-2021-20309	not yet assigned	?	unstable is vulnerable
	CVE-2021-20313	not yet assigned	?	unstable is vulnerable
impacket	CVE-2021-31800	not yet assigned	no	unstable is vulnerable
iotjs	CVE-2020-24344	not yet assigned	no	unstable is vulnerable
ircii	CVE-2021-29376	not yet assigned	no	fixed in unstable
jakarta-jmeter	CVE-2019-0187	not yet assigned	no	unstable is vulnerable
jodd	CVE-2018-21234	not yet assigned	no	unstable is vulnerable
kubernetes	CVE-2020-8554	not yet assigned	no	unstable is vulnerable
	CVE-2020-8562	not yet assigned	?	unstable is vulnerable
	CVE-2020-29652	not yet assigned	no	unstable is vulnerable
	CVE-2021-25735	not yet assigned	?	unstable is vulnerable
libapache-poi-java	CVE-2019-12415	not yet assigned	no	unstable is vulnerable
libcaca	CVE-2021-30498	not yet assigned	?	unstable is vulnerable
	CVE-2021-30499	not yet assigned	?	unstable is vulnerable
libgetdata	CVE-2021-20204	not yet assigned	?	unstable is vulnerable
libhibernate-validator-java	CVE-2019-10219	not yet assigned	no	unstable is vulnerable
	CVE-2020-10693	not yet assigned	no	unstable is vulnerable
libnbd	CVE-2021-20286	not yet assigned	no	fixed in unstable
libpdfbox-java	CVE-2021-27807	not yet assigned	no	unstable is vulnerable
	CVE-2021-27906	not yet assigned	no	unstable is vulnerable
libpdfbox2-java	CVE-2021-27807	not yet assigned	no	fixed in unstable
	CVE-2021-27906	not yet assigned	no	fixed in unstable
libphp-phpmailer	CVE-2020-36326	not yet assigned	no	unstable is vulnerable
libwebp	CVE-2018-25009	not yet assigned	?	unstable is vulnerable
	CVE-2018-25010	not yet assigned	?	unstable is vulnerable
	CVE-2018-25011	not yet assigned	?	unstable is vulnerable
	CVE-2018-25012	not yet assigned	?	unstable is vulnerable
	CVE-2018-25013	not yet assigned	?	unstable is vulnerable
	CVE-2018-25014	not yet assigned	?	unstable is vulnerable
	CVE-2020-36328	not yet assigned	?	unstable is vulnerable
	CVE-2020-36329	not yet assigned	?	unstable is vulnerable
	CVE-2020-36330	not yet assigned	?	unstable is vulnerable
	CVE-2020-36331	not yet assigned	?	unstable is vulnerable
	CVE-2020-36332	not yet assigned	?	unstable is vulnerable
libxml-security-java	CVE-2019-12400	not yet assigned	no	unstable is vulnerable
libxml2	CVE-2021-3516	not yet assigned	?	fixed in unstable
	CVE-2021-3517	not yet assigned	?	fixed in unstable
	CVE-2021-3518	not yet assigned	?	fixed in unstable
	CVE-2021-3537	not yet assigned	?	fixed in unstable
linux	CVE-2019-15794	not yet assigned	no	unstable is vulnerable
	CVE-2020-12362	not yet assigned	no	unstable is vulnerable
	CVE-2020-12363	not yet assigned	no	unstable is vulnerable
	CVE-2020-12364	not yet assigned	no	unstable is vulnerable
	CVE-2020-15802	not yet assigned	no	unstable is vulnerable
	CVE-2020-16119	not yet assigned	no	unstable is vulnerable
	CVE-2020-24504	not yet assigned	no	unstable is vulnerable
	CVE-2020-26541	not yet assigned	no	unstable is vulnerable
	CVE-2020-35501	not yet assigned	?	unstable is vulnerable
	CVE-2021-3493	not yet assigned	no	unstable is vulnerable
	CVE-2021-3501	not yet assigned	?	unstable is vulnerable
	CVE-2021-3506	not yet assigned	no	unstable is vulnerable
	CVE-2021-23133	not yet assigned	no	unstable is vulnerable
	CVE-2021-29155	not yet assigned	no	unstable is vulnerable
	CVE-2021-31829	not yet assigned	?	unstable is vulnerable
lua5.3	CVE-2019-6706	not yet assigned	no	unstable is vulnerable
	CVE-2020-24370	not yet assigned	no	unstable is vulnerable
lucene-solr	CVE-2021-27905	not yet assigned	no	unstable is vulnerable
lxc-templates	CVE-2017-18641	not yet assigned	no	unstable is vulnerable
lz4	CVE-2021-3520	not yet assigned	?	fixed in unstable
mapserver	CVE-2021-32062	not yet assigned	?	unstable is vulnerable
maven	CVE-2021-26291	not yet assigned	no	unstable is vulnerable
md4c	CVE-2021-30027	not yet assigned	no	fixed in unstable
mosquitto	CVE-2021-28166	not yet assigned	no	fixed in unstable
mutt	CVE-2021-32055	not yet assigned	no	unstable is vulnerable
neomutt	CVE-2021-32055	not yet assigned	no	unstable is vulnerable
neutron	CVE-2021-20267	not yet assigned	?	unstable is vulnerable
nextcloud-desktop	CVE-2021-22879	not yet assigned	no	unstable is vulnerable
nginx	CVE-2020-36309	not yet assigned	no	unstable is vulnerable
nim	CVE-2021-21372	not yet assigned	no	fixed in unstable
	CVE-2021-21373	not yet assigned	no	fixed in unstable
	CVE-2021-21374	not yet assigned	no	fixed in unstable
nova	CVE-2015-9543	not yet assigned	no	unstable is vulnerable
nss	CVE-2020-12413	not yet assigned	?	unstable is vulnerable
opendmarc	CVE-2020-12272	not yet assigned	no	unstable is vulnerable
openexr	CVE-2021-3474	not yet assigned	no	unstable is vulnerable
	CVE-2021-3475	not yet assigned	no	unstable is vulnerable
	CVE-2021-3476	not yet assigned	no	unstable is vulnerable
	CVE-2021-3477	not yet assigned	no	unstable is vulnerable
	CVE-2021-3478	not yet assigned	no	unstable is vulnerable
	CVE-2021-3479	not yet assigned	no	unstable is vulnerable
	CVE-2021-20296	not yet assigned	no	unstable is vulnerable
	CVE-2021-23169	not yet assigned	?	unstable is vulnerable
openjdk-11	CVE-2021-2163	not yet assigned	no	fixed in unstable
openjdk-17	CVE-2021-2163	not yet assigned	no	fixed in unstable
openjpeg2	CVE-2021-29338	not yet assigned	no	unstable is vulnerable
openrc	CVE-2018-21269	not yet assigned	no	unstable is vulnerable
otrs2 (non-free)	CVE-2021-21252	not yet assigned	no	fixed in unstable
pupnp-1.8	CVE-2020-12695	not yet assigned	no	unstable is vulnerable
	CVE-2020-13848	not yet assigned	no	unstable is vulnerable
	CVE-2021-28302	not yet assigned	no	unstable is vulnerable
	CVE-2021-29462	not yet assigned	no	unstable is vulnerable
pygments	CVE-2021-27291	not yet assigned	no	unstable is vulnerable
pypy3	CVE-2021-3426	not yet assigned	?	fixed in unstable
python-autobahn	CVE-2020-35678	not yet assigned	no	unstable is vulnerable
python-babel	CVE-2021-20095	not yet assigned	no	unstable is vulnerable
python-django	CVE-2021-31542	not yet assigned	no	fixed in unstable
python-django-celery-results	CVE-2020-17495	not yet assigned	no	unstable is vulnerable
python-django-registration	CVE-2021-21416	not yet assigned	no	unstable is vulnerable
python-httplib2	CVE-2021-21240	not yet assigned	no	unstable is vulnerable
python-markdown2	CVE-2021-26813	not yet assigned	no	unstable is vulnerable
python-rsa	CVE-2020-13757	not yet assigned	no	unstable is vulnerable
	CVE-2020-25658	not yet assigned	no	unstable is vulnerable
python-urllib3	CVE-2021-28363	not yet assigned	no	unstable is vulnerable
python3.9	CVE-2021-29921	not yet assigned	?	unstable is vulnerable
pyyaml	CVE-2020-14343	not yet assigned	no	unstable is vulnerable
qemu	CVE-2020-15469	low	no	unstable is vulnerable
	CVE-2020-17380	not yet assigned	no	fixed in unstable
	CVE-2021-3392	not yet assigned	no	fixed in unstable
	CVE-2021-3409	not yet assigned	no	fixed in unstable
rails	CVE-2021-22885	not yet assigned	?	unstable is vulnerable
	CVE-2021-22902	not yet assigned	?	unstable is vulnerable
	CVE-2021-22904	not yet assigned	?	unstable is vulnerable
re2c	CVE-2018-21232	not yet assigned	no	unstable is vulnerable
redis	CVE-2021-29477	not yet assigned	no	fixed in unstable
	CVE-2021-29478	not yet assigned	no	fixed in unstable
resteasy3.0	CVE-2020-25633	not yet assigned	no	unstable is vulnerable
	CVE-2020-25724	not yet assigned	?	unstable is vulnerable
ruby-sidekiq	CVE-2021-30151	not yet assigned	no	unstable is vulnerable
ruby-twitter-stream	CVE-2020-24392	not yet assigned	no	unstable is vulnerable
rubygems	CVE-2020-36327	not yet assigned	no	unstable is vulnerable
rust-http	CVE-2019-25009	not yet assigned	no	unstable is vulnerable
rust-hyper	CVE-2021-21299	not yet assigned	no	unstable is vulnerable
rust-lock-api	CVE-2020-35910	not yet assigned	no	unstable is vulnerable
	CVE-2020-35911	not yet assigned	no	unstable is vulnerable
	CVE-2020-35912	not yet assigned	no	unstable is vulnerable
	CVE-2020-35913	not yet assigned	no	unstable is vulnerable
	CVE-2020-35914	not yet assigned	no	unstable is vulnerable
rust-pleaser	CVE-2021-31153	not yet assigned	?	fixed in unstable
	CVE-2021-31154	not yet assigned	?	fixed in unstable
	CVE-2021-31155	not yet assigned	?	fixed in unstable
rust-rgb	CVE-2020-25016	not yet assigned	no	unstable is vulnerable
rust-sized-chunks	CVE-2020-25791	not yet assigned	no	unstable is vulnerable
	CVE-2020-25792	not yet assigned	no	unstable is vulnerable
	CVE-2020-25793	not yet assigned	no	unstable is vulnerable
	CVE-2020-25794	not yet assigned	no	unstable is vulnerable
	CVE-2020-25795	not yet assigned	no	unstable is vulnerable
	CVE-2020-25796	not yet assigned	no	unstable is vulnerable
rustc	CVE-2020-36317	not yet assigned	no	unstable is vulnerable
	CVE-2020-36318	not yet assigned	no	unstable is vulnerable
	CVE-2020-36323	not yet assigned	no	unstable is vulnerable
	CVE-2021-28875	not yet assigned	no	unstable is vulnerable
	CVE-2021-28876	not yet assigned	no	unstable is vulnerable
	CVE-2021-28877	not yet assigned	no	unstable is vulnerable
	CVE-2021-28878	not yet assigned	no	unstable is vulnerable
	CVE-2021-28879	not yet assigned	no	unstable is vulnerable
	CVE-2021-31162	not yet assigned	no	unstable is vulnerable
salt	CVE-2021-31607	not yet assigned	no	fixed in unstable
samba	CVE-2021-20254	not yet assigned	no	fixed in unstable
scrollz	CVE-2021-29376	not yet assigned	no	unstable is vulnerable
seafile-client	CVE-2021-30146	not yet assigned	no	unstable is vulnerable
shiro	CVE-2019-12422	low	no	unstable is vulnerable
	CVE-2020-1957	not yet assigned	no	unstable is vulnerable
	CVE-2020-11989	not yet assigned	no	unstable is vulnerable
	CVE-2020-13933	not yet assigned	no	unstable is vulnerable
	CVE-2020-17510	not yet assigned	no	unstable is vulnerable
	CVE-2020-17523	not yet assigned	no	unstable is vulnerable
slic3r	CVE-2020-28590	not yet assigned	no	unstable is vulnerable
software-properties	CVE-2020-15709	not yet assigned	no	unstable is vulnerable
syncthing	CVE-2021-21404	not yet assigned	no	unstable is vulnerable
three.js	CVE-2020-28496	not yet assigned	no	unstable is vulnerable
thrift	CVE-2019-11939	not yet assigned	no	unstable is vulnerable
	CVE-2020-13949	not yet assigned	no	unstable is vulnerable
webkit2gtk	CVE-2021-1788	not yet assigned	no	fixed in unstable
	CVE-2021-1844	not yet assigned	no	fixed in unstable
	CVE-2021-1871	not yet assigned	no	fixed in unstable
wget	CVE-2021-31879	not yet assigned	no	unstable is vulnerable
wpewebkit	CVE-2021-1788	not yet assigned	no	fixed in unstable
	CVE-2021-1844	not yet assigned	no	fixed in unstable
	CVE-2021-1871	not yet assigned	no	fixed in unstable
xen	CVE-2021-28687	not yet assigned	?	unstable is vulnerable
xmlgraphics-commons	CVE-2020-11988	not yet assigned	no	unstable is vulnerable
xscreensaver	CVE-2021-31523	not yet assigned	no	unstable is vulnerable
zypper	CVE-2017-9271	low	no	unstable is vulnerable

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.