Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416medium**yes
CVE-2017-7551not yet assignedno
accountsserviceCVE-2012-6655low?
aodhCVE-2017-12440not yet assignedno
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
avahiCVE-2017-6519medium**yes
batikCVE-2017-5662high**yes
bind9CVE-2016-6170medium**yes
binutilsCVE-2017-12448medium**yes
CVE-2017-12449medium**yes
CVE-2017-12450medium**yes
CVE-2017-12451medium**yes
CVE-2017-12452medium**yes
CVE-2017-12453medium**yes
CVE-2017-12454medium**yes
CVE-2017-12455medium**yes
CVE-2017-12456medium**yes
CVE-2017-12457medium**yes
CVE-2017-12458medium**yes
CVE-2017-12459medium**yes
CVE-2017-12799not yet assignedno
CVE-2017-12967not yet assigned?
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxCVE-2011-5325medium**yes
CVE-2016-2147medium**yes
CVE-2016-2148high**yes
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cairoCVE-2017-7475lowyes
CVE-2017-9814lowyes
cargoCVE-2016-10128high**yes
CVE-2016-10129medium**yes
CVE-2016-10130medium**yes
CVE-2016-8568medium**yes
CVE-2016-8569medium**yes
cephCVE-2017-7519not yet assigned?
check-mkCVE-2017-9781medium**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954lowyes
CVE-2017-11343medium**yes
CVE-2017-6949medium**yes
CVE-2017-9334lowyes
cobblerCVE-2016-9605not yet assigned?
collectdCVE-2017-7401medium**yes
coreutilsCVE-2016-2781low**no
couchdbCVE-2014-2668lowyes
cronCVE-2017-9525medium**no
db5.3CVE-2017-10140not yet assigned?
dcrawCVE-2015-8366not yet assigned?
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
dogtag-pkiCVE-2017-7537not yet assigned?
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
CVE-2017-12583medium**yes
dolibarrCVE-2017-9840medium**yes
exiv2CVE-2017-11336medium**yes
CVE-2017-11337medium**yes
CVE-2017-11338medium**yes
CVE-2017-11339medium**yes
CVE-2017-11340medium**yes
CVE-2017-11553lowyes
CVE-2017-11591lowyes
CVE-2017-11592lowyes
CVE-2017-11683lowyes
CVE-2017-12955not yet assignedno
CVE-2017-12956not yet assignedno
ffmpegCVE-2017-7206medium**yes
fontforgeCVE-2017-11568medium**yes
CVE-2017-11569medium**yes
CVE-2017-11570medium**yes
CVE-2017-11571medium**yes
CVE-2017-11572medium**yes
CVE-2017-11573medium**yes
CVE-2017-11574medium**yes
CVE-2017-11575medium**yes
CVE-2017-11576medium**yes
CVE-2017-11577medium**yes
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030not yet assigned?
CVE-2016-9575not yet assigned?
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2016-10317medium**yes
CVE-2017-11714medium**yes
CVE-2017-9611medium**yes
CVE-2017-9612medium**yes
CVE-2017-9726medium**yes
CVE-2017-9727medium**yes
CVE-2017-9739medium**yes
CVE-2017-9835medium**yes
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
CVE-2017-12132medium**yes
CVE-2017-8804high**yes
gnome-keyringTEMP-0395572-55D193low?
guacamole-clientCVE-2016-1566low**yes
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152lowyes
imagemagickCVE-2017-12140high**yes
CVE-2017-12674high**yes
CVE-2017-12876not yet assigned?
CVE-2017-12877not yet assigned?
jackson-databindCVE-2017-7525not yet assigned?
jbig2decCVE-2016-8729not yet assigned?
CVE-2017-9216medium**yes
jythonCVE-2013-2027lowno
kdesudoCVE-2016-7787medium**yes
kgb-botCVE-2015-1554low?
kodiCVE-2017-5982medium**yes
lameCVE-2017-9869medium**yes
CVE-2017-9870medium**yes
CVE-2017-9871medium**yes
CVE-2017-9872medium**yes
ledgerCVE-2017-12481lowyes
CVE-2017-12482lowyes
libaoCVE-2017-11548lowyes
libapache-poi-javaCVE-2017-5644high**yes
libapache2-mod-nssCVE-2015-3277not yet assignedno
libarchiveCVE-2016-10209lowyes
CVE-2016-10349medium**yes
CVE-2016-10350medium**yes
libcrocoCVE-2017-8834lowyes
CVE-2017-8871lowyes
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libdbd-mysql-perlCVE-2017-10788high**yes
CVE-2017-10789medium**yes
libgcCVE-2016-9427high**yes
libgd2CVE-2017-7890medium**yes
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libid3tagCVE-2017-11551medium**yes
libjgroups-javaCVE-2016-2141lowyes
libjpeg-turboCVE-2017-9614medium**yes
libmadCVE-2017-11552lowyes
libnet-server-perlCVE-2013-1841lowyes
libpodofoCVE-2017-5852lowyes
CVE-2017-6841medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6849medium**yes
CVE-2017-7994medium**yes
CVE-2017-8053medium**yes
CVE-2017-8054medium**yes
CVE-2017-8378high**yes
CVE-2017-8787medium**yes
librsyncCVE-2014-8242lowyes
libsassCVE-2017-10687lowyes
CVE-2017-11341medium**yes
CVE-2017-11342medium**yes
CVE-2017-11554medium**yes
CVE-2017-11555medium**yes
CVE-2017-11556medium**yes
CVE-2017-11605medium**yes
CVE-2017-11608medium**yes
CVE-2017-12962not yet assignedno
CVE-2017-12963not yet assignedno
CVE-2017-12964not yet assignedno
libtorrent-rasterbarCVE-2017-9847medium**yes
libui-dialog-perlCVE-2008-7315not yet assigned?
libvorbisCVE-2017-11333lowyes
CVE-2017-11735lowyes
libxml-libxml-perlCVE-2017-10672high**yes
libxml-twig-perlCVE-2016-9180lowyes
libxml2CVE-2016-9318medium**yes
CVE-2017-5969low**yes
CVE-2017-8872medium**yes
libytnefCVE-2017-12141medium**yes
CVE-2017-12142medium**yes
CVE-2017-12144medium**yes
CVE-2017-9146medium**yes
CVE-2017-9470medium**yes
CVE-2017-9471medium**yes
CVE-2017-9472medium**yes
CVE-2017-9473medium**yes
CVE-2017-9474medium**yes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660medium**no
CVE-2017-1000379high**no
CVE-2017-12134not yet assigned?
lrzipCVE-2017-8844medium**yes
CVE-2017-8846medium**yes
CVE-2017-9928medium**yes
CVE-2017-9929medium**yes
lucene-solrCVE-2017-3163not yet assigned?
mariadb-10.1CVE-2017-3636not yet assignedno
CVE-2017-3641not yet assignedno
CVE-2017-3653not yet assignedno
mcollectiveCVE-2016-2788high**yes
CVE-2017-2292high**yes
moodleCVE-2017-2642medium**yes
CVE-2017-7489medium**yes
CVE-2017-7490medium**yes
CVE-2017-7491medium**yes
CVE-2017-7532medium**yes
mosquittoCVE-2017-9868low**no
mp3spltCVE-2017-5666medium**yes
mrubyCVE-2017-9527lowyes
mysql-5.7CVE-2017-3529not yet assignedno
CVE-2017-3633not yet assignedno
CVE-2017-3634not yet assignedno
CVE-2017-3635not yet assignedno
CVE-2017-3637not yet assignedno
CVE-2017-3638not yet assignedno
CVE-2017-3639not yet assignedno
CVE-2017-3640not yet assignedno
CVE-2017-3641not yet assignedno
CVE-2017-3642not yet assignedno
CVE-2017-3643not yet assignedno
CVE-2017-3644not yet assignedno
CVE-2017-3645not yet assignedno
CVE-2017-3647not yet assignedno
CVE-2017-3648not yet assignedno
CVE-2017-3649not yet assignedno
CVE-2017-3650not yet assignedno
CVE-2017-3651not yet assignedno
CVE-2017-3652not yet assignedno
CVE-2017-3653not yet assignedno
mysql-workbenchCVE-2017-3469lowyes
nasmCVE-2017-10686high**yes
CVE-2017-11111medium**yes
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
nginxCVE-2013-0337lowyes
npmCVE-2016-3956medium**yes
nssCVE-2017-11695not yet assigned?
CVE-2017-11696not yet assigned?
CVE-2017-11697not yet assigned?
CVE-2017-11698not yet assigned?
ntopngCVE-2017-7416medium**yes
CVE-2017-7458medium**yes
CVE-2017-7459medium**yes
opencvCVE-2016-1516medium**yes
CVE-2016-1517medium**yes
CVE-2017-12597medium**yes
CVE-2017-12598medium**yes
CVE-2017-12599medium**yes
CVE-2017-12600high**yes
CVE-2017-12601medium**yes
CVE-2017-12602high**yes
CVE-2017-12603medium**yes
CVE-2017-12604medium**yes
CVE-2017-12605medium**yes
CVE-2017-12606medium**yes
CVE-2017-12862not yet assignedno
CVE-2017-12863not yet assignedno
CVE-2017-12864not yet assignedno
openexrCVE-2017-12596medium**yes
CVE-2017-9110medium**yes
CVE-2017-9111medium**yes
CVE-2017-9112medium**yes
CVE-2017-9113medium**yes
CVE-2017-9114medium**yes
CVE-2017-9115medium**yes
CVE-2017-9116medium**yes
openjfxCVE-2017-10086lowno
CVE-2017-10114lowyes
openvswitchCVE-2017-9214high**yes
percona-xtrabackupCVE-2016-6225medium**yes
phammCVE-2017-0378medium**yes
php-casCVE-2017-1000071medium**yes
php-gettextCVE-2016-6175high**yes
php7.0CVE-2017-8923high**yes
php7.1CVE-2017-8923high**yes
phpldapadminCVE-2017-11107medium**yes
policykit-1CVE-2016-2568medium**no
popplerCVE-2017-9406lowyes
CVE-2017-9408lowyes
CVE-2017-9775medium**yes
CVE-2017-9776medium**yes
CVE-2017-9865medium**yes
potraceCVE-2017-7263medium**yes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
pyradCVE-2013-0342low?
python-numpyCVE-2017-12852not yet assignedno
python-pysaml2CVE-2016-10127lowyes
python-restkitCVE-2015-2674not yet assignedno
python-tablibCVE-2017-2810high**yes
qemuCVE-2017-9375low**no
CVE-2017-9503low**no
qpdfCVE-2017-11624lowyes
CVE-2017-11625lowyes
CVE-2017-11626lowyes
CVE-2017-11627lowyes
CVE-2017-9208lowyes
CVE-2017-9209lowyes
CVE-2017-9210lowyes
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
quaggaCVE-2017-3224low?
radare2CVE-2017-9761lowyes
CVE-2017-9762lowyes
CVE-2017-9763medium**yes
rar (non-free)CVE-2014-9983medium**yes
rbenvCVE-2017-1000047high**yes
resiprocateCVE-2017-11521lowyes
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347lowyes
CVE-2016-6348lowyes
CVE-2016-9606not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
rubocopCVE-2017-8418low**no
ruby2.3CVE-2015-9096medium**yes
CVE-2016-7798medium**yes
rxvtCVE-2017-7483lowyes
saltCVE-2017-12791not yet assigned?
shadowCVE-2017-12424high**yes
sipcrackCVE-2017-11654medium**yes
CVE-2017-11655medium**yes
smplayerTEMP-0870233-1DD19Elow?
soundtouchCVE-2017-9258lowyes
CVE-2017-9259lowyes
CVE-2017-9260lowyes
soxCVE-2017-11332medium**yes
CVE-2017-11358medium**yes
CVE-2017-11359medium**yes
strongswanCVE-2017-11185not yet assignedno
taglibCVE-2017-12678medium**yes
tcpdumpCVE-2017-11108medium**yes
CVE-2017-11541high**yes
CVE-2017-11542high**yes
CVE-2017-11543high**yes
CVE-2017-11544medium**yes
CVE-2017-11545medium**yes
telegram-desktopCVE-2016-10351low**no
tenshiCVE-2017-11746high**yes
tiffCVE-2017-11613medium**yes
CVE-2017-12944not yet assignedno
CVE-2017-9935medium**yes
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
tinyproxyCVE-2017-11747low**no
torCVE-2017-11565medium**yes
tpm2-toolsCVE-2017-7524medium**yes
unrar-nonfree (non-free)CVE-2017-12938not yet assignedno
unrar-nonfree (non-free)CVE-2017-12940not yet assignedno
unrar-nonfree (non-free)CVE-2017-12941not yet assignedno
unrar-nonfree (non-free)CVE-2017-12942not yet assignedno
util-linuxCVE-2016-2779high**no
virglrendererCVE-2016-10163medium**no
CVE-2016-10214medium**no
CVE-2017-5580low**no
CVE-2017-5937low**no
CVE-2017-5956low**no
CVE-2017-5957low**no
CVE-2017-5993medium**no
CVE-2017-5994low**no
CVE-2017-6209low**no
CVE-2017-6210low**no
CVE-2017-6317medium**no
CVE-2017-6355low**no
CVE-2017-6386medium**no
web2pyCVE-2016-10321medium**yes
CVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wildmidiCVE-2017-11661lowno
CVE-2017-11662lowno
CVE-2017-11663lowno
CVE-2017-11664lowno
wolfsslCVE-2017-2800high**yes
CVE-2017-8855medium**yes
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2017-10912high**yes
CVE-2017-10913high**yes
CVE-2017-10914medium**yes
CVE-2017-10915medium**yes
CVE-2017-10916medium**yes
CVE-2017-10917high**yes
CVE-2017-10918high**yes
CVE-2017-10919medium**yes
CVE-2017-10920high**yes
CVE-2017-10921high**yes
CVE-2017-10922medium**yes
CVE-2017-10923medium**yes
CVE-2017-12135not yet assigned?
CVE-2017-12136not yet assigned?
CVE-2017-12137not yet assigned?
CVE-2017-12855not yet assignedno
yadmCVE-2017-11353medium**yes
yaml-cppCVE-2017-11692medium**yes
CVE-2017-5950lowyes
yaml-cpp0.3CVE-2017-11692medium**yes
CVE-2017-5950lowyes
zoneminderCVE-2016-10201medium**yes
CVE-2016-10202medium**yes
CVE-2016-10203medium**yes
CVE-2016-10204high**yes
CVE-2016-10205high**yes
CVE-2016-10206medium**yes
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-7203medium**yes
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5977medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems