Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416medium**yes
accountsserviceCVE-2012-6655low?
aodhCVE-2017-12440medium**yes
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
bareosCVE-2017-14610medium**no
binutilsCVE-2017-13716lowyes
CVE-2017-14930high**yes
CVE-2017-14932medium**yes
CVE-2017-14933medium**yes
CVE-2017-14934medium**yes
CVE-2017-14938medium**yes
CVE-2017-14939medium**yes
CVE-2017-14940medium**yes
CVE-2017-15020medium**yes
CVE-2017-15021medium**yes
CVE-2017-15022medium**yes
CVE-2017-15023medium**yes
CVE-2017-15024medium**yes
CVE-2017-15025medium**yes
CVE-2017-15225not yet assignedno
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
byzanzCVE-2015-2785lowyes
cairoCVE-2017-7475lowyes
CVE-2017-9814lowyes
cargoCVE-2016-10128high**yes
CVE-2016-10129medium**yes
CVE-2016-10130medium**yes
CVE-2016-8568medium**yes
CVE-2016-8569medium**yes
cephCVE-2017-7519not yet assigned?
check-mkCVE-2017-9781medium**yes
chefCVE-2015-8559medium**yes
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954lowyes
CVE-2017-11343medium**yes
CVE-2017-6949medium**yes
CVE-2017-9334lowyes
chromium-browserCVE-2017-15386not yet assigned?
CVE-2017-15387not yet assigned?
CVE-2017-15388not yet assigned?
CVE-2017-15389not yet assigned?
CVE-2017-15390not yet assigned?
CVE-2017-15391not yet assigned?
CVE-2017-15392not yet assigned?
CVE-2017-15393not yet assigned?
CVE-2017-15394not yet assigned?
CVE-2017-15395not yet assigned?
CVE-2017-5124not yet assigned?
CVE-2017-5125not yet assigned?
CVE-2017-5126not yet assigned?
CVE-2017-5127not yet assigned?
CVE-2017-5128not yet assigned?
CVE-2017-5129not yet assigned?
CVE-2017-5130not yet assigned?
CVE-2017-5131not yet assigned?
CVE-2017-5132not yet assigned?
CVE-2017-5133not yet assigned?
cobblerCVE-2016-9605not yet assigned?
coreutilsCVE-2016-2781low**no
cronCVE-2017-9525medium**no
curlCVE-2017-1000254not yet assignedno
dcrawCVE-2015-8366not yet assigned?
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
CVE-2017-12583medium**yes
CVE-2017-12979medium**yes
CVE-2017-12980medium**yes
dolibarrCVE-2017-14238high**yes
CVE-2017-14239low**yes
CVE-2017-14240medium**yes
CVE-2017-14241low**yes
CVE-2017-14242high**yes
CVE-2017-9840medium**yes
exiv2CVE-2017-11336medium**yes
CVE-2017-11337medium**yes
CVE-2017-11338medium**yes
CVE-2017-11339medium**yes
CVE-2017-11340medium**yes
CVE-2017-11553lowyes
CVE-2017-11591lowyes
CVE-2017-11592lowyes
CVE-2017-11683lowyes
CVE-2017-12955medium**yes
CVE-2017-12956medium**yes
CVE-2017-14857medium**yes
CVE-2017-14858medium**yes
CVE-2017-14859medium**yes
CVE-2017-14860medium**yes
CVE-2017-14861medium**yes
CVE-2017-14862medium**yes
CVE-2017-14863medium**yes
CVE-2017-14864medium**yes
CVE-2017-14865medium**yes
CVE-2017-14866medium**yes
firmware-nonfree (non-free)CVE-2017-9417high**yes
fontforgeCVE-2017-11570lowyes
CVE-2017-11573lowyes
freeipaCVE-2015-5179medium**yes
CVE-2017-11191medium**yes
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2016-10317medium**yes
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
CVE-2017-12132medium**yes
CVE-2017-15670lowno
CVE-2017-15671lowno
CVE-2017-8804high**yes
golang-1.7CVE-2017-15041not yet assignedno
CVE-2017-15042not yet assignedno
golang-github-go-ldap-ldapCVE-2017-14623lowyes
guacamole-clientCVE-2016-1566low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152lowyes
imagemagickCVE-2017-12140high**yes
CVE-2017-12674high**yes
CVE-2017-12691high**yes
CVE-2017-12692high**yes
CVE-2017-12693high**yes
CVE-2017-12875high**yes
CVE-2017-12876medium**yes
CVE-2017-12877medium**yes
CVE-2017-12983medium**yes
CVE-2017-13061medium**yes
CVE-2017-13133high**yes
CVE-2017-13134medium**yes
CVE-2017-13758medium**yes
CVE-2017-13768lowyes
CVE-2017-13769lowyes
CVE-2017-14060medium**yes
CVE-2017-14172high**yes
CVE-2017-14173medium**yes
CVE-2017-14174high**yes
CVE-2017-14175high**yes
CVE-2017-14224medium**yes
CVE-2017-14249lowyes
CVE-2017-14341lowyes
CVE-2017-14400lowyes
CVE-2017-14505medium**yes
CVE-2017-14528medium**yes
CVE-2017-14532high**yes
CVE-2017-14607lowyes
CVE-2017-14624high**yes
CVE-2017-14625high**yes
CVE-2017-14626high**yes
CVE-2017-14682medium**yes
CVE-2017-14739medium**yes
CVE-2017-14741medium**yes
CVE-2017-14989medium**yes
CVE-2017-15015high**yes
CVE-2017-15017high**yes
CVE-2017-15277medium**yes
CVE-2017-15281lowyes
irssiCVE-2017-15227not yet assigned?
CVE-2017-15228not yet assigned?
CVE-2017-15721not yet assigned?
CVE-2017-15722not yet assigned?
CVE-2017-15723not yet assigned?
jasperreportsCVE-2017-14941medium**yes
kannelCVE-2017-14609lowno
kgb-botCVE-2015-1554lowyes
kodiCVE-2017-5982medium**yes
kojiCVE-2017-1002153not yet assignedno
krb5CVE-2017-11462lowyes
lameCVE-2017-15019medium**yes
ledgerCVE-2017-12481lowyes
CVE-2017-12482lowyes
CVE-2017-2807lowyes
CVE-2017-2808lowyes
libaoCVE-2017-11548lowyes
libapache-poi-javaCVE-2017-5644high**yes
libapache2-mod-nssCVE-2015-3277medium**yes
libarchiveCVE-2017-14501medium**yes
CVE-2017-14502medium**yes
CVE-2017-14503medium**yes
libcrocoCVE-2017-8834lowyes
CVE-2017-8871lowyes
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libdbd-mysql-perlCVE-2017-10788high**yes
CVE-2017-10789medium**yes
libgcCVE-2016-9427high**yes
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libid3tagCVE-2017-11551medium**yes
libjgroups-javaCVE-2016-2141lowyes
libjpeg-turboCVE-2017-15232lowno
liblouisCVE-2014-8184not yet assigned?
libmadCVE-2017-11552lowyes
libmp3spltCVE-2017-15185not yet assignedno
libnet-server-perlCVE-2013-1841lowyes
libofxCVE-2017-14731medium**yes
libpam4jCVE-2017-12197not yet assigned?
libpodofoCVE-2017-5852lowyes
CVE-2017-6841medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6849medium**yes
CVE-2017-7994medium**yes
CVE-2017-8053medium**yes
CVE-2017-8054medium**yes
CVE-2017-8378high**yes
CVE-2017-8787medium**yes
librsyncCVE-2014-8242lowyes
libsassCVE-2017-10687lowyes
CVE-2017-11341medium**yes
CVE-2017-11342medium**yes
CVE-2017-11554medium**yes
CVE-2017-11555medium**yes
CVE-2017-11556medium**yes
CVE-2017-11605medium**yes
CVE-2017-11608medium**yes
CVE-2017-12962lowyes
CVE-2017-12963lowyes
CVE-2017-12964lowyes
libsndfileCVE-2017-14245lowyes
CVE-2017-14246lowyes
CVE-2017-14634medium**yes
libui-dialog-perlCVE-2008-7315not yet assignedno
libvorbisCVE-2017-11333lowyes
CVE-2017-14160medium**yes
CVE-2017-14632high**yes
CVE-2017-14633medium**yes
libxml-libxml-perlCVE-2017-10672high**yes
libxml-twig-perlCVE-2016-9180lowyes
libxml2CVE-2016-9318medium**yes
CVE-2017-5130not yet assigned?
CVE-2017-5969low**yes
CVE-2017-8872medium**yes
libytnefCVE-2017-12141lowyes
CVE-2017-12142lowyes
CVE-2017-12144medium**yes
CVE-2017-9146medium**yes
CVE-2017-9470lowyes
CVE-2017-9471lowyes
CVE-2017-9472lowyes
CVE-2017-9473lowyes
CVE-2017-9474lowyes
libzipCVE-2017-14107lowyes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660lowno
CVE-2017-1000379high**no
CVE-2017-12190not yet assigned?
CVE-2017-15299not yet assignedno
CVE-2017-15537not yet assignedno
CVE-2017-15649not yet assignedno
lrzipCVE-2017-8844medium**yes
CVE-2017-8846medium**yes
CVE-2017-9928medium**yes
CVE-2017-9929medium**yes
lucene-solrCVE-2017-3163medium**yes
mcollectiveCVE-2016-2788high**yes
CVE-2017-2292high**yes
mimedefangCVE-2017-14102medium**no
mistuneCVE-2017-15612not yet assignedno
mosquittoCVE-2017-9868low**no
mp3spltCVE-2017-5666medium**yes
mrubyCVE-2017-9527lowyes
mupdfCVE-2017-15587not yet assignedno
mysql-5.7CVE-2017-10155not yet assignedno
CVE-2017-10165not yet assignedno
CVE-2017-10167not yet assignedno
CVE-2017-10227not yet assignedno
CVE-2017-10268not yet assignedno
CVE-2017-10276not yet assignedno
CVE-2017-10279not yet assignedno
CVE-2017-10283not yet assignedno
CVE-2017-10284not yet assignedno
CVE-2017-10286not yet assignedno
CVE-2017-10294not yet assignedno
CVE-2017-10296not yet assignedno
CVE-2017-10311not yet assignedno
CVE-2017-10313not yet assignedno
CVE-2017-10314not yet assignedno
CVE-2017-10320not yet assignedno
CVE-2017-10365not yet assignedno
CVE-2017-10379not yet assignedno
CVE-2017-10384not yet assignedno
CVE-2017-3529low**yes
CVE-2017-3633medium**yes
CVE-2017-3634medium**yes
CVE-2017-3635low**yes
CVE-2017-3637low**yes
CVE-2017-3638medium**yes
CVE-2017-3639medium**yes
CVE-2017-3640medium**yes
CVE-2017-3641medium**yes
CVE-2017-3642medium**yes
CVE-2017-3643medium**yes
CVE-2017-3644medium**yes
CVE-2017-3645medium**yes
CVE-2017-3647medium**yes
CVE-2017-3648medium**yes
CVE-2017-3649medium**yes
CVE-2017-3650medium**yes
CVE-2017-3651medium**yes
CVE-2017-3652medium**yes
CVE-2017-3653low**yes
mysql-workbenchCVE-2017-3469lowyes
nasmCVE-2017-10686high**yes
CVE-2017-11111medium**yes
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
nginxCVE-2013-0337lowyes
node-tough-cookieCVE-2017-15010not yet assignedno
npmCVE-2016-3956medium**yes
ntopngCVE-2017-7416medium**yes
nvidia-graphics-drivers (non-free)CVE-2017-6266medium**no
nvidia-graphics-drivers (non-free)CVE-2017-6267medium**no
nvidia-graphics-drivers (non-free)CVE-2017-6272high**no
ocamlCVE-2017-9779high**no
opencvCVE-2016-1516medium**yes
CVE-2016-1517medium**yes
CVE-2017-12597medium**yes
CVE-2017-12598medium**yes
CVE-2017-12599medium**yes
CVE-2017-12600high**yes
CVE-2017-12601medium**yes
CVE-2017-12602high**yes
CVE-2017-12603medium**yes
CVE-2017-12604medium**yes
CVE-2017-12605medium**yes
CVE-2017-12606medium**yes
CVE-2017-12862medium**yes
CVE-2017-12863medium**yes
CVE-2017-12864medium**yes
CVE-2017-14136medium**yes
openexrCVE-2017-12596medium**yes
CVE-2017-14988medium**yes
CVE-2017-9111medium**yes
CVE-2017-9113medium**yes
CVE-2017-9114medium**yes
CVE-2017-9115medium**yes
openjdk-8CVE-2017-10274not yet assignedno
CVE-2017-10281not yet assignedno
CVE-2017-10285not yet assignedno
CVE-2017-10295not yet assignedno
CVE-2017-10345not yet assignedno
CVE-2017-10346not yet assignedno
CVE-2017-10347not yet assignedno
CVE-2017-10348not yet assignedno
CVE-2017-10349not yet assignedno
CVE-2017-10350not yet assignedno
CVE-2017-10355not yet assignedno
CVE-2017-10356not yet assignedno
CVE-2017-10357not yet assignedno
CVE-2017-10388not yet assignedno
openjdk-9CVE-2017-10274not yet assignedno
CVE-2017-10281not yet assignedno
CVE-2017-10285not yet assignedno
CVE-2017-10295not yet assignedno
CVE-2017-10345not yet assignedno
CVE-2017-10346not yet assignedno
CVE-2017-10347not yet assignedno
CVE-2017-10348not yet assignedno
CVE-2017-10349not yet assignedno
CVE-2017-10350not yet assignedno
CVE-2017-10355not yet assignedno
CVE-2017-10356not yet assignedno
CVE-2017-10357not yet assignedno
CVE-2017-10388not yet assignedno
openjpeg2CVE-2015-1239not yet assignedno
opensslCVE-2017-3735medium**yes
openssl1.0CVE-2017-3735medium**yes
openvpnCVE-2017-12166medium**yes
openvswitchCVE-2017-9214high**yes
p3scanCVE-2017-14681low**no
percona-xtrabackupCVE-2016-6225medium**yes
phammCVE-2017-0378medium**yes
php-casCVE-2017-1000071medium**yes
php-gettextCVE-2016-6175high**yes
php7.0CVE-2017-8923high**yes
php7.1CVE-2017-8923high**yes
phpldapadminCVE-2017-11107medium**yes
pngcrushCVE-2015-7700high**yes
policykit-1CVE-2016-2568medium**no
popplerCVE-2017-14517lowyes
CVE-2017-14518lowyes
CVE-2017-14519medium**yes
CVE-2017-14520lowyes
CVE-2017-14617medium**yes
CVE-2017-14926medium**yes
CVE-2017-14927medium**yes
CVE-2017-14928medium**yes
CVE-2017-14929medium**yes
CVE-2017-14975lowyes
CVE-2017-14976lowyes
CVE-2017-14977lowyes
CVE-2017-15565not yet assignedno
potraceCVE-2017-7263medium**yes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
puppetCVE-2016-5714not yet assignedno
puppet-module-puppetlabs-apacheCVE-2017-2299medium**yes
pyradCVE-2013-0342low?
python-numpyCVE-2017-12852medium**yes
python-pysaml2CVE-2016-10127lowyes
python-restkitCVE-2015-2674medium**yes
python-scrapyCVE-2017-14158high**yes
python-tablibCVE-2017-2810high**yes
qemuCVE-2017-15268not yet assignedno
CVE-2017-15289not yet assignedno
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
quaggaCVE-2017-3224low?
radare2CVE-2017-15368not yet assignedno
CVE-2017-15385not yet assignedno
rbenvCVE-2017-1000047high**yes
redmineCVE-2017-15568not yet assignedno
CVE-2017-15569not yet assignedno
CVE-2017-15570not yet assignedno
CVE-2017-15571not yet assignedno
CVE-2017-15572not yet assignedno
CVE-2017-15573not yet assignedno
CVE-2017-15574not yet assignedno
CVE-2017-15575not yet assignedno
CVE-2017-15576not yet assignedno
CVE-2017-15577not yet assignedno
resiprocateCVE-2017-11521lowyes
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347lowyes
CVE-2016-6348lowyes
CVE-2016-9606not yet assigned?
CVE-2017-7561medium**yes
rtpproxyCVE-2017-14114medium**yes
ruby2.3CVE-2017-0898medium**yes
CVE-2017-0903not yet assignedno
CVE-2017-10784high**yes
CVE-2017-14033medium**yes
saltCVE-2017-12791high**yes
CVE-2017-14695not yet assigned?
CVE-2017-14696not yet assigned?
soundtouchCVE-2017-9258lowyes
CVE-2017-9259lowyes
CVE-2017-9260lowyes
soxCVE-2017-11332medium**yes
CVE-2017-11358medium**yes
CVE-2017-11359medium**yes
CVE-2017-15370not yet assignedno
CVE-2017-15371not yet assignedno
CVE-2017-15372not yet assignedno
CVE-2017-15642not yet assignedno
spipCVE-2017-15736not yet assigned?
tiffCVE-2017-11613medium**yes
CVE-2017-12944medium**yes
CVE-2017-9935medium**yes
tikaCVE-2016-4434medium**yes
tinymceCVE-2012-4230lowyes
tinyproxyCVE-2017-11747low**no
tomcat8CVE-2017-12617not yet assignedno
util-linuxCVE-2016-2779high**no
web2pyCVE-2016-10321medium**yes
CVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wildmidiCVE-2017-11661lowyes
CVE-2017-11662lowyes
CVE-2017-11663lowyes
CVE-2017-11664lowyes
wordpressCVE-2012-6707not yet assignedno
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2017-14316high**no
CVE-2017-14317medium**no
CVE-2017-14318medium**no
CVE-2017-14319high**no
CVE-2017-15588not yet assignedno
CVE-2017-15589not yet assignedno
CVE-2017-15590not yet assignedno
CVE-2017-15591not yet assignedno
CVE-2017-15592not yet assignedno
CVE-2017-15593not yet assignedno
CVE-2017-15594not yet assignedno
CVE-2017-15595not yet assignedno
yaml-cppCVE-2017-11692medium**yes
CVE-2017-5950lowyes
yaml-cpp0.3CVE-2017-11692medium**yes
CVE-2017-5950lowyes
zoneminderCVE-2016-10201medium**yes
CVE-2016-10202medium**yes
CVE-2016-10203medium**yes
CVE-2016-10204high**yes
CVE-2016-10205high**yes
CVE-2016-10206medium**yes
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-7203medium**yes
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5977medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems