Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
9baseCVE-2014-1935low?
accountsserviceCVE-2012-6655low?
acidbaseCVE-2012-1017lowyes
android-toolsCVE-2012-5564low**no
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
atticCVE-2015-4082not yet assigned?
audiofileCVE-2015-7747not yet assigned?
blenderCVE-2010-5105lowno
botan1.10CVE-2015-7827not yet assigned?
CVE-2016-2849not yet assigned?
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147not yet assigned?
CVE-2016-2148not yet assigned?
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cactiCVE-2016-3659medium**yes
cakephpCVE-2015-8379medium**yes
TEMP-0000000-698CF7not yet assigned?
chefCVE-2015-8559not yet assigned?
chickenCVE-2014-9651high**yes
CVE-2015-4556not yet assigned?
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781not yet assigned?
couchdbCVE-2014-2668lowyes
cpioTEMP-0815965-23B1E4low?
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
debian-installerTEMP-0788634-523580low?
dhcpcd5CVE-2014-7912medium**yes
CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-3697not yet assigned?
dotclearCVE-2015-5651medium**yes
CVE-2015-8831not yet assigned?
CVE-2015-8832not yet assigned?
TEMP-0000000-573BA8not yet assigned?
duplicityCVE-2014-3495low?
dwarfutilsCVE-2015-8538not yet assigned?
CVE-2015-8750not yet assigned?
CVE-2016-2091medium**yes
elixirCVE-2012-2146lowyes
eyed3CVE-2014-1934lowno
foomatic-filtersTEMP-0000000-ACBC4Cnot yet assigned?
freeipaCVE-2015-5179not yet assigned?
freeradiusCVE-2015-4680not yet assigned?
gitlabCVE-2016-4340not yet assigned?
gksuCVE-2014-2886medium**yes
glanceCVE-2016-0757medium**yes
glibcCVE-2014-9761high**yes
CVE-2015-5180low?
CVE-2016-1234not yet assigned?
graphicsmagickCVE-2016-2317not yet assigned?
CVE-2016-2318not yet assigned?
groovyCVE-2015-3253high**yes
gzipTEMP-0816154-3134AEnot yet assigned?
haproxyCVE-2016-3711not yet assigned?
haskell-tlsCVE-2013-0169low**yes
heatCVE-2015-5295medium**yes
icingaCVE-2015-8010not yet assigned?
icuCVE-2015-4844high**yes
CVE-2016-0494high**yes
TEMP-0000000-7586EDnot yet assigned?
imagemagickCVE-2016-3714not yet assigned?
CVE-2016-3715not yet assigned?
CVE-2016-3716not yet assigned?
CVE-2016-3717not yet assigned?
CVE-2016-3718not yet assigned?
ironic-inspectorCVE-2015-5306medium**yes
jackson-dataformat-xmlCVE-2016-3720not yet assigned?
janssonCVE-2016-4425not yet assigned?
jasperCVE-2015-5203not yet assigned?
CVE-2015-5221not yet assigned?
CVE-2016-1577medium**yes
CVE-2016-1867medium**yes
CVE-2016-2089medium**yes
CVE-2016-2116medium**yes
jqCVE-2015-8863not yet assigned?
CVE-2016-4074not yet assigned?
jythonCVE-2013-2027lowno
keystoneCVE-2015-7546medium**yes
kgbCVE-2015-1192medium**yes
krb5CVE-2016-3119low**yes
libapache2-mod-nssCVE-2015-3277not yet assigned?
CVE-2015-5244not yet assigned?
CVE-2016-3099not yet assigned?
libarchiveTEMP-0784213-45868Blow?
libblurayTEMP-0000000-EA424Anot yet assigned?
libdata-uuid-perlCVE-2013-4184low?
libfcgi-perlCVE-2012-6687medium**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libjbcrypt-javaCVE-2015-0886medium**yes
libjpeg8CVE-2016-3616not yet assigned?
libjpeg9CVE-2016-3616not yet assigned?
libmp3-info-perlCVE-2013-6499not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
libnsbmpCVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
libpngCVE-2015-8472high**yes
CVE-2015-8540high**yes
librsyncCVE-2014-8242lowyes
libspring-javaCVE-2015-3192low?
CVE-2015-5211not yet assigned?
libui-dialog-perlCVE-2008-7315not yet assigned?
libuserCVE-2015-3245low**no
CVE-2015-3246high**no
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
libxml2CVE-2015-8806medium**yes
CVE-2016-2073medium**yes
CVE-2016-3627not yet assigned?
CVE-2016-3705not yet assigned?
CVE-2016-4483not yet assigned?
TEMP-0000000-0FC87Dnot yet assigned?
linuxCVE-2013-7445high**yes
CVE-2015-1350not yet assignedno
CVE-2015-8553low**no
CVE-2016-1575high**no
CVE-2016-1576high**no
CVE-2016-2188not yet assignedno
CVE-2016-2853not yet assignedno
CVE-2016-2854not yet assignedno
CVE-2016-4482not yet assigned?
CVE-2016-4485not yet assigned?
CVE-2016-4486not yet assigned?
CVE-2016-4557not yet assigned?
CVE-2016-4558not yet assigned?
TEMP-0000000-F7A20Fnot yet assigned?
man-dbCVE-2015-1336not yet assigned?
mariadb-10.0CVE-2016-0643medium**yes
CVE-2016-0647medium**yes
CVE-2016-0648medium**yes
CVE-2016-0655low**yes
CVE-2016-0666low**yes
midgard2-coreCVE-2014-8148high**no
minissdpdCVE-2016-3178not yet assigned?
CVE-2016-3179not yet assigned?
mplayerCVE-2016-4352not yet assigned?
TEMP-0000000-A54DD8low?
mxmlTEMP-0000000-8700BBnot yet assigned?
nagios3CVE-2013-7107lowyes
CVE-2013-7108lowyes
CVE-2013-7205lowyes
CVE-2014-1878medium**yes
netsurfCVE-2015-7505not yet assigned?
CVE-2015-7506not yet assigned?
CVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
netty-3.9CVE-2015-2156not yet assigned?
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
node-cliTEMP-0809252-619BDFnot yet assigned?
novaCVE-2013-2255not yet assigned?
CVE-2015-3241medium**yes
CVE-2015-5162low?
CVE-2015-7548low**yes
CVE-2015-8749medium**yes
CVE-2016-2140low**yes
ntpCVE-2015-7705not yet assigned?
CVE-2016-0727low?
ocamlCVE-2015-8869not yet assigned?
openjfxCVE-2015-4901high**yes
CVE-2015-4906medium**yes
CVE-2015-4908medium**yes
CVE-2015-4916medium**yes
openjpeg2CVE-2015-6581high**yes
CVE-2016-1923medium**yes
CVE-2016-1924medium**yes
CVE-2016-3181not yet assigned?
CVE-2016-3182not yet assigned?
CVE-2016-3183not yet assigned?
TEMP-0800149-B6A768not yet assigned?
openstack-troveCVE-2015-3156low?
opus-toolsCVE-2014-9639medium**yes
parallelCVE-2015-4155low**no
CVE-2015-4156low**no
pcre3TEMP-0000000-93E4E3not yet assigned?
pcsCVE-2015-5189medium**yes
pgpdumpCVE-2016-4021not yet assigned?
phantomjsCVE-2013-4549medium**yes
php5CVE-2014-5459lowno
TEMP-0800564-79703Bnot yet assigned?
policykit-1CVE-2016-2568not yet assigned?
proftpd-dfsgCVE-2016-3125high**yes
TEMP-0000000-3815A2not yet assigned?
protobufCVE-2015-5237low?
puppetCVE-2016-2785not yet assigned?
pycurlTEMP-0000000-FF9F75not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-restkitCVE-2015-2674not yet assigned?
python-sqlalchemy-utilsTEMP-0000000-EBC4D4not yet assigned?
qemuCVE-2016-2197not yet assigned?
CVE-2016-2198not yet assigned?
CVE-2016-2391not yet assigned?
CVE-2016-2392not yet assigned?
CVE-2016-2538not yet assigned?
CVE-2016-2841not yet assigned?
CVE-2016-2857low**no
CVE-2016-2858low**no
CVE-2016-4001not yet assigned?
CVE-2016-4002medium**yes
CVE-2016-4020not yet assigned?
CVE-2016-4037not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
quaggaCVE-2016-4036low**no
CVE-2016-4049not yet assigned?
radare2CVE-2015-2305lowyes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
rawtherapeeCVE-2015-8366not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
roundcubeCVE-2016-4068not yet assigned?
rsyncTEMP-0786423-948688low?
ruby-eventmachineTEMP-0678512-2E167Cnot yet assigned?
ruby-jquery-railsCVE-2015-1840medium**yes
ruby-omniauthTEMP-0000000-2F3E8Bnot yet assigned?
ruby-sidekiqTEMP-0000000-23C1BDnot yet assigned?
TEMP-0000000-BD209Fnot yet assigned?
TEMP-0000000-F9A459not yet assigned?
sogoCVE-2015-5395not yet assigned?
spice-gtkCVE-2016-3066not yet assigned?
squid3CVE-2016-4553not yet assigned?
CVE-2016-4554not yet assigned?
CVE-2016-4555not yet assigned?
CVE-2016-4556not yet assigned?
stalinCVE-2015-8697not yet assigned?
sudoCVE-2015-8239not yet assigned?
tiffCVE-2015-7313not yet assigned?
CVE-2015-7554high**yes
CVE-2015-8668high**yes
CVE-2016-3186medium**yes
CVE-2016-3619low?
CVE-2016-3620low?
CVE-2016-3621low?
CVE-2016-3622low?
CVE-2016-3623not yet assigned?
CVE-2016-3624not yet assigned?
CVE-2016-3625not yet assigned?
CVE-2016-3631not yet assigned?
CVE-2016-3632not yet assigned?
CVE-2016-3633not yet assigned?
CVE-2016-3634not yet assigned?
CVE-2016-3658not yet assigned?
CVE-2016-3945not yet assigned?
CVE-2016-3990not yet assigned?
CVE-2016-3991not yet assigned?
tinymceCVE-2012-4230lowyes
unshieldCVE-2015-1386low?
util-linuxCVE-2016-2779not yet assigned?
w3afCVE-2013-2099lowyes
web2ldapCVE-2013-7258lowyes
wineTEMP-0816034-9C45DClow?
wine-developmentTEMP-0816034-9C45DClow?
wolfsslCVE-2015-6925medium**yes
wpaCVE-2016-4476not yet assigned?
CVE-2016-4477not yet assigned?
x11vncTEMP-0672435-7C494Cnot yet assigned?
xchat-gnomeCVE-2013-7449not yet assignedno
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
CVE-2015-5307medium**no
CVE-2015-6654low**no
CVE-2015-7311low**no
CVE-2015-8104medium**no
CVE-2015-8338high**no
CVE-2015-8339medium**no
CVE-2015-8340medium**no
CVE-2015-8341high**yes
CVE-2015-8550medium**no
CVE-2015-8555medium**yes
CVE-2015-8615low**no
CVE-2016-1570medium**no
CVE-2016-1571medium**no
CVE-2016-2270medium**no
CVE-2016-2271low**no
CVE-2016-3158low**no
CVE-2016-3159low**no
CVE-2016-3960high**no
TEMP-0000000-CE3B44not yet assigned?
yuiCVE-2013-6780lowyes
zabbixCVE-2016-4338not yet assigned?
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems