Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416not yet assigned?
accountsserviceCVE-2012-6655low?
android-platform-system-coreCVE-2016-3861high**yes
CVE-2016-3885high**yes
CVE-2016-3921high**yes
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
apparmorCVE-2017-6507not yet assignedno
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
bind9CVE-2016-6170medium**yes
binutilsCVE-2016-4491lowyes
CVE-2017-6965medium**yes
CVE-2017-6966medium**yes
CVE-2017-6969medium**yes
CVE-2017-7209lowyes
CVE-2017-7210lowyes
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147medium**yes
CVE-2016-2148high**yes
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
bzrtpCVE-2016-6271medium**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954low?
CVE-2017-6949medium**yes
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781low**no
couchdbCVE-2014-2668lowyes
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
dhcpcd5CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-9962medium**no
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
erlangCVE-2016-10253high**yes
firebird3.0CVE-2017-6369not yet assignedno
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030not yet assigned?
CVE-2016-9575not yet assigned?
freetypeCVE-2016-10244medium**yes
gdbCVE-2016-2226lowyes
CVE-2016-4487lowyes
CVE-2016-4488lowyes
CVE-2016-4489lowyes
CVE-2016-4490lowyes
CVE-2016-4491lowyes
CVE-2016-4492lowyes
CVE-2016-4493lowyes
CVE-2016-6131lowyes
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
gnome-keyringTEMP-0395572-55D193low?
guacamole-clientCVE-2016-1566low**yes
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152low?
hexchatCVE-2016-2087medium**yes
htCVE-2016-4491lowyes
jitsiCVE-2017-5603medium**yes
jythonCVE-2013-2027lowno
kde4libsCVE-2017-6410medium**yes
kdesudoCVE-2016-7787medium**yes
keystoneCVE-2015-7546medium**yes
kgb-botCVE-2015-1554low?
kioCVE-2017-6410medium**yes
kodiCVE-2017-5982medium**yes
libapache-poi-javaCVE-2017-5644not yet assignedno
libapache2-mod-nssCVE-2015-3277not yet assigned?
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libgcCVE-2016-9427high**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libgit2CVE-2016-10128not yet assignedno
CVE-2016-10129not yet assignedno
CVE-2016-10130not yet assignedno
libibertyCVE-2016-4491lowyes
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libjgroups-javaCVE-2016-2141lowyes
libjpeg8CVE-2016-3616medium**yes
libnet-server-perlCVE-2013-1841lowyes
libplistCVE-2017-6437low**no
CVE-2017-6438medium**no
CVE-2017-6440low**no
libpodofoCVE-2017-5852medium**yes
CVE-2017-5853medium**yes
CVE-2017-5854medium**yes
CVE-2017-5855medium**yes
CVE-2017-5886medium**yes
CVE-2017-6840medium**yes
CVE-2017-6841medium**yes
CVE-2017-6842medium**yes
CVE-2017-6843medium**yes
CVE-2017-6844medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6847medium**yes
CVE-2017-6848medium**yes
CVE-2017-6849medium**yes
TEMP-0854605-651F03not yet assigned?
librsyncCVE-2014-8242lowyes
libui-dialog-perlCVE-2008-7315not yet assigned?
libvirtCVE-2015-5160low?
libxml-twig-perlCVE-2016-9180medium**yes
libxml2CVE-2016-9318medium**yes
CVE-2017-5969not yet assigned?
libxsltCVE-2017-5029not yet assigned?
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660medium**no
CVE-2017-7187high**no
CVE-2017-7261not yet assignedno
lshellCVE-2016-6902not yet assigned?
CVE-2016-6903not yet assigned?
mcollectiveCVE-2016-2788high**yes
mp3spltCVE-2017-5666medium**yes
msgpuckCVE-2016-9036medium**yes
mysql-5.7CVE-2016-5483not yet assigned?
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
nginxCVE-2013-0337lowyes
novaCVE-2013-2255not yet assigned?
CVE-2017-7214medium**yes
npmCVE-2016-3956medium**yes
openjpeg2CVE-2016-1626medium**yes
CVE-2016-1628medium**yes
CVE-2016-5152medium**yes
CVE-2016-5158medium**yes
CVE-2016-9112medium**yes
CVE-2016-9118medium**yes
openstack-troveCVE-2015-3156low?
partcloneCVE-2017-6596medium**yes
pcre3CVE-2017-7245not yet assignedno
CVE-2017-7246not yet assignedno
percona-xtrabackupCVE-2016-6225not yet assignedno
phantomjsCVE-2013-4549medium**yes
php-gettextCVE-2016-6175high**yes
policykit-1CVE-2016-2568medium**no
potraceCVE-2016-8686lowyes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-pysaml2CVE-2016-10127medium**yes
python-restkitCVE-2015-2674not yet assigned?
qemuCVE-2016-8667low**no
CVE-2016-9603not yet assigned?
CVE-2017-6505low**no
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347low?
CVE-2016-6348low?
CVE-2016-7050not yet assigned?
CVE-2016-9571high**yes
rhn-client-toolsCVE-2015-1777not yet assigned?
ruby2.3CVE-2016-7798medium**yes
sane-backendsCVE-2017-6318lowyes
sleekxmppCVE-2017-5591medium**yes
spice-gtkCVE-2016-3066not yet assigned?
tiffCVE-2015-7554high**yes
CVE-2016-10095medium**yes
CVE-2016-5318medium**yes
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
tnefCVE-2017-6307medium**yes
CVE-2017-6308medium**yes
CVE-2017-6309medium**yes
CVE-2017-6310medium**yes
util-linuxCVE-2016-2779high**no
valgrindCVE-2016-2226lowyes
CVE-2016-4487lowyes
CVE-2016-4488lowyes
CVE-2016-4489lowyes
CVE-2016-4490lowyes
CVE-2016-4491lowyes
CVE-2016-4492lowyes
CVE-2016-4493lowyes
CVE-2016-6131lowyes
virglrendererCVE-2016-10163medium**no
CVE-2016-10214medium**no
CVE-2017-5580low**no
CVE-2017-5937low**no
CVE-2017-5956low**no
CVE-2017-5957low**no
CVE-2017-5993medium**no
CVE-2017-5994low**no
CVE-2017-6209low**no
CVE-2017-6210low**no
CVE-2017-6317medium**no
CVE-2017-6355low**no
CVE-2017-6386medium**no
web2pyCVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wolfsslCVE-2017-6076low**no
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
TEMP-0856229-F1D37Cnot yet assigned?
xrdpCVE-2017-6967high**yes
zoneminderCVE-2016-10140medium**yes
CVE-2016-10201medium**yes
CVE-2016-10202medium**yes
CVE-2016-10203medium**yes
CVE-2016-10204high**yes
CVE-2016-10205high**yes
CVE-2016-10206medium**yes
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-5595low**no
CVE-2017-7203medium**yes
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5974medium**yes
CVE-2017-5975medium**yes
CVE-2017-5976medium**yes
CVE-2017-5977medium**yes
CVE-2017-5978medium**yes
CVE-2017-5979medium**yes
CVE-2017-5980medium**yes
CVE-2017-5981medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems