Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-4992not yet assigned?
CVE-2016-5416not yet assigned?
CVE-2017-2591not yet assigned?
accountsserviceCVE-2012-6655low?
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
arkCVE-2017-5330not yet assigned?
bind9CVE-2016-6170medium**yes
binutilsCVE-2016-4491low?
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147not yet assigned?
CVE-2016-2148not yet assigned?
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
bzip2CVE-2016-3189lowyes
cgiemailTEMP-0852031-3BF4D0not yet assigned?
TEMP-0852031-B323B7not yet assigned?
TEMP-0852031-CB3F7Fnot yet assigned?
TEMP-0852031-FDD27Cnot yet assigned?
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954low?
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781not yet assigned?
couchdbCVE-2014-2668lowyes
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
dhcpcd5CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-8867medium**yes
CVE-2016-9962not yet assigned?
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
duplicityCVE-2014-3495low?
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030not yet assigned?
CVE-2016-9575not yet assigned?
gdbCVE-2016-2226low?
CVE-2016-4487low?
CVE-2016-4488low?
CVE-2016-4489low?
CVE-2016-4490low?
CVE-2016-4491low?
CVE-2016-4492low?
CVE-2016-4493low?
CVE-2016-6131low?
gdm3CVE-2016-1000002low?
gksuCVE-2014-2886medium**yes
glassfishCVE-2016-5519medium**yes
CVE-2016-5528not yet assigned?
CVE-2017-3247not yet assigned?
CVE-2017-3249not yet assigned?
CVE-2017-3250not yet assigned?
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151low?
CVE-2016-10152low?
hexchatCVE-2016-2087medium**yes
htCVE-2016-4491low?
jythonCVE-2013-2027lowno
kde-runtimeCVE-2016-7787medium**yes
kdesudoCVE-2016-7787medium**yes
keystoneCVE-2015-7546medium**yes
kf5-messagelibCVE-2016-7967medium**yes
CVE-2016-7968high**yes
kgbCVE-2015-1192medium**yes
kgb-botCVE-2015-1554not yet assigned?
libapache2-mod-nssCVE-2015-3277not yet assigned?
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libgcCVE-2016-9427high**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libgit2CVE-2016-10128not yet assigned?
CVE-2016-10129not yet assigned?
CVE-2016-10130not yet assigned?
libibertyCVE-2016-4491low?
libicalCVE-2016-5824not yet assigned?
CVE-2016-5825not yet assigned?
CVE-2016-5826not yet assigned?
CVE-2016-5827not yet assigned?
CVE-2016-9584medium**yes
libjackson-json-javaCVE-2015-5211not yet assigned?
libjgroups-javaCVE-2016-2141lowyes
libjpeg8CVE-2016-3616not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
libplistCVE-2017-5209lowyes
CVE-2017-5545lowno
librsyncCVE-2014-8242lowyes
libui-dialog-perlCVE-2008-7315not yet assigned?
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
CVE-2016-1621high**yes
libwebpCVE-2016-9085not yet assigned?
libxml-twig-perlCVE-2016-9180medium**yes
libxml2CVE-2016-9318medium**yes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-10153not yet assigned?
CVE-2016-2188medium**no
CVE-2016-8660medium**no
CVE-2016-9191medium**no
CVE-2017-2583not yet assigned?
CVE-2017-2584low**no
CVE-2017-5546not yet assigned?
CVE-2017-5547not yet assigned?
CVE-2017-5548not yet assigned?
CVE-2017-5549not yet assigned?
CVE-2017-5550not yet assigned?
CVE-2017-5551not yet assigned?
lshellCVE-2016-6902not yet assigned?
CVE-2016-6903not yet assigned?
mariadb-10.0CVE-2016-6664medium**no
CVE-2017-3238not yet assigned?
CVE-2017-3243not yet assigned?
CVE-2017-3244not yet assigned?
CVE-2017-3257not yet assigned?
CVE-2017-3258not yet assigned?
CVE-2017-3265not yet assigned?
CVE-2017-3291not yet assigned?
CVE-2017-3312not yet assigned?
CVE-2017-3317not yet assigned?
CVE-2017-3318not yet assigned?
mcollectiveCVE-2016-2788not yet assigned?
msgpuckCVE-2016-9036medium**yes
mysql-5.7CVE-2016-8318not yet assigned?
CVE-2016-8327not yet assigned?
CVE-2017-3238not yet assigned?
CVE-2017-3244not yet assigned?
CVE-2017-3251not yet assigned?
CVE-2017-3256not yet assigned?
CVE-2017-3257not yet assigned?
CVE-2017-3258not yet assigned?
CVE-2017-3265not yet assigned?
CVE-2017-3273not yet assigned?
CVE-2017-3291not yet assigned?
CVE-2017-3312not yet assigned?
CVE-2017-3313not yet assigned?
CVE-2017-3317not yet assigned?
CVE-2017-3318not yet assigned?
CVE-2017-3319not yet assigned?
CVE-2017-3320not yet assigned?
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
nginxCVE-2013-0337lowyes
novaCVE-2013-2255not yet assigned?
npmCVE-2016-3956medium**yes
ntopngCVE-2017-5473medium**yes
openjdk-8CVE-2016-8328not yet assigned?
CVE-2017-3262not yet assigned?
openjpeg2CVE-2016-1626medium**yes
CVE-2016-1628medium**yes
CVE-2016-5152medium**yes
CVE-2016-5158medium**yes
CVE-2016-9112medium**yes
CVE-2016-9118medium**yes
CVE-2016-9572not yet assigned?
CVE-2016-9573not yet assigned?
openssl1.0CVE-2016-7055low?
openstack-troveCVE-2015-3156low?
percona-xtrabackupCVE-2016-6225not yet assigned?
phantomjsCVE-2013-4549medium**yes
php-gettextCVE-2015-8980not yet assigned?
CVE-2016-6175not yet assigned?
php7.0CVE-2016-7478medium**yes
CVE-2016-7479high**yes
CVE-2017-5340high**yes
php7.1CVE-2016-7478medium**yes
CVE-2016-7479high**yes
CVE-2017-5340high**yes
policykit-1CVE-2016-2568not yet assigned?
potraceCVE-2016-8686low?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-pysaml2CVE-2016-10127not yet assigned?
python-restkitCVE-2015-2674not yet assigned?
python-sqlalchemy-utilsTEMP-0000000-EBC4D4not yet assigned?
qemuCVE-2016-7907low**no
CVE-2016-8667low**no
CVE-2016-9602not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2016-10040not yet assigned?
qtbase-opensource-srcCVE-2016-10040not yet assigned?
rar (non-free)TEMP-0774172-B2A845not yet assigned?
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347low?
CVE-2016-6348low?
CVE-2016-7050not yet assigned?
CVE-2016-9571not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
ruby2.3CVE-2016-7798not yet assigned?
runcCVE-2016-8867medium**yes
CVE-2016-9962not yet assigned?
spice-gtkCVE-2016-3066not yet assigned?
spipCVE-2016-9152medium**yes
CVE-2016-9997medium**yes
CVE-2016-9998medium**yes
tiffCVE-2015-7554high**yes
CVE-2016-10095not yet assigned?
CVE-2016-5318medium**yes
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
util-linuxCVE-2016-2779not yet assigned?
valgrindCVE-2016-2226low?
CVE-2016-4487low?
CVE-2016-4488low?
CVE-2016-4489low?
CVE-2016-4490low?
CVE-2016-4491low?
CVE-2016-4492low?
CVE-2016-4493low?
CVE-2016-6131low?
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
zoneminderCVE-2016-10140medium**yes
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems