Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
9baseCVE-2014-1935low?
accountsserviceCVE-2012-6655low?
acidbaseCVE-2012-1017lowyes
android-toolsCVE-2012-5564low**no
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
asteriskCVE-2015-1558low**yes
CVE-2015-3008medium**yes
automake-1.14TEMP-0760455-22ED59low?
axis2cCVE-2012-5351lowyes
CVE-2012-6107medium**yes
blenderCVE-2010-5105lowno
byzanzCVE-2015-2785lowyes
cajaTEMP-0781608-198474not yet assigned?
check-mkCVE-2014-2330not yet assigned?
CVE-2014-2331not yet assigned?
CVE-2014-5338low**yes
CVE-2014-5339medium**yes
CVE-2014-5340high**yes
chickenCVE-2014-9651not yet assigned?
cinderCVE-2013-2255not yet assigned?
couchdbCVE-2014-2668lowyes
cyasslCVE-2011-3389medium**yes
CVE-2014-2901not yet assigned?
CVE-2014-2902not yet assigned?
CVE-2014-2903not yet assigned?
CVE-2014-2904not yet assigned?
CVE-2014-3566medium**yes
CVE-2014-6491high**yes
CVE-2014-6494medium**yes
CVE-2014-6495medium**yes
CVE-2014-6496medium**yes
CVE-2014-6500high**yes
TEMP-0000000-2D36D7not yet assigned?
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
djvulibreTEMP-0775193-7F000Enot yet assigned?
dnsmasqCVE-2015-3294not yet assigned?
docker.ioCVE-2014-0047not yet assigned?
CVE-2014-0048not yet assigned?
dovecotCVE-2015-3420not yet assigned?
duplicityCVE-2014-3495low?
elixirCVE-2012-2146lowyes
encfsCVE-2014-3462low?
extplorerCVE-2013-5951low**yes
CVE-2015-0896medium**yes
eyed3CVE-2014-1934lowno
facterCVE-2015-1426low**no
fckeditorCVE-2014-4037lowyes
fileTEMP-0783099-E851E9not yet assigned?
fuseisoTEMP-0779047-8CABD5not yet assigned?
TEMP-0779047-E29D8Enot yet assigned?
gcc-4.4CVE-2002-2439low?
CVE-2014-5044not yet assigned?
gcc-4.6CVE-2002-2439low?
CVE-2014-5044not yet assigned?
gcc-4.7CVE-2002-2439low?
CVE-2014-5044not yet assigned?
glibcCVE-2013-2207lowno
CVE-2014-8121lowyes
CVE-2015-1781not yet assigned?
TEMP-0779587-B973D8not yet assigned?
TEMP-0779587-F20A8Anot yet assigned?
gnome-orcaCVE-2013-4245not yet assigned?
gst-plugins-bad0.10CVE-2015-0797not yet assigned?
haCVE-2015-1198low?
haskell-tlsCVE-2013-0169low**yes
hexchatTEMP-0776609-026A07not yet assigned?
htTEMP-0773308-EE1012low?
icecast2CVE-2015-3026not yet assigned?
icuTEMP-0778511-AAAFE7low?
imagemagickTEMP-0000000-2FC21Elow?
TEMP-0000000-7C079Fnot yet assigned?
TEMP-0000000-EEF23Clow?
TEMP-0000000-FDAC72not yet assigned?
jenkinsCVE-2014-3665not yet assigned?
CVE-2015-1806not yet assigned?
CVE-2015-1807not yet assigned?
CVE-2015-1808not yet assigned?
CVE-2015-1809not yet assigned?
CVE-2015-1810not yet assigned?
CVE-2015-1811not yet assigned?
CVE-2015-1812not yet assigned?
CVE-2015-1813not yet assigned?
CVE-2015-1814not yet assigned?
jgitCVE-2014-9390not yet assigned?
jythonCVE-2013-2027lowno
kde-workspaceCVE-2015-1308lowyes
kdeplasma-addonsCVE-2013-2120low?
kexec-toolsTEMP-0766772-93FAA3not yet assigned?
kfreebsd-10CVE-2011-2393lowyes
kgbCVE-2015-1192medium**yes
libapache-mod-jkCVE-2014-8111medium**yes
libavCVE-2014-7937high**yes
CVE-2015-3417not yet assigned?
libblurayTEMP-0000000-EA424Anot yet assigned?
libcsoapCVE-2015-2297not yet assigned?
libdata-uuid-perlCVE-2013-4184low?
libhibernate-validator-javaCVE-2014-3558lowyes
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libjbcrypt-javaCVE-2015-0886medium**yes
libksbaTEMP-0000000-2CB0E2not yet assigned?
TEMP-0000000-A1D73Cnot yet assigned?
TEMP-0000000-EF5C1Cnot yet assigned?
libmodule-signature-perlCVE-2015-3406not yet assigned?
CVE-2015-3407not yet assigned?
CVE-2015-3408not yet assigned?
CVE-2015-3409not yet assigned?
libmp3-info-perlCVE-2013-6499not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
libopensaml2-javaCVE-2015-1796not yet assigned?
librsyncCVE-2014-8242low?
libspring-javaCVE-2014-3578lowyes
CVE-2014-3625medium**yes
libxerces2-javaCVE-2012-0881low?
libxml-libxml-perlTEMP-0783443-FBE844not yet assigned?
libxml2CVE-2015-1819low?
TEMP-0782985-586F49not yet assigned?
TEMP-0783010-C482B4not yet assigned?
linuxCVE-2014-8171not yet assigned?
CVE-2014-9717not yet assigned?
CVE-2015-1350not yet assigned?
CVE-2015-2925not yet assigned?
TEMP-0000000-1E2093not yet assigned?
TEMP-0000000-776ECEnot yet assigned?
llvm-toolchain-3.4CVE-2015-2305lowyes
llvm-toolchain-3.5CVE-2015-2305lowyes
llvm-toolchain-3.6CVE-2015-2305medium**yes
llvm-toolchain-snapshotCVE-2015-2305medium**yes
mariadb-10.0CVE-2015-0433medium**yes
CVE-2015-0441medium**yes
CVE-2015-0499low**yes
CVE-2015-0501medium**yes
CVE-2015-0505low**yes
CVE-2015-2568medium**yes
CVE-2015-2571medium**yes
CVE-2015-2573medium**yes
mediatombTEMP-0580120-33FF40low?
mercurialCVE-2014-9462high**yes
midgard2-coreCVE-2014-8148high**no
mini-httpdCVE-2015-1548medium**yes
muttTEMP-0775199-D05A9Elow?
mysql-5.5CVE-2015-0499low**yes
CVE-2015-0501medium**yes
CVE-2015-0505low**yes
CVE-2015-2571medium**yes
nagios3CVE-2013-7107lowyes
CVE-2013-7108lowyes
CVE-2013-7205lowyes
net-snmpTEMP-0000000-883263not yet assigned?
network-managerCVE-2012-1096low?
CVE-2015-2924not yet assigned?
newlibCVE-2015-2305medium**yes
nginxCVE-2011-4968low?
nodeCVE-2015-2927not yet assigned?
novaCVE-2013-2255not yet assigned?
CVE-2015-2687low?
ntopCVE-2014-4165medium**yes
ntpCVE-2013-5211lowyes
obbyCVE-2011-4092lowyes
opencryptokiCVE-2012-4454lowyes
CVE-2012-4455lowno
openjdk-6CVE-2012-5373lowyes
CVE-2015-0204medium**yes
openjdk-7CVE-2012-5373lowyes
openjdk-8CVE-2014-3566medium**yes
opus-toolsCVE-2014-9639medium**yes
p7zipCVE-2015-1038medium**yes
paxCVE-2015-1193lowyes
CVE-2015-1194lowyes
pcre3CVE-2015-2325not yet assigned?
CVE-2015-2326not yet assigned?
percona-xtradb-cluster-5.5CVE-2014-4243low**yes
phantomjsCVE-2013-4549medium**yes
php5CVE-2013-6501medium**no
CVE-2014-5459lowno
CVE-2015-2783not yet assigned?
CVE-2015-3329not yet assigned?
CVE-2015-3330not yet assigned?
TEMP-0783099-E851E9not yet assigned?
poundCVE-2009-3555medium**yes
puppet-module-puppetlabs-stdlibCVE-2015-1029medium**yes
pyjwtTEMP-0781640-F16931not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-1852medium**yes
python-restkitCVE-2015-2674not yet assigned?
python-rplyCVE-2014-1938low?
qemuCVE-2015-1779not yet assigned?
CVE-2015-2756medium**no
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2015-1858not yet assigned?
CVE-2015-1859not yet assigned?
CVE-2015-1860not yet assigned?
radare2CVE-2015-2305lowyes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
realmdCVE-2015-2704not yet assigned?
TEMP-0781179-EEF84Fnot yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
roundcubeCVE-2014-9587medium**yes
rsyncTEMP-0000000-948688low?
ruby-jwtTEMP-0781640-F16931not yet assigned?
ruby2.2CVE-2015-1855not yet assigned?
sqlite3TEMP-0000000-1D627Bnot yet assigned?
TEMP-0000000-30203Bnot yet assigned?
TEMP-0000000-6B9717not yet assigned?
squidCVE-2014-7141medium**yes
CVE-2014-7142medium**yes
CVE-2015-0881lowyes
sssdCVE-2014-0249lowno
tiffCVE-2015-1547not yet assigned?
tinymceCVE-2012-4230lowyes
tomcat7CVE-2014-0230not yet assigned?
tomcat8CVE-2014-0230not yet assigned?
tweepyCVE-2012-5825lowyes
unshieldCVE-2015-1386low?
vorbis-toolsCVE-2014-9639lowyes
w3afCVE-2013-2099lowyes
web2ldapCVE-2013-7258lowyes
wordpressTEMP-0000000-FE5275not yet assigned?
xbindkeys-configCVE-2014-9513not yet assigned?
xbmcCVE-2014-3800lowno
TEMP-0000000-9FAB83low?
xcfaCVE-2014-5254low?
CVE-2014-5255low?
xchatTEMP-0776609-026A07not yet assigned?
xchat-gnomeTEMP-0776609-026A07not yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
CVE-2015-3340low?
xerces-cCVE-2012-0880low?
yuiCVE-2013-6780lowyes
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems