Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416not yet assignedno
accountsserviceCVE-2012-6655lowno
activemqCVE-2021-26117not yet assignedno
ansibleCVE-2021-20178not yet assigned?
CVE-2021-20180not yet assigned?
CVE-2021-20191not yet assigned?
ansible-baseCVE-2021-20228not yet assigned?
apparmorCVE-2016-1585lowno
audiofileCVE-2019-13147lowno
aufsCVE-2020-11935not yet assigned?
axtlsCVE-2019-10013not yet assignedno
CVE-2019-9689not yet assignedno
bareosCVE-2017-14610lowno
CVE-2020-11061not yet assignedno
CVE-2020-4042not yet assignedno
batikCVE-2020-11987not yet assignedno
beakerCVE-2013-7489not yet assignedno
bitcoinCVE-2018-20587not yet assignedno
CVE-2020-14198not yet assignedno
CVE-2021-3195not yet assignedno
bsdiffCVE-2020-14315not yet assignedno
c3p0CVE-2019-5427lowno
cairoCVE-2017-7475lowno
CVE-2017-9814lowno
CVE-2018-18064lowno
CVE-2019-6461lowno
CVE-2019-6462lowno
cakephpCVE-2020-15400not yet assignedno
cephCVE-2020-25678not yet assignedno
CVE-2020-27781not yet assignedno
CVE-2020-27839not yet assigned?
cgminerCVE-2018-10057not yet assignedno
CVE-2018-10058not yet assignedno
cimgCVE-2018-7587lowno
civicrmCVE-2021-21252not yet assignedno
ckeditorCVE-2021-26271not yet assignedno
CVE-2021-26272not yet assignedno
claws-mailCVE-2019-10735lowno
cmark-gfmCVE-2020-5238not yet assignedno
condorCVE-2019-18823not yet assignedno
coreutilsCVE-2016-2781lowno
crmshCVE-2020-35459not yet assignedno
dogtag-pkiCVE-2019-10178not yet assignedno
CVE-2019-10180not yet assignedno
CVE-2020-1696not yet assignedno
dojoCVE-2020-4051not yet assignedno
dokuwikiCVE-2016-7964lowno
edk2CVE-2019-14560not yet assigned?
etcdCVE-2018-1098lowno
CVE-2018-1099lowno
firmware-nonfree (non-free)CVE-2020-12313not yet assignedno
CVE-2020-12317not yet assignedno
CVE-2020-12319not yet assignedno
CVE-2020-12321not yet assignedno
freediameterCVE-2020-6098not yet assignedno
freedroidrpgCVE-2020-14938lowno
CVE-2020-14939lowno
freeimageCVE-2019-12212not yet assignedno
CVE-2019-12214not yet assignedno
freeipaCVE-2019-14826not yet assignedno
gdm3CVE-2016-1000002lowno
geglCVE-2018-10111lowno
CVE-2018-10112lowno
giflibCVE-2018-11489not yet assignedno
gitlab (contrib)CVE-2020-26414not yet assignedno
CVE-2021-22167not yet assignedno
CVE-2021-22168not yet assignedno
CVE-2021-22171not yet assignedno
CVE-2021-22172not yet assigned?
gitlab-ci-multi-runnerCVE-2020-13295not yet assignedno
CVE-2020-13327not yet assignedno
glibcCVE-2021-27645not yet assignedno
CVE-2021-3326not yet assignedno
gnome-autoarCVE-2020-36241not yet assignedno
gnupg1CVE-2019-14855lowno
godotCVE-2021-26825not yet assignedno
CVE-2021-26826not yet assignedno
golang-1.15CVE-2020-29510not yet assignedno
CVE-2020-29511not yet assignedno
golang-github-gin-gonic-ginCVE-2020-28483not yet assignedno
golang-github-nats-io-jwtCVE-2020-26521not yet assignedno
CVE-2020-26892not yet assignedno
golang-github-russellhaering-goxmldsigCVE-2020-7711not yet assignedno
golang-golang-x-textCVE-2020-28851not yet assignedno
google-compute-image-packagesCVE-2020-8903not yet assignedno
CVE-2020-8907not yet assignedno
CVE-2020-8933not yet assignedno
google-oauth-client-javaCVE-2020-7692not yet assignedno
gradleCVE-2019-15052lowno
CVE-2019-16370lowno
graphvizCVE-2019-9904lowno
gsoapCVE-2020-13574not yet assignedno
CVE-2020-13575not yet assignedno
CVE-2020-13576not yet assignedno
CVE-2020-13577not yet assignedno
CVE-2020-13578not yet assignedno
guacamole-clientCVE-2017-3158not yet assignedno
CVE-2018-1340not yet assignedno
hdf5CVE-2018-17432not yet assignedno
CVE-2019-8397not yet assignedno
imagemagickCVE-2021-20241not yet assigned?
CVE-2021-20244not yet assigned?
CVE-2021-20245not yet assigned?
CVE-2021-20246not yet assigned?
iotjsCVE-2020-24344not yet assignedno
jabberd2CVE-2017-18226lowno
jackson-dataformat-cborCVE-2020-28491not yet assignedno
jakarta-jmeterCVE-2018-1287lowno
CVE-2018-1297lowno
CVE-2019-0187not yet assignedno
joddCVE-2018-21234not yet assignedno
jrubyCVE-2017-17742not yet assignedno
CVE-2019-16201not yet assignedno
CVE-2019-16254not yet assignedno
CVE-2019-16255not yet assignedno
CVE-2020-25613not yet assignedno
jythonCVE-2019-16935not yet assignedno
kubernetesCVE-2020-29652not yet assignedno
CVE-2020-8554not yet assignedno
libapache-poi-javaCVE-2019-12415not yet assignedno
libappimageCVE-2020-25265not yet assignedno
libcacaCVE-2021-3410not yet assignedno
libconvert-asn1-perlCVE-2013-7488not yet assignedno
libhibernate-validator-javaCVE-2019-10219not yet assignedno
CVE-2020-10693not yet assignedno
libjgroups-javaCVE-2016-2141lowno
libmatioCVE-2019-20019not yet assignedno
libnet-server-perlCVE-2013-1841lowno
libpam-tacplusCVE-2020-13881lowno
libpodofoCVE-2018-12983lowno
CVE-2018-8002lowno
CVE-2019-10723lowno
CVE-2019-20093not yet assignedno
libsixelCVE-2020-11721lowno
CVE-2020-19668not yet assignedno
libstbCVE-2019-15058not yet assignedno
CVE-2019-20056lowno
CVE-2020-6617lowno
CVE-2020-6618lowno
CVE-2020-6619lowno
CVE-2020-6620lowno
CVE-2020-6621lowno
CVE-2020-6622lowno
CVE-2020-6623lowno
libxml-security-javaCVE-2019-12400not yet assignedno
libxsmmCVE-2018-20541not yet assignedno
CVE-2018-20542not yet assignedno
CVE-2018-20543not yet assignedno
linuxCVE-2013-7445not yet assignedno
CVE-2017-0630not yet assignedno
CVE-2018-12928lowno
CVE-2018-3693not yet assignedno
CVE-2019-15213not yet assignedno
CVE-2019-15794not yet assignedno
CVE-2019-16089not yet assignedno
CVE-2019-19378not yet assignedno
CVE-2019-19449not yet assignedno
CVE-2019-19814not yet assignedno
CVE-2019-20794not yet assignedno
CVE-2020-11725not yet assignedno
CVE-2020-12362not yet assignedno
CVE-2020-12363not yet assignedno
CVE-2020-12364not yet assignedno
CVE-2020-14304not yet assignedno
CVE-2020-15802not yet assignedno
CVE-2020-16119not yet assignedno
CVE-2020-25639not yet assigned?
CVE-2020-25670not yet assigned?
CVE-2020-25671not yet assigned?
CVE-2020-25672not yet assigned?
CVE-2020-25673not yet assigned?
CVE-2020-26541not yet assignedno
CVE-2020-27820not yet assigned?
CVE-2020-35501not yet assigned?
CVE-2021-20194not yet assignedno
CVE-2021-26930not yet assignedno
CVE-2021-26931not yet assignedno
CVE-2021-26932not yet assignedno
log4netCVE-2018-1285lowno
lua5.3CVE-2019-6706not yet assignedno
CVE-2020-24370not yet assignedno
lxc-templatesCVE-2017-18641not yet assignedno
m2cryptoCVE-2020-25657not yet assignedno
mingw-w64CVE-2018-1000101lowno
modsecurity-crsCVE-2018-16384lowno
mongo-java-driverCVE-2021-20328not yet assignedno
mupdfCVE-2021-3407not yet assignedno
mxmlCVE-2018-20592lowno
CVE-2018-20593lowno
nginxCVE-2013-0337lowno
node-ellipticCVE-2020-28498not yet assignedno
node-lodashCVE-2020-28500not yet assignedno
CVE-2021-23337not yet assignedno
node-node-sassCVE-2020-24025not yet assignedno
node-prismjsCVE-2021-23341not yet assignedno
node-static-evalCVE-2021-23334not yet assignedno
node-url-parseCVE-2021-27515not yet assignedno
novaCVE-2015-9543not yet assignedno
nssCVE-2020-12413not yet assigned?
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-5715not yet assignedno
CVE-2017-5753not yet assignedno
CVE-2017-5754not yet assignedno
CVE-2017-6266not yet assignedno
CVE-2017-6267not yet assignedno
CVE-2017-6272not yet assignedno
CVE-2018-6249not yet assignedno
CVE-2018-6253not yet assignedno
CVE-2018-6260not yet assignedno
CVE-2020-5963not yet assignedno
CVE-2020-5967not yet assignedno
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-6266not yet assignedno
CVE-2017-6267not yet assignedno
CVE-2017-6272not yet assignedno
CVE-2018-6249not yet assignedno
CVE-2018-6253not yet assignedno
CVE-2018-6260not yet assignedno
CVE-2020-5963not yet assignedno
CVE-2020-5967not yet assignedno
CVE-2021-1056not yet assignedno
nvidia-graphics-drivers-tesla-440 (non-free)CVE-2021-1056not yet assignedno
open-build-serviceCVE-2017-9268lowno
CVE-2018-12466not yet assignedno
CVE-2020-8020not yet assignedno
CVE-2020-8021not yet assignedno
CVE-2020-8031not yet assignedno
opendmarcCVE-2019-20790not yet assignedno
CVE-2020-12272not yet assignedno
openjpeg2CVE-2019-6988lowno
openrcCVE-2018-21269not yet assignedno
opensshCVE-2018-15919lowno
opentmpfilesCVE-2017-18188not yet assignedno
CVE-2017-18925not yet assignedno
otrs2 (non-free)CVE-2021-21252not yet assignedno
phammCVE-2018-20806lowno
phpldapadminCVE-2020-35132not yet assignedno
phppgadminCVE-2019-10784not yet assignedno
policykit-1CVE-2016-2568lowno
popplerCVE-2019-9543lowno
CVE-2019-9545lowno
pupnp-1.8CVE-2020-12695not yet assignedno
CVE-2020-13848not yet assignedno
puppetdbCVE-2020-7943lowno
pypyCVE-2019-16935lowno
pyradCVE-2013-0342lowno
python-autobahnCVE-2020-35678not yet assignedno
python-cmarkgfmCVE-2020-5238not yet assignedno
python-django-celery-resultsCVE-2020-17495not yet assignedno
python-httplib2CVE-2021-21240not yet assignedno
python-libnmapCVE-2019-1010017lowno
python-pysaml2CVE-2016-10127lowno
python-reportlabCVE-2020-28463not yet assignedno
python-rsaCVE-2020-13757not yet assignedno
CVE-2020-25658not yet assignedno
pyyamlCVE-2020-14343not yet assignedno
qemuCVE-2019-12067low?
CVE-2020-14394not yet assigned?
CVE-2020-15469lowno
CVE-2020-17380not yet assignedno
CVE-2020-25741not yet assignedno
CVE-2020-25742not yet assignedno
CVE-2020-25743not yet assignedno
CVE-2020-29443not yet assignedno
CVE-2020-35503not yet assigned?
CVE-2020-35504not yet assigned?
CVE-2020-35505not yet assigned?
CVE-2020-35506not yet assigned?
CVE-2021-20196not yet assigned?
CVE-2021-20203not yet assignedno
CVE-2021-20255not yet assigned?
CVE-2021-20257not yet assigned?
CVE-2021-3392not yet assigned?
CVE-2021-3409not yet assigned?
CVE-2021-3416not yet assigned?
quaggaCVE-2017-3224lowno
r-cran-commonmarkCVE-2020-5238not yet assignedno
rabbitmq-serverCVE-2019-11287not yet assignedno
CVE-2019-11291not yet assignedno
radare2CVE-2020-15121not yet assignedno
CVE-2020-16269not yet assignedno
CVE-2020-17487not yet assignedno
rbenvCVE-2017-1000047not yet assignedno
re2cCVE-2018-21232not yet assignedno
resteasyCVE-2016-6345lowno
CVE-2016-6346lowno
CVE-2016-6347lowno
CVE-2016-6348lowno
CVE-2018-1051not yet assignedno
CVE-2020-10688not yet assigned?
CVE-2020-25633not yet assignedno
CVE-2020-25724not yet assigned?
resteasy3.0CVE-2020-25633not yet assignedno
CVE-2020-25724not yet assigned?
rktCVE-2019-10144not yet assignedno
CVE-2019-10145not yet assignedno
CVE-2019-10147not yet assignedno
roundcubeCVE-2019-15237lowno
ruby-carrierwaveCVE-2021-21288not yet assignedno
CVE-2021-21305not yet assignedno
ruby-omniauthCVE-2015-9284not yet assignedno
ruby-twitter-streamCVE-2020-24392not yet assignedno
rust-arc-swapCVE-2020-35711not yet assignedno
rust-failureCVE-2019-25010not yet assignedno
CVE-2020-25575lowno
rust-httpCVE-2019-25008not yet assignedno
CVE-2019-25009not yet assignedno
CVE-2020-25574lowno
rust-hyperCVE-2021-21299not yet assignedno
rust-imageCVE-2020-35916not yet assignedno
rust-kamadak-exifCVE-2021-21235not yet assignedno
rust-lock-apiCVE-2020-35910not yet assignedno
CVE-2020-35911not yet assignedno
CVE-2020-35912not yet assignedno
CVE-2020-35913not yet assignedno
CVE-2020-35914not yet assignedno
rust-ncursesCVE-2019-15547not yet assignedno
CVE-2019-15548not yet assignedno
rust-rand-coreCVE-2021-27378not yet assignedno
rust-rand-core-0.3CVE-2020-25576lowno
rust-rgbCVE-2020-25016not yet assignedno
rust-sized-chunksCVE-2020-25791not yet assignedno
CVE-2020-25792not yet assignedno
CVE-2020-25793not yet assignedno
CVE-2020-25794not yet assignedno
CVE-2020-25795not yet assignedno
CVE-2020-25796not yet assignedno
rust-smallvecCVE-2021-25900not yet assignedno
rust-xcbCVE-2020-36205not yet assignedno
CVE-2021-26955not yet assignedno
CVE-2021-26956not yet assignedno
CVE-2021-26957not yet assignedno
CVE-2021-26958not yet assignedno
saltCVE-2020-28243not yet assignedno
CVE-2020-28972not yet assignedno
CVE-2020-35662not yet assignedno
CVE-2021-25281not yet assignedno
CVE-2021-25282not yet assignedno
CVE-2021-25283not yet assignedno
CVE-2021-25284not yet assignedno
CVE-2021-3144not yet assignedno
CVE-2021-3148not yet assignedno
CVE-2021-3197not yet assignedno
shiroCVE-2019-12422lowno
CVE-2020-11989not yet assignedno
CVE-2020-13933not yet assignedno
CVE-2020-17510not yet assignedno
CVE-2020-17523not yet assignedno
CVE-2020-1957not yet assignedno
singularity-containerCVE-2020-13845not yet assignedno
CVE-2020-13846not yet assignedno
CVE-2020-13847not yet assignedno
CVE-2020-15229not yet assignedno
CVE-2020-25039not yet assignedno
CVE-2020-25040not yet assignedno
sleuthkitCVE-2018-11737lowno
CVE-2018-11738lowno
CVE-2018-11739lowno
CVE-2018-11740lowno
software-propertiesCVE-2020-15709not yet assignedno
spiceCVE-2021-20201not yet assigned?
steghideCVE-2021-27211not yet assignedno
stunnel4CVE-2021-20230not yet assignedno
sympaCVE-2020-26880not yet assignedno
three.jsCVE-2020-28496not yet assignedno
thriftCVE-2019-11939not yet assignedno
CVE-2020-13949not yet assignedno
tikaCVE-2020-9489not yet assignedno
tuxguitarCVE-2020-14940not yet assignedno
u-bootCVE-2021-27097not yet assignedno
CVE-2021-27138not yet assignedno
vnctermCVE-2018-7226lowno
wordpressCVE-2012-6707not yet assignedno
CVE-2018-14028not yet assignedno
xdg-utilsCVE-2020-27748not yet assigned?
xmlgraphics-commonsCVE-2020-11988not yet assignedno
xserver-xorg-video-nouveauCVE-2018-3979lowno
yaraCVE-2019-19648not yet assignedno
zintCVE-2021-27799not yet assignedno
zypperCVE-2017-9271lowno

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems