Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
9baseCVE-2014-1935low?
accountsserviceCVE-2012-6655low?
acidbaseCVE-2012-1017lowyes
android-platform-system-coreCVE-2012-5564low**no
android-toolsCVE-2012-5564low**no
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
atticCVE-2015-4082not yet assigned?
audiofileCVE-2015-7747not yet assigned?
blenderCVE-2010-5105lowno
botan1.10CVE-2015-7827medium**yes
CVE-2016-2849medium**yes
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147not yet assigned?
CVE-2016-2148not yet assigned?
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cakephpCVE-2015-8379medium**yes
TEMP-0000000-698CF7not yet assigned?
chefCVE-2015-8559not yet assigned?
chickenCVE-2014-9651high**yes
CVE-2015-4556not yet assigned?
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781not yet assigned?
couchdbCVE-2014-2668lowyes
cpioTEMP-0815965-23B1E4low?
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
debian-installerTEMP-0788634-523580low?
dhcpcd5CVE-2014-7912medium**yes
CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-3697not yet assigned?
duplicityCVE-2014-3495low?
dwarfutilsCVE-2016-5027not yet assigned?
CVE-2016-5028not yet assigned?
CVE-2016-5029not yet assigned?
CVE-2016-5030not yet assigned?
CVE-2016-5031not yet assigned?
CVE-2016-5032not yet assigned?
CVE-2016-5033not yet assigned?
CVE-2016-5034not yet assigned?
CVE-2016-5035not yet assigned?
CVE-2016-5036not yet assigned?
CVE-2016-5038not yet assigned?
elixirCVE-2012-2146lowyes
eyed3CVE-2014-1934lowno
foomatic-filtersTEMP-0000000-ACBC4Cnot yet assigned?
freeipaCVE-2015-5179not yet assigned?
freeradiusCVE-2015-4680not yet assigned?
giflibCVE-2016-3977medium**yes
gitlabCVE-2016-4340not yet assigned?
gksuCVE-2014-2886medium**yes
glanceCVE-2016-0757medium**yes
glibcCVE-2014-9761high**yes
CVE-2015-5180low?
CVE-2016-4429not yet assigned?
graphicsmagickCVE-2016-2317not yet assigned?
CVE-2016-2318not yet assigned?
CVE-2016-3714high**yes
CVE-2016-3715medium**yes
CVE-2016-3716medium**yes
CVE-2016-3717high**yes
CVE-2016-3718medium**yes
groovyCVE-2015-3253high**yes
haskell-tlsCVE-2013-0169low**yes
heatCVE-2015-5295medium**yes
icedoveCVE-2016-1979medium**yes
CVE-2016-2805high**yes
CVE-2016-2807high**yes
icingaCVE-2015-8010not yet assigned?
icuCVE-2015-4844high**yes
CVE-2016-0494high**yes
TEMP-0000000-7586EDnot yet assigned?
imagemagickCVE-2016-3714high**yes
CVE-2016-3715medium**yes
CVE-2016-3716medium**yes
CVE-2016-3717high**yes
CVE-2016-3718medium**yes
TEMP-0823750-35BD14not yet assigned?
ironic-inspectorCVE-2015-5306medium**yes
jasperCVE-2015-5203not yet assigned?
CVE-2015-5221not yet assigned?
CVE-2016-1577medium**yes
CVE-2016-1867medium**yes
CVE-2016-2089medium**yes
CVE-2016-2116medium**yes
jqCVE-2015-8863lowyes
CVE-2016-4074lowyes
jythonCVE-2013-2027lowno
keystoneCVE-2015-7546medium**yes
kgbCVE-2015-1192medium**yes
krb5CVE-2016-3119low**yes
libapache2-mod-nssCVE-2015-3277not yet assigned?
CVE-2015-5244not yet assigned?
CVE-2016-3099not yet assigned?
libarchiveTEMP-0784213-45868Blow?
libblurayTEMP-0000000-EA424Anot yet assigned?
libdata-uuid-perlCVE-2013-4184low?
libfcgi-perlCVE-2012-6687medium**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libimobiledeviceCVE-2016-5104not yet assigned?
libjackson-json-javaCVE-2015-5211not yet assigned?
libjbcrypt-javaCVE-2015-0886medium**yes
libjpeg8CVE-2016-3616not yet assigned?
libjpeg9CVE-2016-3616not yet assigned?
libmp3-info-perlCVE-2013-6499not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
librsyncCVE-2014-8242lowyes
libspring-javaCVE-2015-3192low?
CVE-2015-5211not yet assigned?
libtirpcCVE-2016-4429not yet assigned?
libui-dialog-perlCVE-2008-7315not yet assigned?
libusbmuxdCVE-2016-5104not yet assigned?
libuserCVE-2015-3245low**no
CVE-2015-3246high**no
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
libxml2CVE-2015-8806medium**yes
CVE-2016-1761high**yes
CVE-2016-1762high**yes
CVE-2016-1833medium**yes
CVE-2016-1834medium**yes
CVE-2016-1835medium**yes
CVE-2016-1836medium**yes
CVE-2016-1837medium**yes
CVE-2016-1838medium**yes
CVE-2016-1839medium**yes
CVE-2016-1840medium**yes
CVE-2016-2073medium**yes
CVE-2016-3627medium**yes
CVE-2016-3705medium**yes
CVE-2016-4447not yet assigned?
CVE-2016-4448not yet assigned?
CVE-2016-4449not yet assigned?
CVE-2016-4483not yet assigned?
libxsltCVE-2016-1683not yet assigned?
CVE-2016-1684not yet assigned?
linuxCVE-2013-7445high**yes
CVE-2015-1350low**no
CVE-2015-8553low**no
CVE-2016-1575high**no
CVE-2016-1576high**no
CVE-2016-2188medium**no
CVE-2016-2853medium**no
CVE-2016-2854medium**no
CVE-2016-4440not yet assigned?
CVE-2016-4482low**no
CVE-2016-4569low**no
CVE-2016-4578low**no
CVE-2016-4580medium**yes
CVE-2016-4794high**no
CVE-2016-4951high**no
TEMP-0000000-F7A20Fnot yet assigned?
man-dbCVE-2015-1336not yet assigned?
mariadb-10.0CVE-2016-0643medium**yes
CVE-2016-0647medium**yes
CVE-2016-0648medium**yes
CVE-2016-0655low**yes
CVE-2016-0666low**yes
midgard2-coreCVE-2014-8148high**no
minissdpdCVE-2016-3178not yet assigned?
CVE-2016-3179not yet assigned?
mplayerTEMP-0000000-A54DD8low?
mxmlCVE-2016-4570not yet assigned?
CVE-2016-4571not yet assigned?
TEMP-0000000-8700BBnot yet assigned?
nagios3CVE-2013-7107lowyes
CVE-2013-7108lowyes
CVE-2013-7205lowyes
CVE-2014-1878medium**yes
netsurfCVE-2015-7505not yet assigned?
CVE-2015-7506not yet assigned?
CVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
netty-3.9CVE-2015-2156not yet assigned?
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
node-cliTEMP-0809252-619BDFnot yet assigned?
novaCVE-2013-2255not yet assigned?
CVE-2015-3241medium**yes
CVE-2015-5162low?
CVE-2015-7548low**yes
CVE-2015-8749medium**yes
CVE-2016-2140low**yes
ntpCVE-2015-7705not yet assigned?
CVE-2016-0727low?
ocamlCVE-2015-8869not yet assigned?
openjpeg2CVE-2015-6581high**yes
CVE-2015-8871not yet assigned?
CVE-2016-1923medium**yes
CVE-2016-1924medium**yes
CVE-2016-3183not yet assigned?
openntpdTEMP-0000000-F16AFEnot yet assigned?
openstack-troveCVE-2015-3156low?
opus-toolsCVE-2014-9639medium**yes
parallelCVE-2015-4155low**no
CVE-2015-4156low**no
pcre3TEMP-0000000-93E4E3not yet assigned?
pcsCVE-2015-5189medium**yes
pgpdumpCVE-2016-4021not yet assigned?
phantomjsCVE-2013-4549medium**yes
php5CVE-2014-5459lowno
TEMP-0800564-79703Bnot yet assigned?
policykit-1CVE-2016-2568not yet assigned?
proftpd-dfsgCVE-2016-3125high**yes
TEMP-0000000-3815A2not yet assigned?
protobufCVE-2015-5237low?
pycurlTEMP-0000000-FF9F75not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-restkitCVE-2015-2674not yet assigned?
python-sqlalchemy-utilsTEMP-0000000-EBC4D4not yet assigned?
qemuCVE-2014-3672low**no
CVE-2016-4002medium**yes
CVE-2016-4020low**no
CVE-2016-4439medium**no
CVE-2016-4441low**no
CVE-2016-4952not yet assigned?
CVE-2016-4964not yet assigned?
CVE-2016-5105not yet assigned?
CVE-2016-5106not yet assigned?
CVE-2016-5107not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
quaggaCVE-2016-4036low**no
CVE-2016-4049medium**yes
radare2CVE-2015-2305lowyes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
rawtherapeeCVE-2015-8366not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
roundcubeCVE-2016-4068not yet assigned?
rsyncTEMP-0786423-948688low?
ruby-eventmachineTEMP-0678512-2E167Cnot yet assigned?
ruby-sidekiqTEMP-0000000-23C1BDnot yet assigned?
TEMP-0000000-BD209Fnot yet assigned?
TEMP-0000000-F9A459not yet assigned?
sogoCVE-2015-5395not yet assigned?
spice-gtkCVE-2016-3066not yet assigned?
stalinCVE-2015-8697not yet assigned?
sudoCVE-2015-8239not yet assigned?
tiffCVE-2015-7313not yet assigned?
CVE-2015-7554high**yes
CVE-2015-8668high**yes
CVE-2016-3186medium**yes
CVE-2016-3619low?
CVE-2016-3620low?
CVE-2016-3621low?
CVE-2016-3622low?
CVE-2016-3623not yet assigned?
CVE-2016-3624not yet assigned?
CVE-2016-3625not yet assigned?
CVE-2016-3631not yet assigned?
CVE-2016-3632not yet assigned?
CVE-2016-3633not yet assigned?
CVE-2016-3634not yet assigned?
CVE-2016-3658low?
CVE-2016-3945not yet assigned?
CVE-2016-3990not yet assigned?
CVE-2016-3991not yet assigned?
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
unshieldCVE-2015-1386low?
util-linuxCVE-2016-2779not yet assigned?
w3afCVE-2013-2099lowyes
wineTEMP-0816034-9C45DClow?
wine-developmentTEMP-0816034-9C45DClow?
wolfsslCVE-2015-6925medium**yes
wpaCVE-2016-4476medium**yes
CVE-2016-4477medium**no
x11vncTEMP-0672435-7C494Cnot yet assigned?
xchat-gnomeCVE-2013-7449medium**yes
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
CVE-2015-5307medium**no
CVE-2015-6654low**no
CVE-2015-7311low**no
CVE-2015-8104medium**no
CVE-2015-8338high**no
CVE-2015-8339medium**no
CVE-2015-8340medium**no
CVE-2015-8341high**yes
CVE-2015-8550medium**no
CVE-2015-8555medium**yes
CVE-2015-8615low**no
CVE-2016-1570medium**no
CVE-2016-1571medium**no
CVE-2016-2270medium**no
CVE-2016-2271low**no
CVE-2016-3158low**no
CVE-2016-3159low**no
CVE-2016-3960high**no
CVE-2016-4480high**no
TEMP-0000000-CE3B44not yet assigned?
yuiCVE-2013-6780lowyes
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems