Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416medium**yes
accountsserviceCVE-2012-6655low?
aodhCVE-2017-12440medium**yes
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
backintimeCVE-2017-16667not yet assignedno
bareosCVE-2017-14610medium**no
binutilsCVE-2017-13716lowyes
CVE-2017-14930high**yes
CVE-2017-14932medium**yes
CVE-2017-14933medium**yes
CVE-2017-14934medium**yes
CVE-2017-14938medium**yes
CVE-2017-14939medium**yes
CVE-2017-14940medium**yes
CVE-2017-15020medium**yes
CVE-2017-15021medium**yes
CVE-2017-15022medium**yes
CVE-2017-15023medium**yes
CVE-2017-15024medium**yes
CVE-2017-15025medium**yes
CVE-2017-15225medium**yes
CVE-2017-15938medium**yes
CVE-2017-15996medium**yes
CVE-2017-16826not yet assignedno
CVE-2017-16827not yet assignedno
CVE-2017-16828not yet assignedno
CVE-2017-16829not yet assignedno
CVE-2017-16830not yet assignedno
CVE-2017-16831not yet assignedno
CVE-2017-16832not yet assignedno
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxCVE-2017-15873medium**yes
CVE-2017-15874medium**yes
CVE-2017-16544not yet assignedno
byzanzCVE-2015-2785lowyes
cairoCVE-2017-7475lowyes
CVE-2017-9814lowyes
cargoCVE-2016-10128high**yes
CVE-2016-10129medium**yes
CVE-2016-10130medium**yes
CVE-2016-8568medium**yes
CVE-2016-8569medium**yes
cephCVE-2017-7519not yet assigned?
check-mkCVE-2017-9781medium**yes
chefCVE-2015-8559medium**yes
cobblerCVE-2016-9605not yet assigned?
collectdCVE-2017-16820not yet assignedno
coreutilsCVE-2016-2781low**no
cronCVE-2017-9525medium**no
dcrawCVE-2015-8366not yet assigned?
docker.ioCVE-2017-16539not yet assignedno
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
CVE-2017-12583medium**yes
CVE-2017-12979medium**yes
CVE-2017-12980medium**yes
dolibarrCVE-2017-14238high**yes
CVE-2017-14239low**yes
CVE-2017-14240medium**yes
CVE-2017-14241low**yes
CVE-2017-14242high**yes
CVE-2017-9840medium**yes
exiv2CVE-2017-1000126not yet assignedno
CVE-2017-1000127not yet assignedno
CVE-2017-1000128not yet assignedno
CVE-2017-11336medium**yes
CVE-2017-11337medium**yes
CVE-2017-11338medium**yes
CVE-2017-11339medium**yes
CVE-2017-11340medium**yes
CVE-2017-11553lowyes
CVE-2017-11591lowyes
CVE-2017-11683lowyes
CVE-2017-12955medium**yes
CVE-2017-12956medium**yes
CVE-2017-14857medium**yes
CVE-2017-14859medium**yes
CVE-2017-14860medium**yes
CVE-2017-14862medium**yes
CVE-2017-14863medium**yes
CVE-2017-14864medium**yes
CVE-2017-14865medium**yes
ffmpegCVE-2017-16803lowno
CVE-2017-16840not yet assignedno
firmware-nonfree (non-free)CVE-2017-9417high**yes
fontforgeCVE-2017-11570lowyes
CVE-2017-11573lowyes
freeipaCVE-2015-5179medium**yes
CVE-2017-11191medium**yes
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2016-10317medium**yes
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
CVE-2017-15670lowyes
CVE-2017-15671lowyes
CVE-2017-15804lowyes
CVE-2017-8804high**yes
golang-1.7CVE-2017-15041high**yes
CVE-2017-15042medium**yes
golang-github-go-ldap-ldapCVE-2017-14623lowyes
guacamole-clientCVE-2016-1566low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152lowyes
imagemagickCVE-2017-12140lowyes
CVE-2017-12674lowyes
CVE-2017-12691lowyes
CVE-2017-12692lowyes
CVE-2017-12693lowyes
CVE-2017-12875lowyes
CVE-2017-12877medium**yes
CVE-2017-12983medium**yes
CVE-2017-13061medium**yes
CVE-2017-13133lowyes
CVE-2017-13134medium**yes
CVE-2017-13758medium**yes
CVE-2017-13768lowyes
CVE-2017-13769lowyes
CVE-2017-14060lowyes
CVE-2017-14172lowyes
CVE-2017-14173lowyes
CVE-2017-14174lowyes
CVE-2017-14175lowyes
CVE-2017-14224medium**yes
CVE-2017-14249lowyes
CVE-2017-14341lowyes
CVE-2017-14400lowyes
CVE-2017-14505lowyes
CVE-2017-14528medium**yes
CVE-2017-14532high**yes
CVE-2017-14607lowyes
CVE-2017-14624lowyes
CVE-2017-14625lowyes
CVE-2017-14626lowyes
CVE-2017-14682medium**yes
CVE-2017-14739lowyes
CVE-2017-14741lowyes
CVE-2017-14989medium**yes
CVE-2017-15015lowyes
CVE-2017-15017lowyes
CVE-2017-15277medium**yes
CVE-2017-15281lowyes
CVE-2017-16546medium**yes
jasperreportsCVE-2017-14941medium**yes
kannelCVE-2017-14609lowno
kgb-botCVE-2015-1554lowyes
kodiCVE-2017-5982medium**yes
kojiCVE-2017-1002153medium**yes
lameCVE-2017-15019medium**yes
ldnsCVE-2017-1000231not yet assignedno
CVE-2017-1000232not yet assignedno
ledgerCVE-2017-12481lowyes
CVE-2017-12482lowyes
CVE-2017-2807lowyes
CVE-2017-2808lowyes
libaoCVE-2017-11548lowyes
libapache-poi-javaCVE-2017-5644high**yes
libapache2-mod-nssCVE-2015-3277medium**yes
libarchiveCVE-2017-14501medium**yes
CVE-2017-14502medium**yes
CVE-2017-14503medium**yes
libcrocoCVE-2017-8834lowyes
CVE-2017-8871lowyes
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libdbd-mysql-perlCVE-2017-10788high**yes
CVE-2017-10789medium**yes
libextractorCVE-2017-15922lowyes
libgcCVE-2016-9427high**yes
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libid3tagCVE-2017-11551medium**yes
libjgroups-javaCVE-2016-2141lowyes
libjpeg-turboCVE-2017-15232lowyes
libmadCVE-2017-11552lowyes
libmp3spltCVE-2017-15185medium**yes
libnet-ping-external-perlCVE-2008-7319not yet assignedno
libnet-server-perlCVE-2013-1841lowyes
libpodofoCVE-2017-6841medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6849medium**yes
CVE-2017-8053medium**yes
CVE-2017-8054medium**yes
CVE-2017-8378high**yes
librsyncCVE-2014-8242lowyes
libsassCVE-2017-10687lowyes
CVE-2017-11341medium**yes
CVE-2017-11342medium**yes
CVE-2017-11554medium**yes
CVE-2017-11555medium**yes
CVE-2017-11556medium**yes
CVE-2017-11605medium**yes
CVE-2017-11608medium**yes
CVE-2017-12962lowyes
CVE-2017-12963lowyes
CVE-2017-12964lowyes
libsndfileCVE-2017-14245lowyes
CVE-2017-14246lowyes
CVE-2017-14634medium**yes
libui-dialog-perlCVE-2008-7315high**yes
libvorbisCVE-2017-11333lowyes
CVE-2017-14160medium**yes
CVE-2017-14632high**yes
CVE-2017-14633medium**yes
libxml-twig-perlCVE-2016-9180lowyes
libxml2CVE-2016-9318medium**yes
CVE-2017-8872medium**yes
libytnefCVE-2017-12141lowyes
CVE-2017-12142lowyes
CVE-2017-12144medium**yes
CVE-2017-9146medium**yes
CVE-2017-9470lowyes
CVE-2017-9471lowyes
CVE-2017-9472lowyes
CVE-2017-9473lowyes
CVE-2017-9474lowyes
libzipCVE-2017-14107lowyes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660lowno
CVE-2017-1000379high**no
CVE-2017-16538high**no
CVE-2017-16644not yet assignedno
CVE-2017-16645not yet assignedno
lrzipCVE-2017-8844medium**yes
CVE-2017-8846medium**yes
CVE-2017-9928medium**yes
CVE-2017-9929medium**yes
lucene-solrCVE-2017-3163medium**yes
mcollectiveCVE-2016-2788high**yes
CVE-2017-2292high**yes
mimedefangCVE-2017-14102medium**no
mosquittoCVE-2017-9868low**no
mp3spltCVE-2017-5666medium**yes
mrubyCVE-2017-9527lowyes
mysql-5.7CVE-2017-10155medium**yes
CVE-2017-10165medium**yes
CVE-2017-10167medium**yes
CVE-2017-10227medium**yes
CVE-2017-10268low**no
CVE-2017-10276medium**yes
CVE-2017-10279medium**yes
CVE-2017-10283low**yes
CVE-2017-10284medium**yes
CVE-2017-10286low**yes
CVE-2017-10294low**no
CVE-2017-10296medium**yes
CVE-2017-10311medium**yes
CVE-2017-10313medium**yes
CVE-2017-10314medium**yes
CVE-2017-10320medium**yes
CVE-2017-10365medium**yes
CVE-2017-10379medium**yes
CVE-2017-10384medium**yes
CVE-2017-3529low**yes
CVE-2017-3633medium**yes
CVE-2017-3634medium**yes
CVE-2017-3635low**yes
CVE-2017-3637low**yes
CVE-2017-3638medium**yes
CVE-2017-3639medium**yes
CVE-2017-3640medium**yes
CVE-2017-3641medium**yes
CVE-2017-3642medium**yes
CVE-2017-3643medium**yes
CVE-2017-3644medium**yes
CVE-2017-3645medium**yes
CVE-2017-3647medium**yes
CVE-2017-3648medium**yes
CVE-2017-3649medium**yes
CVE-2017-3650medium**yes
CVE-2017-3651medium**yes
CVE-2017-3652medium**yes
CVE-2017-3653low**yes
mysql-connector-netCVE-2017-10203medium**yes
CVE-2017-10277medium**yes
mysql-workbenchCVE-2017-3469lowyes
nasmCVE-2017-10686high**yes
CVE-2017-11111medium**yes
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
nginxCVE-2013-0337lowyes
node-tough-cookieCVE-2017-15010medium**yes
npmCVE-2016-3956medium**yes
ntopngCVE-2017-7416medium**yes
nvidia-graphics-drivers (non-free)CVE-2017-6266medium**no
nvidia-graphics-drivers (non-free)CVE-2017-6267medium**no
nvidia-graphics-drivers (non-free)CVE-2017-6272high**no
ocamlCVE-2017-9779high**no
ohcountCVE-2017-16926not yet assigned?
opencvCVE-2016-1516medium**yes
CVE-2016-1517medium**yes
CVE-2017-12597medium**yes
CVE-2017-12598medium**yes
CVE-2017-12599medium**yes
CVE-2017-12600high**yes
CVE-2017-12601medium**yes
CVE-2017-12602high**yes
CVE-2017-12603medium**yes
CVE-2017-12604medium**yes
CVE-2017-12605medium**yes
CVE-2017-12606medium**yes
CVE-2017-12862medium**yes
CVE-2017-12863medium**yes
CVE-2017-12864medium**yes
openexrCVE-2017-12596medium**yes
CVE-2017-14988medium**yes
CVE-2017-9111medium**yes
CVE-2017-9113medium**yes
CVE-2017-9114medium**yes
CVE-2017-9115medium**yes
optipngCVE-2017-1000229not yet assignedno
passengerCVE-2017-1000384not yet assigned?
percona-xtrabackupCVE-2016-6225medium**yes
phammCVE-2017-0378medium**yes
php-casCVE-2017-1000071medium**yes
php-gettextCVE-2016-6175high**yes
php7.0CVE-2017-8923high**yes
php7.1CVE-2017-8923high**yes
phpldapadminCVE-2017-11107medium**yes
pluxmlCVE-2017-1001001low**yes
pngcrushCVE-2015-7700high**yes
policykit-1CVE-2016-2568medium**no
popplerCVE-2017-14517lowyes
CVE-2017-14518lowyes
CVE-2017-14519medium**yes
CVE-2017-14520lowyes
CVE-2017-14617medium**yes
CVE-2017-14926medium**yes
CVE-2017-14927medium**yes
CVE-2017-14928medium**yes
CVE-2017-14929medium**yes
CVE-2017-14975lowyes
CVE-2017-14976lowyes
CVE-2017-14977lowyes
CVE-2017-15565medium**yes
postgresql-9.6CVE-2017-15098not yet assigned?
CVE-2017-15099not yet assigned?
potraceCVE-2017-7263medium**yes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
puppet-module-puppetlabs-apacheCVE-2017-2299medium**yes
pyradCVE-2013-0342low?
python-numpyCVE-2017-12852medium**yes
python-pysaml2CVE-2016-10127lowyes
CVE-2017-1000246not yet assignedno
python-restkitCVE-2015-2674medium**yes
python-scrapyCVE-2017-14158high**yes
qemuCVE-2017-15268medium**yes
CVE-2017-15289low**no
CVE-2017-16845not yet assignedno
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
quaggaCVE-2017-3224low?
radare2CVE-2017-15368medium**yes
CVE-2017-15385medium**yes
CVE-2017-15931medium**yes
CVE-2017-15932medium**yes
CVE-2017-16357medium**yes
CVE-2017-16358medium**yes
CVE-2017-16359medium**yes
CVE-2017-16805not yet assignedno
rbenvCVE-2017-1000047high**yes
redmineCVE-2017-15568medium**yes
CVE-2017-15569medium**yes
CVE-2017-15570medium**yes
CVE-2017-15571medium**yes
CVE-2017-15572medium**yes
CVE-2017-15573medium**yes
CVE-2017-15574medium**yes
CVE-2017-15575high**yes
CVE-2017-15576medium**yes
CVE-2017-15577medium**yes
CVE-2017-16804not yet assignedno
resiprocateCVE-2017-11521lowyes
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347lowyes
CVE-2016-6348lowyes
CVE-2017-7561medium**yes
rsyncCVE-2017-16548not yet assignedno
rtpproxyCVE-2017-14114medium**yes
ruby-redis-storeCVE-2017-1000248not yet assignedno
saltCVE-2017-12791high**yes
CVE-2017-14695high**yes
CVE-2017-14696medium**yes
scalaCVE-2017-15288not yet assignedno
simple-xmlCVE-2017-1000190not yet assignedno
soundtouchCVE-2017-9258lowyes
CVE-2017-9259lowyes
CVE-2017-9260lowyes
soxCVE-2017-11332medium**yes
CVE-2017-11358medium**yes
CVE-2017-11359medium**yes
CVE-2017-15370medium**yes
CVE-2017-15371medium**yes
CVE-2017-15372medium**yes
CVE-2017-15642medium**yes
spipCVE-2017-15736medium**yes
swftoolsCVE-2017-1000174not yet assignedno
CVE-2017-1000176not yet assignedno
CVE-2017-1000182not yet assignedno
CVE-2017-1000185not yet assignedno
CVE-2017-1000186not yet assignedno
CVE-2017-1000187not yet assignedno
CVE-2017-16711not yet assignedno
CVE-2017-16793not yet assignedno
CVE-2017-16794not yet assignedno
CVE-2017-16796not yet assignedno
CVE-2017-16797not yet assignedno
CVE-2017-16868not yet assignedno
tcpdumpCVE-2017-16808lowno
tiffCVE-2017-11613medium**yes
CVE-2017-9935medium**yes
tikaCVE-2016-4434medium**yes
tinymceCVE-2012-4230lowyes
tinyproxyCVE-2017-11747low**no
tt-rssCVE-2017-16896not yet assignedno
util-linuxCVE-2016-2779high**no
varnishCVE-2017-8807not yet assignedno
vimCVE-2017-1000382not yet assignedno
web2pyCVE-2016-10321medium**yes
CVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wildmidiCVE-2017-11661lowyes
CVE-2017-11662lowyes
CVE-2017-11663lowyes
CVE-2017-11664lowyes
wordpressCVE-2012-6707medium**yes
x11vncTEMP-0672435-7C494Cnot yet assigned?
xenCVE-2017-14316high**no
CVE-2017-14317medium**no
CVE-2017-14318medium**no
CVE-2017-14319high**no
CVE-2017-15588medium**no
CVE-2017-15589low**no
CVE-2017-15590medium**no
CVE-2017-15591medium**no
CVE-2017-15592high**no
CVE-2017-15593medium**no
CVE-2017-15594medium**no
CVE-2017-15595high**no
CVE-2017-15597high**yes
xrdpCVE-2017-16927not yet assigned?
yaml-cppCVE-2017-11692medium**yes
CVE-2017-5950lowyes
yaml-cpp0.3CVE-2017-11692medium**yes
CVE-2017-5950lowyes
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5977medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems