Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416medium**yes
accountsserviceCVE-2012-6655low?
aodhCVE-2017-12440medium**yes
apache2CVE-2017-9798not yet assignedno
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
asteriskCVE-2017-14603not yet assigned?
avahiCVE-2017-6519medium**yes
bareosCVE-2017-14610not yet assigned?
bind9CVE-2016-6170medium**yes
binutilsCVE-2017-13716lowyes
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxTEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cairoCVE-2017-7475lowyes
CVE-2017-9814lowyes
cargoCVE-2016-10128high**yes
CVE-2016-10129medium**yes
CVE-2016-10130medium**yes
CVE-2016-8568medium**yes
CVE-2016-8569medium**yes
cephCVE-2017-7519not yet assigned?
check-mkCVE-2017-9781medium**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954lowyes
CVE-2017-11343medium**yes
CVE-2017-6949medium**yes
CVE-2017-9334lowyes
chromium-browserCVE-2017-5111not yet assigned?
CVE-2017-5112not yet assigned?
CVE-2017-5113not yet assigned?
CVE-2017-5114not yet assigned?
CVE-2017-5115not yet assigned?
CVE-2017-5116not yet assigned?
CVE-2017-5117not yet assigned?
CVE-2017-5118not yet assigned?
CVE-2017-5119not yet assigned?
CVE-2017-5120not yet assigned?
cobblerCVE-2016-9605not yet assigned?
coreutilsCVE-2016-2781low**no
cronCVE-2017-9525medium**no
dcrawCVE-2015-8366not yet assigned?
dogtag-pkiCVE-2017-7537not yet assigned?
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
CVE-2017-12583medium**yes
CVE-2017-12979medium**yes
CVE-2017-12980medium**yes
dolibarrCVE-2017-14238high**yes
CVE-2017-14239low**yes
CVE-2017-14240medium**yes
CVE-2017-14241low**yes
CVE-2017-14242high**yes
CVE-2017-9840medium**yes
exiv2CVE-2017-11336medium**yes
CVE-2017-11337medium**yes
CVE-2017-11338medium**yes
CVE-2017-11339medium**yes
CVE-2017-11340medium**yes
CVE-2017-11553lowyes
CVE-2017-11591lowyes
CVE-2017-11592lowyes
CVE-2017-11683lowyes
CVE-2017-12955medium**yes
CVE-2017-12956medium**yes
fontforgeCVE-2017-11568medium**yes
CVE-2017-11569medium**yes
CVE-2017-11570lowyes
CVE-2017-11571medium**yes
CVE-2017-11572medium**yes
CVE-2017-11573lowyes
CVE-2017-11574medium**yes
CVE-2017-11575medium**yes
CVE-2017-11576medium**yes
CVE-2017-11577medium**yes
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030medium**yes
CVE-2016-9575not yet assigned?
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2016-10317medium**yes
CVE-2017-11714medium**yes
CVE-2017-9611medium**yes
CVE-2017-9612medium**yes
CVE-2017-9726medium**yes
CVE-2017-9727medium**yes
CVE-2017-9739medium**yes
CVE-2017-9835medium**yes
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
CVE-2017-12132medium**yes
CVE-2017-8804high**yes
gnome-keyringTEMP-0395572-55D193low?
golang-github-go-ldap-ldapCVE-2017-14623not yet assigned?
graphicsmagickCVE-2017-13737lowyes
CVE-2017-14504not yet assignedno
guacamole-clientCVE-2016-1566low**yes
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152lowyes
imagemagickCVE-2017-12140high**yes
CVE-2017-12674high**yes
CVE-2017-12691high**yes
CVE-2017-12692high**yes
CVE-2017-12693high**yes
CVE-2017-12875high**yes
CVE-2017-12876medium**yes
CVE-2017-12877medium**yes
CVE-2017-12983medium**yes
CVE-2017-13061medium**yes
CVE-2017-13133high**yes
CVE-2017-13134medium**yes
CVE-2017-13758medium**yes
CVE-2017-13768lowyes
CVE-2017-13769lowyes
CVE-2017-14060medium**yes
CVE-2017-14137lowyes
CVE-2017-14172high**yes
CVE-2017-14173medium**yes
CVE-2017-14174high**yes
CVE-2017-14175high**yes
CVE-2017-14224medium**yes
CVE-2017-14249lowyes
CVE-2017-14341lowyes
CVE-2017-14400lowno
CVE-2017-14505not yet assignedno
CVE-2017-14528not yet assignedno
CVE-2017-14532not yet assignedno
CVE-2017-14607low?
CVE-2017-14624not yet assigned?
CVE-2017-14625not yet assigned?
CVE-2017-14626not yet assigned?
jackson-databindCVE-2017-7525not yet assigned?
jbig2decCVE-2016-8729not yet assigned?
CVE-2017-9216medium**yes
jythonCVE-2013-2027lowno
kannelCVE-2017-14609not yet assigned?
kgb-botCVE-2015-1554lowyes
kodiCVE-2017-5982medium**yes
krb5CVE-2017-11462not yet assignedno
lameCVE-2017-13712medium**yes
CVE-2017-9869medium**yes
CVE-2017-9870medium**yes
CVE-2017-9871medium**yes
CVE-2017-9872medium**yes
ledgerCVE-2017-12481lowyes
CVE-2017-12482lowyes
CVE-2017-2807lowyes
CVE-2017-2808lowyes
libaoCVE-2017-11548lowyes
libapache-poi-javaCVE-2017-5644high**yes
libapache2-mod-nssCVE-2015-3277medium**yes
libarchiveCVE-2017-14501not yet assignedno
CVE-2017-14502not yet assignedno
CVE-2017-14503not yet assignedno
libbsonCVE-2017-14227medium**yes
libcrocoCVE-2017-8834lowyes
CVE-2017-8871lowyes
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libdbd-mysql-perlCVE-2017-10788high**yes
CVE-2017-10789medium**yes
libexifCVE-2016-6328not yet assigned?
libgcCVE-2016-9427high**yes
libgigCVE-2017-12950lowyes
CVE-2017-12951lowyes
CVE-2017-12952lowyes
CVE-2017-12953lowyes
CVE-2017-12954lowyes
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libid3tagCVE-2017-11551medium**yes
libjgroups-javaCVE-2016-2141lowyes
libmadCVE-2017-11552lowyes
libnet-server-perlCVE-2013-1841lowyes
libpodofoCVE-2017-5852lowyes
CVE-2017-6841medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6849medium**yes
CVE-2017-7994medium**yes
CVE-2017-8053medium**yes
CVE-2017-8054medium**yes
CVE-2017-8378high**yes
CVE-2017-8787medium**yes
librawCVE-2017-13735lowyes
CVE-2017-14265high**yes
CVE-2017-14348not yet assignedno
CVE-2017-14608low?
librsyncCVE-2014-8242lowyes
libsassCVE-2017-10687lowyes
CVE-2017-11341medium**yes
CVE-2017-11342medium**yes
CVE-2017-11554medium**yes
CVE-2017-11555medium**yes
CVE-2017-11556medium**yes
CVE-2017-11605medium**yes
CVE-2017-11608medium**yes
CVE-2017-12962lowyes
CVE-2017-12963lowyes
CVE-2017-12964lowyes
libsndfileCVE-2017-14634not yet assigned?
libui-dialog-perlCVE-2008-7315not yet assigned?
libvorbisCVE-2017-11333lowyes
CVE-2017-11735lowyes
CVE-2017-14632not yet assigned?
CVE-2017-14633not yet assigned?
libxml-libxml-perlCVE-2017-10672high**yes
libxml-twig-perlCVE-2016-9180lowyes
libxml2CVE-2016-9318medium**yes
CVE-2017-5969low**yes
CVE-2017-8872medium**yes
libytnefCVE-2017-12141medium**yes
CVE-2017-12142medium**yes
CVE-2017-12144medium**yes
CVE-2017-9146medium**yes
CVE-2017-9470medium**yes
CVE-2017-9471medium**yes
CVE-2017-9472medium**yes
CVE-2017-9473medium**yes
CVE-2017-9474medium**yes
libzipCVE-2017-14107lowyes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660medium**no
CVE-2017-1000379high**no
lrzipCVE-2017-8844medium**yes
CVE-2017-8846medium**yes
CVE-2017-9928medium**yes
CVE-2017-9929medium**yes
lucene-solrCVE-2017-3163medium**yes
mcollectiveCVE-2016-2788high**yes
CVE-2017-2292high**yes
mimedefangCVE-2017-14102medium**no
moodleCVE-2017-12156not yet assignedno
CVE-2017-12157not yet assignedno
CVE-2017-2642medium**yes
CVE-2017-7489medium**yes
CVE-2017-7490medium**yes
CVE-2017-7491medium**yes
CVE-2017-7532medium**yes
mosquittoCVE-2017-9868low**no
mp3spltCVE-2017-5666medium**yes
mrubyCVE-2017-9527lowyes
mysql-5.7CVE-2017-3529low**yes
CVE-2017-3633medium**yes
CVE-2017-3634medium**yes
CVE-2017-3635low**yes
CVE-2017-3637low**yes
CVE-2017-3638medium**yes
CVE-2017-3639medium**yes
CVE-2017-3640medium**yes
CVE-2017-3641medium**yes
CVE-2017-3642medium**yes
CVE-2017-3643medium**yes
CVE-2017-3644medium**yes
CVE-2017-3645medium**yes
CVE-2017-3647medium**yes
CVE-2017-3648medium**yes
CVE-2017-3649medium**yes
CVE-2017-3650medium**yes
CVE-2017-3651medium**yes
CVE-2017-3652medium**yes
CVE-2017-3653low**yes
mysql-workbenchCVE-2017-3469lowyes
nasmCVE-2017-10686high**yes
CVE-2017-11111medium**yes
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
nginxCVE-2013-0337lowyes
npmCVE-2016-3956medium**yes
nssCVE-2017-11695not yet assigned?
CVE-2017-11696not yet assigned?
CVE-2017-11697not yet assigned?
CVE-2017-11698not yet assigned?
ntopngCVE-2017-7416medium**yes
ocamlCVE-2017-9779high**no
opencvCVE-2016-1516medium**yes
CVE-2016-1517medium**yes
CVE-2017-12597medium**yes
CVE-2017-12598medium**yes
CVE-2017-12599medium**yes
CVE-2017-12600high**yes
CVE-2017-12601medium**yes
CVE-2017-12602high**yes
CVE-2017-12603medium**yes
CVE-2017-12604medium**yes
CVE-2017-12605medium**yes
CVE-2017-12606medium**yes
CVE-2017-12862medium**yes
CVE-2017-12863medium**yes
CVE-2017-12864medium**yes
CVE-2017-14136medium**yes
openexrCVE-2017-12596medium**yes
CVE-2017-9111medium**yes
CVE-2017-9113medium**yes
CVE-2017-9114medium**yes
CVE-2017-9115medium**yes
openjfxCVE-2017-10086lowyes
CVE-2017-10114lowyes
openjpeg2CVE-2016-10504medium**yes
CVE-2017-14039medium**yes
CVE-2017-14040medium**yes
CVE-2017-14041medium**yes
CVE-2017-14151medium**yes
CVE-2017-14152medium**yes
openldapCVE-2017-14159low**no
opensslCVE-2017-3735medium**yes
openssl1.0CVE-2017-3735medium**yes
openvswitchCVE-2017-9214high**yes
percona-xtrabackupCVE-2016-6225medium**yes
phammCVE-2017-0378medium**yes
php-casCVE-2017-1000071medium**yes
php-gettextCVE-2016-6175high**yes
php7.0CVE-2017-8923high**yes
php7.1CVE-2017-8923high**yes
phpldapadminCVE-2017-11107medium**yes
pngcrushCVE-2015-7700high**yes
policykit-1CVE-2016-2568medium**no
popplerCVE-2017-14517lowno
CVE-2017-14518lowno
CVE-2017-14519not yet assignedno
CVE-2017-14520lowno
CVE-2017-14617not yet assigned?
potraceCVE-2017-7263medium**yes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
puppet-module-puppetlabs-apacheCVE-2017-2299not yet assignedno
pyjwtCVE-2017-11424medium**yes
pyradCVE-2013-0342low?
python-numpyCVE-2017-12852medium**yes
python-pysaml2CVE-2016-10127lowyes
python-restkitCVE-2015-2674medium**yes
python-scrapyCVE-2017-14158high**yes
python-tablibCVE-2017-2810high**yes
qemuCVE-2017-12809low**no
CVE-2017-13672lowno
CVE-2017-13711medium**yes
CVE-2017-14167high**no
CVE-2017-9375low**no
CVE-2017-9503low**no
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
quaggaCVE-2017-3224low?
radare2CVE-2017-9761lowyes
CVE-2017-9762lowyes
CVE-2017-9763medium**yes
rbenvCVE-2017-1000047high**yes
resiprocateCVE-2017-11521lowyes
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347lowyes
CVE-2016-6348lowyes
CVE-2016-9606not yet assigned?
CVE-2017-7561not yet assignedno
rhn-client-toolsCVE-2015-1777not yet assigned?
rtpproxyCVE-2017-14114medium**yes
ruby2.3CVE-2015-9096medium**yes
CVE-2016-7798medium**yes
CVE-2017-0898not yet assignedno
CVE-2017-0900medium**yes
CVE-2017-0901medium**yes
CVE-2017-0902medium**yes
CVE-2017-10784not yet assignedno
CVE-2017-14033not yet assignedno
CVE-2017-14064high**yes
rxvtCVE-2017-7483lowyes
saltCVE-2017-12791high**yes
shadowCVE-2017-12424high**yes
sipcrackCVE-2017-11654medium**yes
CVE-2017-11655medium**yes
soundtouchCVE-2017-9258lowyes
CVE-2017-9259lowyes
CVE-2017-9260lowyes
soxCVE-2017-11332medium**yes
CVE-2017-11358medium**yes
CVE-2017-11359medium**yes
taglibCVE-2017-12678medium**yes
tenshiCVE-2017-11746high**yes
tiffCVE-2017-11613medium**yes
CVE-2017-12944medium**yes
CVE-2017-9935medium**yes
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
tinyproxyCVE-2017-11747low**no
u-bootCVE-2017-3225not yet assigned?
CVE-2017-3226not yet assigned?
util-linuxCVE-2016-2779high**no
web2pyCVE-2016-10321medium**yes
CVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wildmidiCVE-2017-11661lowyes
CVE-2017-11662lowyes
CVE-2017-11663lowyes
CVE-2017-11664lowyes
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2017-10912high**yes
CVE-2017-10913high**yes
CVE-2017-10914medium**yes
CVE-2017-10915medium**yes
CVE-2017-10916medium**yes
CVE-2017-10917high**yes
CVE-2017-10918high**yes
CVE-2017-10919medium**yes
CVE-2017-10920high**yes
CVE-2017-10921high**yes
CVE-2017-10922medium**yes
CVE-2017-10923medium**yes
CVE-2017-12135medium**no
CVE-2017-12136medium**no
CVE-2017-12137high**no
CVE-2017-12855low**no
CVE-2017-14316not yet assignedno
CVE-2017-14317not yet assignedno
CVE-2017-14318not yet assignedno
CVE-2017-14319not yet assignedno
TEMP-0000000-B8F259not yet assigned?
yadifaCVE-2017-14339not yet assigned?
yaml-cppCVE-2017-11692medium**yes
CVE-2017-5950lowyes
yaml-cpp0.3CVE-2017-11692medium**yes
CVE-2017-5950lowyes
zoneminderCVE-2016-10201medium**yes
CVE-2016-10202medium**yes
CVE-2016-10203medium**yes
CVE-2016-10204high**yes
CVE-2016-10205high**yes
CVE-2016-10206medium**yes
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-7203medium**yes
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5977medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems