Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
9baseCVE-2014-1935low?
accountsserviceCVE-2012-6655low?
acidbaseCVE-2012-1017lowyes
android-toolsCVE-2012-5564low**no
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
atticCVE-2015-4082not yet assigned?
audiofileCVE-2015-7747not yet assigned?
blenderCVE-2010-5105lowno
botan1.10CVE-2015-7827not yet assigned?
CVE-2016-2849not yet assigned?
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147not yet assigned?
CVE-2016-2148not yet assigned?
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cactiCVE-2016-3659medium**yes
cakephpCVE-2015-8379medium**yes
TEMP-0000000-698CF7not yet assigned?
chefCVE-2015-8559not yet assigned?
chickenCVE-2014-9651high**yes
CVE-2015-4556not yet assigned?
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781not yet assigned?
couchdbCVE-2014-2668lowyes
cpioTEMP-0815965-23B1E4low?
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
debian-installerTEMP-0788634-523580low?
dhcpcd5CVE-2014-7912medium**yes
CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-3697not yet assigned?
dotclearCVE-2015-5651medium**yes
CVE-2015-8831not yet assigned?
CVE-2015-8832not yet assigned?
duplicityCVE-2014-3495low?
dwarfutilsCVE-2015-8538not yet assigned?
CVE-2015-8750not yet assigned?
CVE-2016-2091medium**yes
elixirCVE-2012-2146lowyes
eyed3CVE-2014-1934lowno
foomatic-filtersTEMP-0000000-ACBC4Cnot yet assigned?
freeipaCVE-2015-5179not yet assigned?
freeradiusCVE-2015-4680not yet assigned?
gksuCVE-2014-2886medium**yes
glanceCVE-2016-0757medium**yes
glibcCVE-2014-9761high**yes
CVE-2015-5180low?
CVE-2016-1234not yet assigned?
graphicsmagickCVE-2016-2317not yet assigned?
CVE-2016-2318not yet assigned?
groovyCVE-2015-3253high**yes
gzipTEMP-0816154-3134AEnot yet assigned?
haproxyCVE-2016-3711not yet assigned?
haskell-tlsCVE-2013-0169low**yes
heatCVE-2015-5295medium**yes
icingaCVE-2015-8010not yet assigned?
icuCVE-2015-4844high**yes
CVE-2016-0494high**yes
TEMP-0000000-7586EDnot yet assigned?
ironic-inspectorCVE-2015-5306medium**yes
jasperCVE-2015-5203not yet assigned?
CVE-2015-5221not yet assigned?
CVE-2016-1577medium**yes
CVE-2016-1867medium**yes
CVE-2016-2089medium**yes
CVE-2016-2116medium**yes
jqCVE-2015-8863not yet assigned?
CVE-2016-4074not yet assigned?
jythonCVE-2013-2027lowno
kdepimCVE-2014-8878not yet assigned?
keystoneCVE-2015-7546medium**yes
kgbCVE-2015-1192medium**yes
krb5CVE-2016-3119low**yes
libapache2-mod-nssCVE-2015-3277not yet assigned?
CVE-2015-5244not yet assigned?
CVE-2016-3099not yet assigned?
libarchiveTEMP-0784213-45868Blow?
libblurayTEMP-0000000-EA424Anot yet assigned?
libdata-uuid-perlCVE-2013-4184low?
libfcgi-perlCVE-2012-6687medium**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libjbcrypt-javaCVE-2015-0886medium**yes
libjpeg8CVE-2016-3616not yet assigned?
libjpeg9CVE-2016-3616not yet assigned?
libmp3-info-perlCVE-2013-6499not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
libnsbmpCVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
libpngCVE-2015-8472high**yes
CVE-2015-8540high**yes
librsvgCVE-2016-4347not yet assigned?
CVE-2016-4348not yet assigned?
librsyncCVE-2014-8242lowyes
libspring-javaCVE-2015-3192low?
CVE-2015-5211not yet assigned?
libui-dialog-perlCVE-2008-7315not yet assigned?
libuserCVE-2015-3245low**no
CVE-2015-3246high**no
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
libxml2CVE-2015-8806medium**yes
CVE-2016-2073medium**yes
CVE-2016-3627not yet assigned?
TEMP-0000000-0FC87Dnot yet assigned?
linuxCVE-2013-7445high**yes
CVE-2015-1350not yet assigned?
CVE-2015-8553low**no
CVE-2016-1575not yet assigned?
CVE-2016-1576not yet assigned?
CVE-2016-2188not yet assigned?
CVE-2016-2853not yet assigned?
CVE-2016-2854not yet assigned?
TEMP-0000000-F7A20Fnot yet assigned?
man-dbCVE-2015-1336not yet assigned?
mariadb-10.0CVE-2016-0643medium**yes
CVE-2016-0647medium**yes
CVE-2016-0648medium**yes
CVE-2016-0655low**yes
CVE-2016-0666low**yes
midgard2-coreCVE-2014-8148high**no
minissdpdCVE-2016-3178not yet assigned?
CVE-2016-3179not yet assigned?
mplayerCVE-2016-4352not yet assigned?
TEMP-0000000-A54DD8low?
nagios3CVE-2013-7107lowyes
CVE-2013-7108lowyes
CVE-2013-7205lowyes
netsurfCVE-2015-7505not yet assigned?
CVE-2015-7506not yet assigned?
CVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
netty-3.9CVE-2015-2156not yet assigned?
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
node-cliTEMP-0809252-619BDFnot yet assigned?
novaCVE-2013-2255not yet assigned?
CVE-2015-3241medium**yes
CVE-2015-5162low?
CVE-2015-7548low**yes
CVE-2015-8749medium**yes
CVE-2016-2140low**yes
ntpCVE-2015-7705not yet assigned?
CVE-2016-0727low?
ocamlCVE-2015-8869not yet assigned?
openjfxCVE-2015-4901high**yes
CVE-2015-4906medium**yes
CVE-2015-4908medium**yes
CVE-2015-4916medium**yes
openjpeg2CVE-2015-6581high**yes
CVE-2016-1923medium**yes
CVE-2016-1924medium**yes
CVE-2016-3181not yet assigned?
CVE-2016-3182not yet assigned?
CVE-2016-3183not yet assigned?
TEMP-0800149-B6A768not yet assigned?
opensslCVE-2016-2109low?
openstack-troveCVE-2015-3156low?
opus-toolsCVE-2014-9639medium**yes
parallelCVE-2015-4155low**no
CVE-2015-4156low**no
pcre3TEMP-0000000-93E4E3not yet assigned?
pcsCVE-2015-5189medium**yes
pgpdumpCVE-2016-4021not yet assigned?
phantomjsCVE-2013-4549medium**yes
php5CVE-2014-5459lowno
TEMP-0800564-79703Bnot yet assigned?
policykit-1CVE-2016-2568not yet assigned?
proftpd-dfsgCVE-2016-3125high**yes
TEMP-0000000-3815A2not yet assigned?
protobufCVE-2015-5237low?
puppetCVE-2016-2785not yet assigned?
pycurlTEMP-0000000-FF9F75not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-restkitCVE-2015-2674not yet assigned?
python-sqlalchemy-utilsTEMP-0000000-EBC4D4not yet assigned?
qemuCVE-2016-2197not yet assigned?
CVE-2016-2198not yet assigned?
CVE-2016-2391not yet assigned?
CVE-2016-2392not yet assigned?
CVE-2016-2538not yet assigned?
CVE-2016-2841not yet assigned?
CVE-2016-2857low**no
CVE-2016-2858low**no
CVE-2016-4001not yet assigned?
CVE-2016-4002medium**yes
CVE-2016-4020not yet assigned?
CVE-2016-4037not yet assigned?
TEMP-0000000-B86279not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
quaggaCVE-2016-4036low**no
CVE-2016-4049not yet assigned?
radare2CVE-2015-2305lowyes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
rawtherapeeCVE-2015-8366not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
roundcubeCVE-2016-4068not yet assigned?
rsyncTEMP-0786423-948688low?
ruby-eventmachineTEMP-0678512-2E167Cnot yet assigned?
ruby-jquery-railsCVE-2015-1840medium**yes
ruby-omniauthTEMP-0000000-2F3E8Bnot yet assigned?
ruby-sidekiqTEMP-0000000-23C1BDnot yet assigned?
TEMP-0000000-BD209Fnot yet assigned?
TEMP-0000000-F9A459not yet assigned?
sogoCVE-2015-5395not yet assigned?
spice-gtkCVE-2016-3066not yet assigned?
stalinCVE-2015-8697not yet assigned?
sudoCVE-2015-8239not yet assigned?
tiffCVE-2015-7313not yet assigned?
CVE-2015-7554high**yes
CVE-2015-8668high**yes
CVE-2016-3186medium**yes
CVE-2016-3619low?
CVE-2016-3620low?
CVE-2016-3621low?
CVE-2016-3622low?
CVE-2016-3623not yet assigned?
CVE-2016-3624not yet assigned?
CVE-2016-3625not yet assigned?
CVE-2016-3631not yet assigned?
CVE-2016-3632not yet assigned?
CVE-2016-3633not yet assigned?
CVE-2016-3634not yet assigned?
CVE-2016-3658not yet assigned?
CVE-2016-3945not yet assigned?
CVE-2016-3990not yet assigned?
CVE-2016-3991not yet assigned?
tinymceCVE-2012-4230lowyes
tomcat6CVE-2015-5346medium**yes
unshieldCVE-2015-1386low?
util-linuxCVE-2016-2779not yet assigned?
w3afCVE-2013-2099lowyes
web2ldapCVE-2013-7258lowyes
wineTEMP-0816034-9C45DClow?
wine-developmentTEMP-0816034-9C45DClow?
wolfsslCVE-2015-6925medium**yes
x11vncTEMP-0672435-7C494Cnot yet assigned?
xbindkeys-configCVE-2014-9513not yet assigned?
xchat-gnomeCVE-2013-7449not yet assignedno
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
CVE-2015-5307medium**no
CVE-2015-6654low**no
CVE-2015-7311low**no
CVE-2015-8104medium**no
CVE-2015-8338high**no
CVE-2015-8339medium**no
CVE-2015-8340medium**no
CVE-2015-8341high**yes
CVE-2015-8550medium**no
CVE-2015-8555medium**yes
CVE-2015-8615low**no
CVE-2016-1570medium**no
CVE-2016-1571medium**no
CVE-2016-2270medium**no
CVE-2016-2271low**no
CVE-2016-3158low**no
CVE-2016-3159low**no
CVE-2016-3960high**no
TEMP-0000000-CE3B44not yet assigned?
yuiCVE-2013-6780lowyes
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems