Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416not yet assigned?
accountsserviceCVE-2012-6655low?
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
atheme-servicesTEMP-0855588-E73B34not yet assigned?
bind9CVE-2016-6170medium**yes
binutilsCVE-2016-4491low?
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
bundlerCVE-2016-7954high**yes
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147medium**yes
CVE-2016-2148high**yes
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
bzrtpCVE-2016-6271medium**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954low?
cinderCVE-2013-2255not yet assigned?
core-networkTEMP-0799756-21B18Cnot yet assigned?
coreutilsCVE-2016-2781not yet assignedno
couchdbCVE-2014-2668lowyes
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
dhcpcd5CVE-2014-7913medium**yes
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-9962not yet assignedno
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030not yet assigned?
CVE-2016-9575not yet assigned?
gdbCVE-2016-2226low?
CVE-2016-4487low?
CVE-2016-4488low?
CVE-2016-4489low?
CVE-2016-4490low?
CVE-2016-4491low?
CVE-2016-4492low?
CVE-2016-4493low?
CVE-2016-6131lowyes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2017-6196not yet assigned?
gksuCVE-2014-2886medium**yes
gnome-keyringTEMP-0395572-55D193low?
gradleCVE-2016-6199high**yes
graphicsmagickTEMP-0000000-1E5903not yet assigned?
guacamole-clientCVE-2016-1566low**yes
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151low?
CVE-2016-10152low?
hexchatCVE-2016-2087medium**yes
htCVE-2016-4491low?
icoutilsCVE-2017-6009not yet assignedno
CVE-2017-6010not yet assignedno
CVE-2017-6011not yet assignedno
jitsiCVE-2017-5603medium**yes
jythonCVE-2013-2027lowno
kde-runtimeCVE-2016-7787medium**yes
kdesudoCVE-2016-7787medium**yes
keystoneCVE-2015-7546medium**yes
kgb-botCVE-2015-1554low?
kodiCVE-2017-5982not yet assigned?
libapache2-mod-nssCVE-2015-3277not yet assigned?
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libgcCVE-2016-9427high**yes
libgcrypt20TEMP-0000000-96B2E9not yet assigned?
libgit2CVE-2016-10128not yet assigned?
CVE-2016-10129not yet assigned?
CVE-2016-10130not yet assigned?
libibertyCVE-2016-4491low?
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libjackson-json-javaCVE-2015-5211not yet assigned?
libjgroups-javaCVE-2016-2141lowyes
libjpeg8CVE-2016-3616not yet assignedno
libnet-server-perlCVE-2013-1841lowyes
libphp-phpmailerCVE-2017-5223low**no
libplistCVE-2017-5209lowyes
CVE-2017-5545lowyes
CVE-2017-5834not yet assigned?
CVE-2017-5835not yet assigned?
CVE-2017-5836not yet assigned?
libpodofoCVE-2017-5852not yet assigned?
CVE-2017-5853not yet assigned?
CVE-2017-5854not yet assigned?
CVE-2017-5855not yet assigned?
CVE-2017-5886not yet assigned?
TEMP-0854605-651F03not yet assigned?
libquicktimeCVE-2016-2399medium**yes
librsyncCVE-2014-8242lowyes
libui-dialog-perlCVE-2008-7315not yet assigned?
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
CVE-2016-1621high**yes
libxml-twig-perlCVE-2016-9180medium**yes
libxml2CVE-2016-9318medium**yes
CVE-2017-5969not yet assigned?
linuxCVE-2013-7445high**yes
CVE-2014-9900lowyes
CVE-2015-8553low**no
CVE-2016-2188medium**no
CVE-2016-8660medium**no
CVE-2017-2596medium**no
CVE-2017-5897not yet assigned?
CVE-2017-5967lowno
CVE-2017-6074not yet assignedno
CVE-2017-6214not yet assigned?
lshellCVE-2016-6902not yet assigned?
CVE-2016-6903not yet assigned?
mariadb-10.0CVE-2016-6664medium**no
CVE-2017-3238medium**yes
CVE-2017-3243low**yes
CVE-2017-3244medium**yes
CVE-2017-3257medium**yes
CVE-2017-3258medium**yes
CVE-2017-3265medium**yes
CVE-2017-3291low**no
CVE-2017-3302medium**yes
CVE-2017-3312low**no
CVE-2017-3317low**no
CVE-2017-3318low**no
mariadb-10.1CVE-2017-3302medium**yes
mcabberCVE-2017-5604medium**yes
mcollectiveCVE-2016-2788not yet assignedno
mp3spltCVE-2017-5666not yet assigned?
msgpuckCVE-2016-9036medium**yes
muninCVE-2017-6188not yet assignedno
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
nginxCVE-2013-0337lowyes
novaCVE-2013-2255not yet assigned?
npmCVE-2016-3956medium**yes
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0309not yet assignedno
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0310not yet assignedno
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0311not yet assignedno
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0318not yet assignedno
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0321not yet assignedno
openjpeg2CVE-2016-1626medium**yes
CVE-2016-1628medium**yes
CVE-2016-5152medium**yes
CVE-2016-5158medium**yes
CVE-2016-9112medium**yes
CVE-2016-9118medium**yes
openstack-troveCVE-2015-3156low?
percona-xtrabackupCVE-2016-6225not yet assigned?
phantomjsCVE-2013-4549medium**yes
php-gettextCVE-2016-6175not yet assignedno
php7.1CVE-2016-7478medium**yes
CVE-2016-7479high**yes
policykit-1CVE-2016-2568not yet assignedno
potraceCVE-2016-8686lowyes
profanityCVE-2017-5592medium**yes
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546medium**yes
python-pysaml2CVE-2016-10127not yet assigned?
python-restkitCVE-2015-2674not yet assigned?
qemuCVE-2016-7907low**no
CVE-2016-8667low**no
CVE-2016-9602not yet assigned?
CVE-2017-2615low?
CVE-2017-2620not yet assigned?
CVE-2017-2630not yet assigned?
CVE-2017-5579not yet assigned?
CVE-2017-5667not yet assigned?
CVE-2017-5856not yet assigned?
CVE-2017-5898not yet assigned?
CVE-2017-5931not yet assigned?
CVE-2017-5973not yet assigned?
CVE-2017-5987not yet assigned?
CVE-2017-6058not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2016-10040not yet assigned?
qtbase-opensource-srcCVE-2016-10040not yet assigned?
radare2CVE-2017-6197not yet assigned?
rar (non-free)TEMP-0774172-B2A845not yet assigned?
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347low?
CVE-2016-6348low?
CVE-2016-7050not yet assigned?
CVE-2016-9571not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ruby2.3CVE-2016-7798medium**yes
sane-backendsTEMP-0854804-216478not yet assigned?
sleekxmppCVE-2017-5591medium**yes
slixmppCVE-2017-5591medium**yes
spice-gtkCVE-2016-3066not yet assigned?
spipCVE-2016-9152medium**yes
CVE-2016-9997medium**yes
CVE-2016-9998medium**yes
tiffCVE-2015-7554high**yes
CVE-2016-10095not yet assigned?
CVE-2016-5318medium**yes
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
tnefCVE-2017-6307not yet assigned?
CVE-2017-6308not yet assigned?
CVE-2017-6309not yet assigned?
CVE-2017-6310not yet assigned?
util-linuxCVE-2016-2779not yet assignedno
valgrindCVE-2016-2226low?
CVE-2016-4487low?
CVE-2016-4488low?
CVE-2016-4489low?
CVE-2016-4490low?
CVE-2016-4491low?
CVE-2016-4492low?
CVE-2016-4493low?
CVE-2016-6131lowyes
virglrendererCVE-2016-10163not yet assigned?
CVE-2016-10214not yet assigned?
CVE-2017-5580not yet assigned?
CVE-2017-5937not yet assigned?
CVE-2017-5956not yet assigned?
CVE-2017-5957not yet assigned?
CVE-2017-5993not yet assigned?
CVE-2017-5994not yet assigned?
CVE-2017-6209not yet assigned?
CVE-2017-6210not yet assigned?
CVE-2017-6317not yet assigned?
web2pyCVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wiresharkCVE-2017-6014high**yes
wolfsslCVE-2017-6076not yet assigned?
x11vncTEMP-0672435-7C494Cnot yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
TEMP-0000000-F1D37Cnot yet assigned?
zoneminderCVE-2016-10140medium**yes
CVE-2016-10201not yet assigned?
CVE-2016-10202not yet assigned?
CVE-2016-10203not yet assigned?
CVE-2016-10204not yet assigned?
CVE-2016-10205not yet assigned?
CVE-2016-10206not yet assigned?
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-5595low**no
zooTEMP-0774453-CA58EElow?
zziplibCVE-2017-5974not yet assigned?
CVE-2017-5975not yet assigned?
CVE-2017-5976not yet assigned?
CVE-2017-5977not yet assigned?
CVE-2017-5978not yet assigned?
CVE-2017-5979not yet assigned?
CVE-2017-5980not yet assigned?
CVE-2017-5981not yet assigned?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems