Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
389-ds-baseCVE-2016-5416not yet assigned?
accountsserviceCVE-2012-6655low?
ansibleCVE-2017-7473not yet assigned?
CVE-2017-7481not yet assigned?
apng2gifCVE-2017-6960medium**yes
CVE-2017-6961medium**yes
CVE-2017-6962medium**yes
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
avahiCVE-2017-6519medium**yes
batikCVE-2017-5662high**yes
bind9CVE-2016-6170medium**yes
binutilsCVE-2017-9038medium**yes
CVE-2017-9039medium**yes
CVE-2017-9040medium**yes
CVE-2017-9041medium**yes
CVE-2017-9042medium**yes
CVE-2017-9043medium**yes
CVE-2017-9044medium**yes
bluezCVE-2016-9797medium**yes
CVE-2016-9798medium**yes
CVE-2016-9799medium**yes
CVE-2016-9800medium**yes
CVE-2016-9801medium**yes
CVE-2016-9802medium**yes
CVE-2016-9803medium**yes
CVE-2016-9804medium**yes
CVE-2016-9917medium**yes
CVE-2016-9918medium**yes
botan1.10CVE-2017-2801not yet assigned?
bundlerCVE-2016-7954high**yes
busyboxCVE-2011-5325not yet assigned?
CVE-2016-2147medium**yes
CVE-2016-2148high**yes
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
bzrtpCVE-2016-6271medium**yes
cargoCVE-2016-10128high**yes
CVE-2016-10129medium**yes
CVE-2016-10130medium**yes
CVE-2016-8568medium**yes
CVE-2016-8569medium**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2016-6830high**yes
CVE-2016-6831medium**yes
CVE-2016-9954lowyes
CVE-2017-6949medium**yes
cinderCVE-2013-2255not yet assigned?
cobblerCVE-2016-9605not yet assigned?
collectdCVE-2017-7401medium**yes
coreutilsCVE-2016-2781low**no
couchdbCVE-2014-2668lowyes
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-8366not yet assigned?
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
docker.ioCVE-2016-9962medium**no
dokuwikiCVE-2016-7964medium**yes
CVE-2016-7965medium**yes
dolibarrCVE-2017-7886high**yes
CVE-2017-7887medium**yes
CVE-2017-7888medium**yes
CVE-2017-8879medium**no
dwarfutilsCVE-2017-9052not yet assignedno
CVE-2017-9053not yet assignedno
CVE-2017-9054not yet assignedno
CVE-2017-9055not yet assignedno
elfutilsCVE-2017-7607medium**yes
CVE-2017-7608medium**yes
CVE-2017-7609medium**yes
CVE-2017-7610medium**yes
CVE-2017-7611medium**yes
CVE-2017-7612medium**yes
CVE-2017-7613medium**yes
ettercapCVE-2017-8366high**yes
freeipaCVE-2015-5179not yet assigned?
CVE-2016-7030not yet assigned?
CVE-2016-9575not yet assigned?
gdbCVE-2016-2226lowyes
CVE-2016-4487lowyes
CVE-2016-4488lowyes
CVE-2016-4489lowyes
CVE-2016-4490lowyes
CVE-2016-4491lowyes
CVE-2016-4492lowyes
CVE-2016-4493lowyes
CVE-2016-6131lowyes
gdk-pixbufCVE-2017-6312medium**yes
CVE-2017-6313medium**yes
CVE-2017-6314medium**yes
gdm3CVE-2016-1000002low?
ghostscriptCVE-2016-10317medium**yes
gksuCVE-2014-2886medium**yes
glibcCVE-2016-10228medium**yes
CVE-2017-8804high**yes
gnome-keyringTEMP-0395572-55D193low?
grpcCVE-2017-8359high**yes
guacamole-clientCVE-2016-1566low**yes
haskell-tlsCVE-2013-0169low**yes
hesiodCVE-2016-10151lowno
CVE-2016-10152lowyes
hexchatCVE-2016-2087medium**yes
htCVE-2016-4491lowyes
imagemagickCVE-2017-9098not yet assignedno
CVE-2017-9141not yet assignedno
CVE-2017-9142not yet assignedno
CVE-2017-9143not yet assignedno
CVE-2017-9144not yet assignedno
jbig2decCVE-2017-9216not yet assignedno
jitsiCVE-2017-5603medium**yes
jythonCVE-2013-2027lowno
kdesudoCVE-2016-7787medium**yes
kgb-botCVE-2015-1554low?
kodiCVE-2017-5982medium**yes
CVE-2017-8314not yet assignedno
libapache-poi-javaCVE-2017-5644high**yes
libapache2-mod-nssCVE-2015-3277not yet assigned?
libarchiveCVE-2016-10209medium**yes
CVE-2016-10349medium**yes
CVE-2016-10350medium**yes
libcspCVE-2016-8596high**yes
CVE-2016-8597high**yes
CVE-2016-8598high**yes
libetpanCVE-2017-8825medium**yes
libgcCVE-2016-9427high**yes
libibertyCVE-2016-4491lowyes
libicalCVE-2016-5824medium**yes
CVE-2016-5825medium**yes
CVE-2016-5826medium**yes
CVE-2016-5827medium**yes
CVE-2016-9584medium**yes
libjgroups-javaCVE-2016-2141lowyes
libjpeg8CVE-2016-3616medium**yes
libnet-server-perlCVE-2013-1841lowyes
libpodofoCVE-2017-5852medium**yes
CVE-2017-6841medium**yes
CVE-2017-6845medium**yes
CVE-2017-6846medium**yes
CVE-2017-6849medium**yes
CVE-2017-7994medium**yes
CVE-2017-8053medium**yes
CVE-2017-8054medium**yes
CVE-2017-8378high**yes
CVE-2017-8787medium**yes
librsyncCVE-2014-8242lowyes
libsamplerateCVE-2017-7697medium**yes
libsndfileCVE-2017-7742medium**yes
CVE-2017-8361medium**yes
CVE-2017-8362medium**yes
CVE-2017-8363medium**yes
CVE-2017-8365medium**yes
libtasn1-6CVE-2017-6891not yet assignedno
libui-dialog-perlCVE-2008-7315not yet assigned?
libvirtCVE-2015-5160low?
libxml-twig-perlCVE-2016-9180medium**yes
libxml2CVE-2016-9318medium**yes
CVE-2017-5969low**yes
CVE-2017-8872medium**yes
CVE-2017-9047not yet assignedno
CVE-2017-9048not yet assignedno
CVE-2017-9049not yet assignedno
CVE-2017-9050not yet assignedno
libxsltCVE-2015-9019lowyes
libytnefCVE-2017-9146not yet assignedno
lintianCVE-2017-8829medium**yes
linuxCVE-2013-7445high**yes
CVE-2015-8553low**no
CVE-2016-8660medium**no
CVE-2017-1000363not yet assigned?
CVE-2017-7346medium**no
CVE-2017-7487high**no
CVE-2017-8831high**no
CVE-2017-8890high**yes
CVE-2017-9059not yet assignedno
CVE-2017-9074not yet assignedno
CVE-2017-9075not yet assignedno
CVE-2017-9076not yet assignedno
CVE-2017-9077not yet assignedno
CVE-2017-9150not yet assignedno
CVE-2017-9211not yet assignedno
lrzipCVE-2017-8842medium**yes
CVE-2017-8843medium**yes
CVE-2017-8844medium**yes
CVE-2017-8845medium**yes
CVE-2017-8846medium**yes
CVE-2017-8847medium**yes
magnumCVE-2016-7404not yet assigned?
mcollectiveCVE-2016-2788high**yes
moodleCVE-2017-7489medium**yes
CVE-2017-7490medium**yes
CVE-2017-7491medium**yes
mp3spltCVE-2017-5666medium**yes
msgpuckCVE-2016-9036medium**yes
mupdfCVE-2016-8728not yet assigned?
CVE-2016-8729not yet assigned?
mysql-connector-pythonCVE-2017-3590low**no
mysql-workbenchCVE-2017-3469medium**yes
netbeansCVE-2016-5537medium**no
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
nginxCVE-2013-0337lowyes
novaCVE-2013-2255not yet assigned?
npmCVE-2016-3956medium**yes
nssCVE-2017-5461high**yes
CVE-2017-5462not yet assigned?
nvidia-graphics-drivers (non-free)CVE-2017-0350high**no
nvidia-graphics-drivers (non-free)CVE-2017-0351high**no
nvidia-graphics-drivers (non-free)CVE-2017-0352high**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0350high**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0351high**no
nvidia-graphics-drivers-legacy-304xx (non-free)CVE-2017-0352high**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-0350high**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-0351high**no
nvidia-graphics-drivers-legacy-340xx (non-free)CVE-2017-0352high**no
openexrCVE-2017-9110not yet assignedno
CVE-2017-9111not yet assignedno
CVE-2017-9112not yet assignedno
CVE-2017-9113not yet assignedno
CVE-2017-9114not yet assignedno
CVE-2017-9115not yet assignedno
CVE-2017-9116not yet assignedno
openjpeg2CVE-2016-1626medium**yes
CVE-2016-1628medium**yes
CVE-2016-5152medium**yes
CVE-2016-5158medium**yes
CVE-2016-9112medium**yes
CVE-2016-9118medium**yes
openstack-troveCVE-2015-3156low?
openvswitchCVE-2017-9214not yet assignedno
percona-xtrabackupCVE-2016-6225medium**yes
phantomjsCVE-2013-4549medium**yes
php-gettextCVE-2016-6175high**yes
php7.0CVE-2017-8923high**yes
php7.1CVE-2017-8923high**yes
CVE-2017-9119not yet assignedno
pngquantCVE-2016-5735not yet assignedno
policykit-1CVE-2016-2568medium**no
potraceCVE-2017-7263medium**yes
profanityCVE-2017-5592medium**yes
TEMP-0857546-8B0EB6not yet assigned?
pyradCVE-2013-0342low?
python-pysaml2CVE-2016-10127medium**yes
python-restkitCVE-2015-2674not yet assigned?
qpdfCVE-2017-9208not yet assignedno
CVE-2017-9209not yet assignedno
CVE-2017-9210not yet assignedno
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
qt4-x11CVE-2016-10040medium**yes
qtbase-opensource-srcCVE-2016-10040medium**yes
rabbitmq-serverCVE-2017-4965not yet assigned?
CVE-2017-4966not yet assigned?
CVE-2017-4967not yet assigned?
rar (non-free)TEMP-0774172-B2A845not yet assigned?
resteasyCVE-2016-6345lowyes
CVE-2016-6346lowyes
CVE-2016-6347lowyes
CVE-2016-6348lowyes
CVE-2016-9606not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
rubocopCVE-2017-8418low**no
ruby2.3CVE-2016-7798medium**yes
rxvtCVE-2017-7483medium**yes
rzipCVE-2017-8364medium**yes
saltCVE-2017-8109low**no
spice-gtkCVE-2016-3066not yet assigned?
swftoolsCVE-2017-8400medium**yes
CVE-2017-8401medium**yes
systemdCVE-2017-9217not yet assignedno
telegram-desktopCVE-2016-10351low**no
tiffCVE-2017-9147not yet assignedno
tikaCVE-2016-4434not yet assigned?
tinymceCVE-2012-4230lowyes
tnefCVE-2017-8911high**yes
util-linuxCVE-2016-2779high**no
valgrindCVE-2016-2226lowyes
CVE-2016-4487lowyes
CVE-2016-4488lowyes
CVE-2016-4489lowyes
CVE-2016-4490lowyes
CVE-2016-4491lowyes
CVE-2016-4492lowyes
CVE-2016-4493lowyes
CVE-2016-6131lowyes
virglrendererCVE-2016-10163medium**no
CVE-2016-10214medium**no
CVE-2017-5580low**no
CVE-2017-5937low**no
CVE-2017-5956low**no
CVE-2017-5957low**no
CVE-2017-5993medium**no
CVE-2017-5994low**no
CVE-2017-6209low**no
CVE-2017-6210low**no
CVE-2017-6317medium**no
CVE-2017-6355low**no
CVE-2017-6386medium**no
vlcCVE-2017-8312not yet assignedno
web2pyCVE-2016-10321medium**yes
CVE-2016-4806medium**yes
CVE-2016-4807low**yes
CVE-2016-4808medium**yes
wiresharkCVE-2017-7700lowyes
CVE-2017-7701lowyes
CVE-2017-7702lowyes
CVE-2017-7703medium**yes
CVE-2017-7704high**yes
CVE-2017-7705lowyes
CVE-2017-7745lowyes
CVE-2017-7746lowyes
CVE-2017-7747medium**yes
CVE-2017-7748lowyes
wolfsslCVE-2017-2800not yet assigned?
CVE-2017-8855medium**yes
wordpressCVE-2017-8295medium**yes
x11vncTEMP-0672435-7C494Cnot yet assigned?
x265CVE-2017-8906medium**yes
xdebTEMP-0781595-E39EEEnot yet assigned?
xenCVE-2014-9066medium**no
yaml-cppCVE-2017-5950lowyes
yaml-cpp0.3CVE-2017-5950lowyes
yaraCVE-2017-8294medium**yes
zabbixCVE-2017-2824not yet assigned?
zoneminderCVE-2016-10140medium**yes
CVE-2016-10201medium**yes
CVE-2016-10202medium**yes
CVE-2016-10203medium**yes
CVE-2016-10204high**yes
CVE-2016-10205high**yes
CVE-2016-10206medium**yes
CVE-2017-5367medium**yes
CVE-2017-5368medium**yes
CVE-2017-5595low**no
CVE-2017-7203medium**yes
zooTEMP-0774453-CA58EElow?
zookeeperCVE-2017-5637not yet assigned?
zziplibCVE-2017-5974medium**yes
CVE-2017-5975medium**yes
CVE-2017-5976medium**yes
CVE-2017-5977medium**yes
CVE-2017-5978medium**yes
CVE-2017-5979medium**yes
CVE-2017-5980medium**yes
CVE-2017-5981medium**yes

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems