Vulnerable source packages in the unstable suite

Note that the list below is based on source packages. This means that packages are not listed here once a new, fixed source version has been uploaded to the archive, even if there are still some vulnerable binary packages present in the archive.


PackageBugUrgencyRemote
9baseCVE-2014-1935low?
accountsserviceCVE-2012-6655low?
acidbaseCVE-2012-1017lowyes
activemqCVE-2015-5254high**yes
android-toolsCVE-2012-5564low**no
arcTEMP-0774439-ECBE09low?
TEMP-0774527-3B586Flow?
asteriskCVE-2015-3008medium**yes
TEMP-0000000-0FA8A0not yet assigned?
TEMP-0000000-B738B3not yet assigned?
TEMP-0000000-C0F28Fnot yet assigned?
atticCVE-2015-4082not yet assigned?
audiofileCVE-2015-7747not yet assigned?
automake-1.14TEMP-0760455-22ED59low?
bind9CVE-2015-8704medium**yes
blenderCVE-2010-5105lowno
bsdmainutilsCVE-2015-5218lowno
busyboxCVE-2011-5325not yet assigned?
TEMP-0803097-A74121not yet assigned?
byzanzCVE-2015-2785lowyes
cactiTEMP-0000000-948B0Enot yet assigned?
cakephpCVE-2015-8379medium**yes
TEMP-0000000-698CF7not yet assigned?
cgitCVE-2016-1899medium**yes
CVE-2016-1900medium**yes
CVE-2016-1901high**yes
chefCVE-2015-8559not yet assigned?
chickenCVE-2014-9651high**yes
CVE-2015-4556not yet assigned?
chronyCVE-2016-1567lowyes
cinderCVE-2013-2255not yet assigned?
cinnamon-settings-daemonTEMP-0000000-D41D8Cnot yet assigned?
cobblerCVE-2011-1551medium**no
core-networkTEMP-0799756-21B18Cnot yet assigned?
couchdbCVE-2014-2668lowyes
courierTEMP-0000000-116B28not yet assigned?
cpioCVE-2016-2037not yet assigned?
criuCVE-2015-5228not yet assigned?
CVE-2015-5231not yet assigned?
cyrus-imapd-2.4CVE-2015-8077high**yes
CVE-2015-8078high**yes
dc3ddTEMP-0801872-E034E1not yet assigned?
dcrawCVE-2015-3885medium**yes
debian-installerTEMP-0788634-523580low?
dhcpcd5CVE-2014-7912medium**yes
CVE-2014-7913medium**yes
CVE-2016-1503not yet assigned?
CVE-2016-1504not yet assigned?
djbdnsCVE-2008-4392highyes
CVE-2012-1191medium**yes
dovecotTEMP-0803223-1A1108not yet assigned?
duplicityCVE-2014-3495low?
dwarfutilsCVE-2015-8538not yet assigned?
CVE-2015-8750not yet assigned?
CVE-2016-2091not yet assigned?
elixirCVE-2012-2146lowyes
encfsCVE-2014-3462low?
extplorerCVE-2013-5951low**yes
CVE-2015-0896medium**yes
eyed3CVE-2014-1934lowno
facterCVE-2015-1426low**no
foomatic-filtersTEMP-0000000-ACBC4Cnot yet assigned?
freeipaCVE-2015-5179not yet assigned?
freeradiusCVE-2015-4680not yet assigned?
giflibTEMP-0000000-BC6826not yet assigned?
gksuCVE-2014-2886medium**yes
glanceCVE-2016-0757not yet assigned?
glibcCVE-2014-9761not yet assigned?
CVE-2015-5180low?
CVE-2015-8778not yet assigned?
graphicsmagickCVE-2015-8808not yet assigned?
graphite2CVE-2016-1526not yet assigned?
groovyCVE-2015-3253high**yes
haCVE-2015-1198low?
haskell-tlsCVE-2013-0169low**yes
heatCVE-2015-5295medium**yes
hexchatTEMP-0776609-026A07not yet assigned?
htTEMP-0773308-EE1012low?
iceweaselCVE-2015-7208medium**yes
icingaCVE-2015-8010not yet assigned?
icuCVE-2015-4844high**yes
CVE-2016-0494high**yes
TEMP-0000000-7586EDnot yet assigned?
ipythonCVE-2015-5607not yet assigned?
jasperCVE-2015-5203not yet assigned?
CVE-2015-5221not yet assigned?
CVE-2016-1867medium**yes
CVE-2016-2089not yet assigned?
jythonCVE-2013-2027lowno
kdepimCVE-2014-8878not yet assigned?
kexec-toolsTEMP-0766772-93FAA3not yet assigned?
keystoneCVE-2015-7546not yet assignedno
kgbCVE-2015-1192medium**yes
kodiCVE-2015-3885medium**yes
krb5CVE-2015-8629not yet assigned?
CVE-2015-8630not yet assigned?
CVE-2015-8631not yet assigned?
libapache2-mod-nssCVE-2015-3277not yet assigned?
CVE-2015-5244not yet assigned?
libarchiveTEMP-0784213-45868Blow?
libblurayTEMP-0000000-EA424Anot yet assigned?
libcsoapCVE-2015-2297not yet assigned?
libdata-uuid-perlCVE-2013-4184low?
libgcrypt20CVE-2015-7511not yet assigned?
TEMP-0000000-96B2E9not yet assigned?
libhibernate-validator-javaCVE-2014-3558lowyes
libhtpTEMP-0774897-BC9A31not yet assigned?
TEMP-0777522-650525not yet assigned?
TEMP-0783007-4C0B51not yet assigned?
libjbcrypt-javaCVE-2015-0886medium**yes
libmaxminddbTEMP-0805657-81BB13not yet assigned?
libmp3-info-perlCVE-2013-6499not yet assigned?
libnet-server-perlCVE-2013-1841lowyes
libnsbmpCVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
libpgfCVE-2015-6673not yet assigned?
libpngCVE-2015-8472high**yes
CVE-2015-8540not yet assigned?
librsyncCVE-2014-8242lowyes
libspring-javaCVE-2015-3192not yet assigned?
libtorrent-rasterbarCVE-2015-5685high**yes
libui-dialog-perlCVE-2008-7315not yet assigned?
libuserCVE-2015-3245low**no
CVE-2015-3246high**no
libvirtCVE-2015-5160low?
libvpxCVE-2015-4506medium**yes
libxml2CVE-2015-8806not yet assigned?
CVE-2016-2073not yet assigned?
linuxCVE-2013-7445high**yes
CVE-2015-1350not yet assigned?
CVE-2015-2877not yet assigned?
CVE-2015-8553not yet assigned?
CVE-2016-0617not yet assigned?
TEMP-0000000-F7A20Fnot yet assigned?
llvm-toolchain-3.6CVE-2015-2305medium**yes
macopixCVE-2015-8614not yet assigned?
man-dbCVE-2015-1336not yet assigned?
midgard2-coreCVE-2014-8148high**no
mplayerTEMP-0000000-A54DD8low?
muttTEMP-0775199-D05A9Elow?
mysql-5.5CVE-2015-0499low**yes
CVE-2015-0501medium**yes
CVE-2015-0505low**yes
CVE-2015-2571medium**yes
CVE-2015-2582medium**yes
CVE-2015-2620medium**yes
CVE-2015-2643medium**yes
CVE-2015-2648medium**yes
CVE-2015-4737low**yes
CVE-2015-4752medium**yes
CVE-2015-4792low**yes
CVE-2015-4802medium**yes
CVE-2015-4815medium**yes
CVE-2015-4816medium**yes
CVE-2015-4819high**no
CVE-2015-4826medium**yes
CVE-2015-4830medium**yes
CVE-2015-4836low**yes
CVE-2015-4858medium**yes
CVE-2015-4861low**yes
CVE-2015-4864low**yes
CVE-2015-4870medium**yes
CVE-2015-4879medium**yes
CVE-2015-4913low**yes
CVE-2016-0505not yet assignedno
CVE-2016-0546not yet assignedno
CVE-2016-0596not yet assignedno
CVE-2016-0597not yet assignedno
CVE-2016-0598not yet assignedno
CVE-2016-0600not yet assignedno
CVE-2016-0606not yet assignedno
CVE-2016-0608not yet assignedno
CVE-2016-0609not yet assignedno
CVE-2016-0616not yet assignedno
CVE-2016-2047not yet assignedno
mysql-5.6CVE-2016-2047not yet assignedno
nagios3CVE-2013-7107lowyes
CVE-2013-7108lowyes
CVE-2013-7205lowyes
net-snmpCVE-2015-5621high**yes
netsurfCVE-2015-7505not yet assigned?
CVE-2015-7506not yet assigned?
CVE-2015-7507not yet assigned?
CVE-2015-7508not yet assigned?
netty-3.9CVE-2015-2156not yet assigned?
network-managerCVE-2012-1096low?
newlibCVE-2015-2305medium**yes
node-cliTEMP-0809252-619BDFnot yet assigned?
novaCVE-2013-2255not yet assigned?
CVE-2015-3241medium**yes
CVE-2015-5162not yet assigned?
CVE-2015-7548low**yes
CVE-2015-8749medium**yes
ntopCVE-2014-4165medium**yes
ntopngCVE-2015-8368medium**yes
ntpCVE-2015-7705not yet assigned?
CVE-2015-7973not yet assigned?
CVE-2015-7974not yet assignedno
CVE-2015-7975not yet assigned?
CVE-2015-7976not yet assigned?
CVE-2015-7977not yet assigned?
CVE-2015-7978not yet assigned?
CVE-2015-7979not yet assigned?
CVE-2015-8138not yet assigned?
CVE-2015-8139not yet assigned?
CVE-2015-8140not yet assigned?
CVE-2015-8158not yet assigned?
CVE-2016-0727not yet assigned?
nvidia-graphics-drivers (non-free)CVE-2015-7869medium**no
openhpiCVE-2015-3248not yet assigned?
openjdk-7CVE-2012-5373lowyes
openjfxCVE-2015-4901high**yes
CVE-2015-4906medium**yes
CVE-2015-4908medium**yes
CVE-2015-4916medium**yes
openjpeg2CVE-2015-6581high**yes
CVE-2016-1923not yet assignedno
CVE-2016-1924not yet assignedno
TEMP-0800149-B6A768not yet assigned?
opensshCVE-2016-1908not yet assigned?
openstack-troveCVE-2015-3156low?
opus-toolsCVE-2014-9639medium**yes
parallelCVE-2015-4155low**no
CVE-2015-4156low**no
paxCVE-2015-1193lowyes
CVE-2015-1194lowyes
pcre3CVE-2016-1283high**yes
TEMP-0000000-93E4E3not yet assigned?
TEMP-0000000-D2FBB5not yet assigned?
php-dompdfCVE-2014-5011not yet assigned?
CVE-2014-5012not yet assigned?
CVE-2014-5013not yet assigned?
php5CVE-2014-5459lowno
TEMP-0800564-79703Bnot yet assigned?
pillowCVE-2016-0740not yet assigned?
CVE-2016-0775not yet assigned?
TEMP-0000000-9AE41Enot yet assigned?
TEMP-0000000-F4B9C5not yet assigned?
proftpd-dfsgTEMP-0000000-3815A2not yet assigned?
protobufCVE-2015-5237low?
pycurlTEMP-0000000-FF9F75not yet assigned?
pyradCVE-2013-0342low?
python-keystonemiddlewareCVE-2015-7546not yet assignedno
python-restkitCVE-2015-2674not yet assigned?
python-rsaCVE-2016-1494medium**yes
python-sqlalchemy-utilsTEMP-0000000-EBC4D4not yet assigned?
qemuCVE-2016-2197not yet assigned?
CVE-2016-2198not yet assigned?
qpid-cppCVE-2012-4446lowyes
CVE-2012-4458lowyes
CVE-2012-4459lowyes
CVE-2012-4460lowyes
CVE-2014-0212low?
CVE-2014-3629lowyes
CVE-2015-0203not yet assigned?
CVE-2015-0223medium**yes
radare2CVE-2015-2305lowyes
rar (non-free)TEMP-0774172-B2A845not yet assigned?
redmineCVE-2015-8346not yet assigned?
CVE-2015-8473not yet assigned?
CVE-2015-8474not yet assigned?
CVE-2015-8537not yet assigned?
rhn-client-toolsCVE-2015-1777not yet assigned?
ropeCVE-2014-3539not yet assigned?
rsyncTEMP-0786423-948688low?
ruby-eventmachineTEMP-0678512-2E167Cnot yet assigned?
ruby-jquery-railsCVE-2015-1840medium**yes
ruby-jwtTEMP-0781640-F16931not yet assigned?
ruby-omniauthTEMP-0000000-2F3E8Bnot yet assigned?
ruby-sidekiqTEMP-0000000-23C1BDnot yet assigned?
TEMP-0000000-BD209Fnot yet assigned?
TEMP-0000000-F9A459not yet assigned?
ruby2.1CVE-2009-5147not yet assigned?
CVE-2015-7551not yet assigned?
simpleidTEMP-0813611-6DC734not yet assigned?
smartmontoolsTEMP-0804299-93A745low?
sogoCVE-2015-5395not yet assigned?
srtpCVE-2015-6360not yet assigned?
stalinCVE-2015-8697not yet assigned?
sudoCVE-2015-8239not yet assigned?
tcpdfTEMP-0814030-D4FF95not yet assigned?
tiffCVE-2015-7313not yet assigned?
CVE-2015-7554high**yes
CVE-2015-8668high**yes
tinycaTEMP-0538074-2D1AFEnot yet assigned?
tinymceCVE-2012-4230lowyes
unshieldCVE-2015-1386low?
w3afCVE-2013-2099lowyes
web2ldapCVE-2013-7258lowyes
wiresharkCVE-2015-8731medium**yes
wolfsslCVE-2015-6925medium**yes
xbindkeys-configCVE-2014-9513not yet assigned?
xchat-gnomeTEMP-0776609-026A07not yet assigned?
xdebTEMP-0781595-E39EEEnot yet assigned?
xdelta3CVE-2014-9765not yet assigned?
xenCVE-2014-9066medium**no
CVE-2015-5307medium**no
CVE-2015-6654low**no
CVE-2015-7311low**no
CVE-2015-8104medium**no
CVE-2015-8338high**no
CVE-2015-8339medium**no
CVE-2015-8340medium**no
CVE-2015-8341high**yes
CVE-2015-8550not yet assigned?
CVE-2015-8554not yet assigned?
CVE-2015-8555not yet assigned?
CVE-2015-8615low**no
CVE-2016-1570medium**no
CVE-2016-1571medium**no
TEMP-0000000-CE3B44not yet assigned?
yuiCVE-2013-6780lowyes
zooTEMP-0774453-CA58EElow?

If a "**" is included, the urgency field was automatically assigned by the NVD (National Vulnerability Database). Note that this rating is automatically derived from a set of known factors about the issue (such as access complexity, confidentiality impact, exploitability, remediation level, and others). Human intervention is involved in determining the values of these factors, but the rating itself comes from a fully automated formula.


Search for package or bug name: Reporting problems