This page lists packages that may or may not be affected by known issues. This means that some additional work needs to be done to determined whether the package is actually vulnerable or not. This list is a good area for new contributors to make quick and meaningful contributions.
| Package | Bug | Description | Releases |
|---|---|---|---|
| amd64-microcode | CVE-2013-6885 | The microcode on AMD 16h 00h through 0Fh processors does not properly ... | jessie, sid, wheezy |
| chromium-browser | CVE-2008-5749 | ** DISPUTED ** ... | jessie, sid, squeeze, wheezy |
| CVE-2009-3011 | Google Chrome 1.0.154.48 and earlier, 2.0.172.28, 2.0.172.37, and ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-2120 | Google Chrome 1.0.154.48 allows remote attackers to cause a denial of ... | jessie, sid, squeeze, wheezy | |
| CVE-2011-1797 | WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ... | jessie, sid, wheezy | |
| CVE-2011-2075 | Unspecified vulnerability in Google Chrome 11.0.696.65 on Windows 7 ... | jessie, sid, squeeze, wheezy | |
| dolibarr | CVE-2014-2054 | jessie, sid | |
| glassfish | CVE-2012-3155 | Unspecified vulnerability in the CORBA ORB component in Sun GlassFish ... | jessie, sid, squeeze, wheezy |
| CVE-2013-3827 | Unspecified vulnerability in the Oracle GlassFish Server component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2013-5816 | Unspecified vulnerability in the Oracle GlassFish Server component in ... | jessie, sid, squeeze, wheezy | |
| glusterfs | CVE-2012-5635 | The GlusterFS functionality in Red Hat Storage Management Console 2.0, ... | jessie, sid, squeeze, wheezy |
| gnome-online-accounts | CVE-2013-1799 | Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ... | jessie, sid, wheezy |
| libav | CVE-2013-0848 | The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 ... | jessie, sid, wheezy |
| CVE-2013-0860 | The ff_er_frame_end function in libavcodec/error_resilience.c in ... | jessie, sid, wheezy | |
| CVE-2013-0868 | libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers ... | jessie, sid, wheezy | |
| CVE-2013-3670 | The rle_unpack function in vmdav.c in libavcodec in FFmpeg git ... | jessie, sid, wheezy | |
| CVE-2013-3672 | The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg ... | jessie, sid, wheezy | |
| CVE-2013-3674 | The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg ... | jessie, sid, wheezy | |
| CVE-2013-4263 | libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote ... | jessie, sid, wheezy | |
| CVE-2013-7020 | The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 ... | jessie, sid, wheezy | |
| libreoffice | CVE-2011-2177 | jessie, sid, wheezy | |
| libx11 | CVE-2006-0197 | The XClientMessageEvent struct used in certain components of X.Org ... | jessie, sid, squeeze, wheezy |
| moodle | CVE-2014-2054 | jessie, sid, squeeze | |
| openjdk-6 | CVE-2007-3655 | Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE ... | jessie, sid, squeeze, wheezy |
| CVE-2008-0628 | The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-0657 | Multiple unspecified vulnerabilities in the Java Runtime Environment ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1185 | Unspecified vulnerability in the Virtual Machine for Sun Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1186 | Unspecified vulnerability in the Virtual Machine for Sun Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1187 | Unspecified vulnerability in Sun Java Runtime Environment (JRE) and ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1188 | Multiple buffer overflows in the useEncodingDecl function in Java Web ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1189 | Buffer overflow in Java Web Start in Sun JDK and JRE 6 Update 4 and ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1190 | Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1191 | Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1192 | Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1193 | Unspecified vulnerability in Java Runtime Environment Image Parsing ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1194 | Multiple unspecified vulnerabilities in the color management library ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1195 | Unspecified vulnerability in Sun JDK and Java Runtime Environment ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-1196 | Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3103 | Unspecified vulnerability in the Java Management Extensions (JMX) ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3104 | Multiple unspecified vulnerabilities in Sun Java Runtime Environment ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3105 | Unspecified vulnerability in the JAX-WS client and service in Sun Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3106 | Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3107 | Unspecified vulnerability in the Virtual Machine in Sun Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3108 | Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3109 | Unspecified vulnerability in scripting language support in Sun Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3110 | Unspecified vulnerability in scripting language support in Sun Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3111 | Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3112 | Directory traversal vulnerability in Sun Java Web Start in JDK and JRE ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3113 | Unspecified vulnerability in Sun Java Web Start in JDK and JRE 5.0 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3114 | Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 ... | jessie, sid, squeeze, wheezy | |
| CVE-2008-3115 | Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-0581 | Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-0723 | Multiple integer overflows in LittleCMS (aka lcms or liblcms) before ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-0733 | Multiple stack-based buffer overflows in the ReadSetOfCurves function ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1093 | LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1094 | Unspecified vulnerability in the LDAP implementation in Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1095 | Integer overflow in unpack200 in Java SE Development Kit (JDK) and ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1096 | Buffer overflow in unpack200 in Java SE Development Kit (JDK) and Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1097 | Multiple buffer overflows in Java SE Development Kit (JDK) and Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1098 | Buffer overflow in Java SE Development Kit (JDK) and Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1099 | Integer signedness error in Java SE Development Kit (JDK) and Java ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1101 | Unspecified vulnerability in the lightweight HTTP server ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1102 | Unspecified vulnerability in the Virtual Machine in Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1103 | Unspecified vulnerability in the Java Plug-in in Java SE Development ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1104 | The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1105 | The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1106 | The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-1107 | The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-2675 | Integer overflow in the unpack200 utility in Sun Java Runtime ... | jessie, sid, squeeze, wheezy | |
| CVE-2009-2676 | Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0082 | Unspecified vulnerability in the HotSpot Server component in Oracle ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0084 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0085 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0087 | Unspecified vulnerability in the Java Web Start, Java Plug-in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0089 | Unspecified vulnerability in the Java Web Start, Java Plug-in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0090 | Unspecified vulnerability in the Java Web Start, Java Plug-in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0091 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0092 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0093 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0094 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0095 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0837 | Unspecified vulnerability in the Pack200 component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0838 | Unspecified vulnerability in the Java 2D component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0839 | Unspecified vulnerability in the Sound component in Oracle Java SE and ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0840 | Unspecified vulnerability in the Java Runtime Environment component in ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0841 | Unspecified vulnerability in the ImageIO component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0842 | Unspecified vulnerability in the Sound component in Oracle Java SE and ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0843 | Unspecified vulnerability in the Sound component in Oracle Java SE and ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0844 | Unspecified vulnerability in the Sound component in Oracle Java SE and ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0845 | Unspecified vulnerability in the HotSpot Server component in Oracle ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0846 | Unspecified vulnerability in the ImageIO component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0847 | Unspecified vulnerability in the Java 2D component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0848 | Unspecified vulnerability in the Java 2D component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0849 | Unspecified vulnerability in the Java 2D component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| CVE-2010-0850 | Unspecified vulnerability in the Java 2D component in Oracle Java SE ... | jessie, sid, squeeze, wheezy | |
| openoffice.org | CVE-2011-2177 | squeeze, wheezy | |
| webkit | CVE-2010-0474 | wheezy | |
| zendframework | CVE-2014-2052 | jessie, sid, squeeze, wheezy |
Home - Testing Security Team - Debian Security - Source (SVN)