Packages that may be vulnerable but need to be checked (undetermined issues)

This page lists packages that may or may not be affected by known issues. This means that some additional work needs to be done to determined whether the package is actually vulnerable or not. This list is a good area for new contributors to make quick and meaningful contributions.

PackageBugDescriptionReleases
amd64-microcodeCVE-2013-6885The microcode on AMD 16h 00h through 0Fh processors does not properly ...jessie, sid, wheezy
chromium-browserCVE-2008-5749** DISPUTED ** ...jessie, sid, squeeze, wheezy
CVE-2009-3011Google Chrome 1.0.154.48 and earlier, 2.0.172.28, 2.0.172.37, and ...jessie, sid, squeeze, wheezy
CVE-2010-2120Google Chrome 1.0.154.48 allows remote attackers to cause a denial of ...jessie, sid, squeeze, wheezy
CVE-2011-1797WebKit, as used in Apple Safari before 5.0.6, allows remote attackers ...jessie, sid, wheezy
CVE-2011-2075Unspecified vulnerability in Google Chrome 11.0.696.65 on Windows 7 ...jessie, sid, squeeze, wheezy
dolibarrCVE-2014-2054jessie, sid
glassfishCVE-2012-3155Unspecified vulnerability in the CORBA ORB component in Sun GlassFish ...jessie, sid, squeeze, wheezy
CVE-2013-3827Unspecified vulnerability in the Oracle GlassFish Server component in ...jessie, sid, squeeze, wheezy
CVE-2013-5816Unspecified vulnerability in the Oracle GlassFish Server component in ...jessie, sid, squeeze, wheezy
glusterfsCVE-2012-5635The GlusterFS functionality in Red Hat Storage Management Console 2.0, ...jessie, sid, squeeze, wheezy
gnome-online-accountsCVE-2013-1799Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before ...jessie, sid, wheezy
libavCVE-2013-0848The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 ...jessie, sid, wheezy
CVE-2013-0860The ff_er_frame_end function in libavcodec/error_resilience.c in ...jessie, sid, wheezy
CVE-2013-0868libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers ...jessie, sid, wheezy
CVE-2013-3670The rle_unpack function in vmdav.c in libavcodec in FFmpeg git ...jessie, sid, wheezy
CVE-2013-3672The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg ...jessie, sid, wheezy
CVE-2013-3674The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg ...jessie, sid, wheezy
CVE-2013-4263libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote ...jessie, sid, wheezy
CVE-2013-7020The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 ...jessie, sid, wheezy
libreofficeCVE-2011-2177jessie, sid, wheezy
libx11CVE-2006-0197The XClientMessageEvent struct used in certain components of X.Org ...jessie, sid, squeeze, wheezy
moodleCVE-2014-2054jessie, sid, squeeze
openjdk-6CVE-2007-3655Stack-based buffer overflow in javaws.exe in Sun Java Web Start in JRE ...jessie, sid, squeeze, wheezy
CVE-2008-0628The XML parsing code in Sun Java Runtime Environment JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-0657Multiple unspecified vulnerabilities in the Java Runtime Environment ...jessie, sid, squeeze, wheezy
CVE-2008-1185Unspecified vulnerability in the Virtual Machine for Sun Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2008-1186Unspecified vulnerability in the Virtual Machine for Sun Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2008-1187Unspecified vulnerability in Sun Java Runtime Environment (JRE) and ...jessie, sid, squeeze, wheezy
CVE-2008-1188Multiple buffer overflows in the useEncodingDecl function in Java Web ...jessie, sid, squeeze, wheezy
CVE-2008-1189Buffer overflow in Java Web Start in Sun JDK and JRE 6 Update 4 and ...jessie, sid, squeeze, wheezy
CVE-2008-1190Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-1191Unspecified vulnerability in Java Web Start in Sun JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-1192Unspecified vulnerability in the Java Plug-in for Sun JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-1193Unspecified vulnerability in Java Runtime Environment Image Parsing ...jessie, sid, squeeze, wheezy
CVE-2008-1194Multiple unspecified vulnerabilities in the color management library ...jessie, sid, squeeze, wheezy
CVE-2008-1195Unspecified vulnerability in Sun JDK and Java Runtime Environment ...jessie, sid, squeeze, wheezy
CVE-2008-1196Stack-based buffer overflow in Java Web Start (javaws.exe) in Sun JDK ...jessie, sid, squeeze, wheezy
CVE-2008-3103Unspecified vulnerability in the Java Management Extensions (JMX) ...jessie, sid, squeeze, wheezy
CVE-2008-3104Multiple unspecified vulnerabilities in Sun Java Runtime Environment ...jessie, sid, squeeze, wheezy
CVE-2008-3105Unspecified vulnerability in the JAX-WS client and service in Sun Java ...jessie, sid, squeeze, wheezy
CVE-2008-3106Unspecified vulnerability in Sun Java Runtime Environment (JRE) in JDK ...jessie, sid, squeeze, wheezy
CVE-2008-3107Unspecified vulnerability in the Virtual Machine in Sun Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2008-3108Buffer overflow in Sun Java Runtime Environment (JRE) in JDK and JRE ...jessie, sid, squeeze, wheezy
CVE-2008-3109Unspecified vulnerability in scripting language support in Sun Java ...jessie, sid, squeeze, wheezy
CVE-2008-3110Unspecified vulnerability in scripting language support in Sun Java ...jessie, sid, squeeze, wheezy
CVE-2008-3111Multiple buffer overflows in Sun Java Web Start in JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-3112Directory traversal vulnerability in Sun Java Web Start in JDK and JRE ...jessie, sid, squeeze, wheezy
CVE-2008-3113Unspecified vulnerability in Sun Java Web Start in JDK and JRE 5.0 ...jessie, sid, squeeze, wheezy
CVE-2008-3114Unspecified vulnerability in Sun Java Web Start in JDK and JRE 6 ...jessie, sid, squeeze, wheezy
CVE-2008-3115Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and ...jessie, sid, squeeze, wheezy
CVE-2009-0581Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as ...jessie, sid, squeeze, wheezy
CVE-2009-0723Multiple integer overflows in LittleCMS (aka lcms or liblcms) before ...jessie, sid, squeeze, wheezy
CVE-2009-0733Multiple stack-based buffer overflows in the ReadSetOfCurves function ...jessie, sid, squeeze, wheezy
CVE-2009-1093LdapCtx in the LDAP service in Java SE Development Kit (JDK) and Java ...jessie, sid, squeeze, wheezy
CVE-2009-1094Unspecified vulnerability in the LDAP implementation in Java SE ...jessie, sid, squeeze, wheezy
CVE-2009-1095Integer overflow in unpack200 in Java SE Development Kit (JDK) and ...jessie, sid, squeeze, wheezy
CVE-2009-1096Buffer overflow in unpack200 in Java SE Development Kit (JDK) and Java ...jessie, sid, squeeze, wheezy
CVE-2009-1097Multiple buffer overflows in Java SE Development Kit (JDK) and Java ...jessie, sid, squeeze, wheezy
CVE-2009-1098Buffer overflow in Java SE Development Kit (JDK) and Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-1099Integer signedness error in Java SE Development Kit (JDK) and Java ...jessie, sid, squeeze, wheezy
CVE-2009-1101Unspecified vulnerability in the lightweight HTTP server ...jessie, sid, squeeze, wheezy
CVE-2009-1102Unspecified vulnerability in the Virtual Machine in Java SE ...jessie, sid, squeeze, wheezy
CVE-2009-1103Unspecified vulnerability in the Java Plug-in in Java SE Development ...jessie, sid, squeeze, wheezy
CVE-2009-1104The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-1105The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-1106The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-1107The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-2675Integer overflow in the unpack200 utility in Sun Java Runtime ...jessie, sid, squeeze, wheezy
CVE-2009-2676Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE ...jessie, sid, squeeze, wheezy
CVE-2010-0082Unspecified vulnerability in the HotSpot Server component in Oracle ...jessie, sid, squeeze, wheezy
CVE-2010-0084Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0085Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0087Unspecified vulnerability in the Java Web Start, Java Plug-in ...jessie, sid, squeeze, wheezy
CVE-2010-0089Unspecified vulnerability in the Java Web Start, Java Plug-in ...jessie, sid, squeeze, wheezy
CVE-2010-0090Unspecified vulnerability in the Java Web Start, Java Plug-in ...jessie, sid, squeeze, wheezy
CVE-2010-0091Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0092Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0093Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0094Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0095Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0837Unspecified vulnerability in the Pack200 component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0838Unspecified vulnerability in the Java 2D component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0839Unspecified vulnerability in the Sound component in Oracle Java SE and ...jessie, sid, squeeze, wheezy
CVE-2010-0840Unspecified vulnerability in the Java Runtime Environment component in ...jessie, sid, squeeze, wheezy
CVE-2010-0841Unspecified vulnerability in the ImageIO component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0842Unspecified vulnerability in the Sound component in Oracle Java SE and ...jessie, sid, squeeze, wheezy
CVE-2010-0843Unspecified vulnerability in the Sound component in Oracle Java SE and ...jessie, sid, squeeze, wheezy
CVE-2010-0844Unspecified vulnerability in the Sound component in Oracle Java SE and ...jessie, sid, squeeze, wheezy
CVE-2010-0845Unspecified vulnerability in the HotSpot Server component in Oracle ...jessie, sid, squeeze, wheezy
CVE-2010-0846Unspecified vulnerability in the ImageIO component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0847Unspecified vulnerability in the Java 2D component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0848Unspecified vulnerability in the Java 2D component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0849Unspecified vulnerability in the Java 2D component in Oracle Java SE ...jessie, sid, squeeze, wheezy
CVE-2010-0850Unspecified vulnerability in the Java 2D component in Oracle Java SE ...jessie, sid, squeeze, wheezy
openoffice.orgCVE-2011-2177squeeze, wheezy
webkitCVE-2010-0474wheezy
zendframeworkCVE-2014-2052jessie, sid, squeeze, wheezy

Search for package or bug name: Reporting problems

Home - Testing Security Team - Debian Security - Source (SVN)