Packages that may be vulnerable but need to be checked (undetermined issues)

This page lists packages that may or may not be affected by known issues. This means that some additional work needs to be done to determined whether the package is actually vulnerable or not. This list is a good area for new contributors to make quick and meaningful contributions.

PackageBugDescriptionReleases
dogtag-pkiCVE-2022-2393A flaw was found in pki-core, which could allow a user to get a certif ...bookworm, bullseye, sid
gpacCVE-2023-0841A vulnerability, which was classified as critical, has been found in G ...bookworm, bullseye, buster, sid
hdf5CVE-2018-11205A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the ...bookworm, bullseye, buster, sid
CVE-2019-8396A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 ...bookworm, bullseye, buster, sid
CVE-2019-8398An issue was discovered in the HDF HDF5 1.10.4 library. There is an ou ...bookworm, bullseye, buster, sid
kfreebsd-10CVE-2014-7250The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly ...buster, sid
kgb-botCVE-2015-1554kgb-bot 1.33-2 allows remote attackers to cause a denial of service (c ...bookworm, bullseye, buster, sid
kotlinCVE-2020-29582In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for ...bookworm, sid
CVE-2022-24329In JetBrains Kotlin before 1.6.0, it was not possible to lock dependen ...bookworm, sid
linuxCVE-2020-0347In iptables, there is a possible out of bounds write due to an incorre ...bookworm, bullseye, buster, sid
CVE-2020-26140An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for ...bookworm, bullseye, buster, sid
CVE-2020-26142An issue was discovered in the kernel in OpenBSD 6.6. The WEP, WPA, WP ...bookworm, bullseye, buster, sid
CVE-2020-26143An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for ...bookworm, bullseye, buster, sid
CVE-2022-36402An integer overflow vulnerability was found in vmwgfx driver in driver ...bookworm, bullseye, buster, sid
pluxmlCVE-2007-3432Unrestricted file upload vulnerability in admin/images.php in Pluxml 0 ...buster
CVE-2007-3542Cross-site scripting (XSS) vulnerability in admin/auth.php in Pluxml 0 ...buster
CVE-2012-4674PluXml before 5.1.6 allows remote attackers to obtain the installation ...buster
CVE-2012-4675Cross-site scripting (XSS) vulnerability in PluXml 5.1.6 allows remote ...buster
wordpressCVE-2018-1000773WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation ...bookworm, bullseye, buster, sid
wordpressCVE-2019-8943WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An a ...bookworm, bullseye, buster, sid

Search for package or bug name: Reporting problems