The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.
| Package | Migration | Bug | Urgency | Remote | |
|---|---|---|---|---|---|
| chromium | check | CVE-2025-6554 | not yet assigned | no | (fixed in stable?) |
| CVE-2025-6555 | not yet assigned | no | (fixed in stable?) | ||
| CVE-2025-6556 | not yet assigned | no | (fixed in stable?) | ||
| CVE-2025-6557 | not yet assigned | no | (fixed in stable?) | ||
| cjson | check | CVE-2023-26819 | not yet assigned | no | |
| clamav | check | CVE-2025-20234 | not yet assigned | no | |
| CVE-2025-20260 | not yet assigned | no | |||
| corosync | check | CVE-2025-30472 | not yet assigned | no | |
| dpkg | check | CVE-2025-6297 | not yet assigned | no | |
| firefox-esr | check | CVE-2025-6424 | not yet assigned | no | (fixed in stable?) |
| CVE-2025-6425 | not yet assigned | no | (fixed in stable?) | ||
| CVE-2025-6429 | not yet assigned | no | (fixed in stable?) | ||
| CVE-2025-6430 | not yet assigned | no | (fixed in stable?) | ||
| golang-1.24 | check | CVE-2025-22873 | not yet assigned | ? | |
| CVE-2025-22874 | not yet assigned | no | |||
| CVE-2025-4673 | not yet assigned | no | |||
| imagemagick | check | CVE-2025-43965 | not yet assigned | no | |
| CVE-2025-46393 | not yet assigned | no | |||
| jq | check | CVE-2025-48060 | not yet assigned | no | |
| libpgjava | check | CVE-2025-49146 | not yet assigned | no | |
| libssh | check | CVE-2025-4877 | not yet assigned | ? | |
| CVE-2025-4878 | not yet assigned | ? | |||
| CVE-2025-5318 | not yet assigned | no | |||
| CVE-2025-5351 | not yet assigned | ? | |||
| CVE-2025-5372 | not yet assigned | ? | |||
| CVE-2025-5449 | not yet assigned | ? | |||
| CVE-2025-5987 | not yet assigned | ? | |||
| mariadb | check | CVE-2023-52969 | not yet assigned | no | |
| CVE-2023-52970 | not yet assigned | no | |||
| CVE-2023-52971 | not yet assigned | no | |||
| CVE-2025-30693 | not yet assigned | no | |||
| CVE-2025-30722 | not yet assigned | no | |||
| mediawiki | check | CVE-2025-6589 | not yet assigned | ? | |
| CVE-2025-6590 | not yet assigned | ? | |||
| CVE-2025-6591 | not yet assigned | ? | |||
| CVE-2025-6592 | not yet assigned | ? | |||
| CVE-2025-6593 | not yet assigned | ? | |||
| CVE-2025-6594 | not yet assigned | ? | |||
| CVE-2025-6595 | not yet assigned | ? | |||
| CVE-2025-6596 | not yet assigned | ? | |||
| CVE-2025-6597 | not yet assigned | ? | |||
| CVE-2025-6926 | not yet assigned | ? | |||
| CVE-2025-6927 | not yet assigned | ? | |||
| node-tar-fs | check | CVE-2025-48387 | not yet assigned | no | |
| pam | check | CVE-2024-10963 | not yet assigned | no | |
| CVE-2025-6020 | not yet assigned | no | |||
| python3.13 | check | CVE-2024-12718 | not yet assigned | no | |
| CVE-2025-4138 | not yet assigned | no | |||
| CVE-2025-4330 | not yet assigned | no | |||
| CVE-2025-4435 | not yet assigned | no | |||
| CVE-2025-4516 | not yet assigned | no | |||
| CVE-2025-4517 | not yet assigned | no | |||
| qt6-base | check | CVE-2025-5455 | not yet assigned | no | |
| qtbase-opensource-src | check | CVE-2025-5455 | not yet assigned | no | |
| qtimageformats-opensource-src | check | CVE-2025-5683 | not yet assigned | no | |
| rust-spytrap-adb | check | CVE-2025-52926 | not yet assigned | no | |
| sudo | check | CVE-2025-32462 | not yet assigned | no | |
| CVE-2025-32463 | not yet assigned | no |