Candidates for DTSAs

The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.

List of vulnerable packages in testing

Package	Migration	Bug	Urgency	Remote
cups-filters	check	CVE-2025-57812	not yet assigned	no
		CVE-2025-64503	not yet assigned	no
		CVE-2025-64524	not yet assigned	no
grub2	check	CVE-2025-4382	not yet assigned	no
libcupsfilters	check	CVE-2025-57812	not yet assigned	no
		CVE-2025-64503	not yet assigned	no
libsoup3	check	CVE-2025-11021	not yet assigned	no
llvm-toolchain-19	check	CVE-2024-7883	not yet assigned	no
ncurses	check	CVE-2025-6141	not yet assigned	no
python-pip	check	CVE-2025-8869	not yet assigned	no
rust-wasmtime	check	CVE-2025-64345	not yet assigned	no
vips	check	CVE-2025-59933	not yet assigned	no