Candidates for DTSAs

The table below lists packages which are fixed in unstable, but unfixed in testing. Use the testing migration checker to find out why they have not entered testing yet.

List of vulnerable packages in testing

Package	Migration	Bug	Urgency	Remote
chromium	check	CVE-2024-4558	not yet assigned	no	(fixed in stable?)
		CVE-2024-4559	not yet assigned	no	(fixed in stable?)
		CVE-2024-4671	not yet assigned	no	(fixed in stable?)
cockpit	check	CVE-2024-2947	not yet assigned	no
hugo	check	CVE-2024-32875	not yet assigned	no
jgit	check	CVE-2023-4759	not yet assigned	no
libvirt	check	CVE-2024-4418	not yet assigned	no
netty	check	CVE-2024-29025	not yet assigned	no
node-es5-ext	check	CVE-2024-27088	not yet assigned	no
pcp	check	CVE-2024-3019	not yet assigned	no
poppler	check	CVE-2023-34872	not yet assigned	no
pycryptodome	check	CVE-2023-52323	not yet assigned	no
shim	check	CVE-2023-40546	not yet assigned	no
		CVE-2023-40547	not yet assigned	no
		CVE-2023-40548	not yet assigned	no
		CVE-2023-40549	not yet assigned	no
		CVE-2023-40550	not yet assigned	no
		CVE-2023-40551	not yet assigned	no
sqlparse	check	CVE-2024-4340	not yet assigned	no
tpm2-tools	check	CVE-2024-29038	not yet assigned	?
		CVE-2024-29039	not yet assigned	?
tpm2-tss	check	CVE-2024-29040	not yet assigned	?