Bugs search
Useful queries for testing (bookworm)
- BSP view (bugs needing attention): Old bugs affecting sid and bookworm, not RT-tagged and not marked for auto-removal
- Sponsor view: Affecting sid and bookworm, not marked as done, tagged 'patch', not in delayed; those need a DD to review and sponsor an upload or remove the tag
- Cleaner view: Marked as done, no activity in the last 5 days, but still affecting sid and bookworm; why is it still affecting unstable? fixed only in stable or experimental? missing binaries? cruft? wrong changelog?
- Release Team view: Fixed in sid, no activity in the last 5 days, but still not fixed in bookworm. Help the fix migrate to bookworm!
14 bugs found
bug# | tags | package | title | popcon | severity | modified |
---|---|---|---|---|---|---|
#998206 | [S] | calendar | calendar: cronjob processes all usersâ calendars as root, allowing information disclosure | 123840 | serious | 2021-12-08 |
#922981 | [P|S] | ca-certificates-java | ca-certificates-java: /etc/ca-certificates/update.d/jks-keystore doesn't update /etc/ssl/certs/java/cacerts | 73437 | serious | 2021-08-14 |
#1010152 | [U|+|S|u] | emacs-gtk | emacs-gtk: tries to read a config file from another user's home dir | 14930 | grave | 2022-05-12 |
#992150 | [S|u] | src:firefox-esr | Please allow symlink in system extension | 86234 | serious | 2021-08-16 |
#919914 | [bul-i|M|+|S] | gnome-settings-daemon | gnome-tweaks now equates "don't suspend on lid close" with "don't lock on lid close" (security issue) | 54847 | grave | 2021-04-10 |
#1004963 | [S|u] | src:libde265 | CVE-2020-21598 CVE-2020-21600 CVE-2020-21602 | 99640 | grave | 2022-02-04 |
#287371 | [S|u] | xsltproc | xsltproc: DTD should be cached when included several times, or used memory should be limited | 157708 | grave | 2022-04-25 |
#972146 | [S] | mono-runtime-common | /usr/share/applications/mono-runtime-common.desktop: should not handle MIME type by executing arbitrary code | 16034 | grave | 2021-11-10 |
#1002901 | [S|u] | node-request-capture-har | node-request-capture-har is a wrapper around deprecated node-request | 759 | serious | 2021-12-31 |
#1006672 | [U|S|u] | src:php8.1 | php8.1: CVE-2021-21708 | 5169 | grave | 2022-03-07 |
#983206 | [bul-i|U|S|u] | libupnp13 | [libupnp13] Please update for CVE-2020-12695 & fixes | 44768 | grave | 2022-02-02 |
#1012482 | [S|u] | src:rdflib | rdflib: URLInputSource can be abused to retrieve arbitrary documents if used naïvely | 692 | critical | 2022-06-08 |
#1012138 | [S|u] | src:sox | CVE-2021-40426 | 23215 | grave | 2022-06-28 |
#1009073 | [S|u] | src:virglrenderer | virglrenderer: CVE-2022-0135: out-of-bounds write in read_transfer_data() | 13481 | grave | 2022-04-06 |
Generated in 1.257 seconds.
select id, bugs.package, bugs.source, severity, title, last_modified, status, affects_stable, affects_testing, affects_unstable, affects_experimental , coalesce(popcon_src.insts, 0) as popcon from bugs left join popcon_src on (bugs.source = popcon_src.source) where id in (select id from bugs_rt_affects_testing) and id in (select id from bugs_tags where tag='security') AND (severity >= 'serious') order by source asc