Bugs search
Useful queries
- Bug squasher view: Affecting sid and stretch, not marked as done, not tagged patch; those need to be fixed, probably by a patch+upload
- Sponsor view: Affecting sid and stretch, not marked as done, tagged 'patch'; those need a DD to sponsor an upload
- Cleaner view: Affecting sid and stretch, but marked as done; why is it still affecting unstable? fixed only in experimental? missing binaries? wrong changelog?
- Release Team view: Affecting stretch, but not sid. Help the fix migrate to stretch!
270 bugs found
| bug# | package | title | modified |
|---|---|---|---|
| #128745 | libstroke0-dev | libstroke0-dev: aclocal is confused by libstroke .m4 files | 2016-07-05 |
| #330695 | libldap-2.4-2 | libldap2: /etc/ldap/ldap.conf breaks multiarch and on soname change | 2016-08-11 |
| #412185 | atftpd | Upgrade overwrites /etc/default/atftpd, inetd.conf | 2016-09-05 |
| #479096 | libacpi | libacpi0: getting battery status broken by missing support for new sysfs names | 2016-03-14 |
| #504099 | gnu-fdisk | gnu-fdisk: fails to display GPT partition properly | 2013-06-29 |
| #517472 | libxml-libxml-perl | libxml-libxml-perl: Missing versioned dependency on libxml2 - Causes runtime warnings | 2015-08-31 |
| #545827 | toshset | toshset does not work on 2.6.29 and later kernels | 2016-06-19 |
| #629334 | src:gbackground | gbackground: uses Switch.pm, removed in perl 5.14 | 2015-06-19 |
| #629337 | src:gosa-perl | gosa-perl: uses Switch.pm, removed in perl 5.14 | 2015-06-19 |
| #635711 | monkeysphere | error on install | 2015-05-07 |
| #642411 | cltl | endless loop installing cltl | 2014-04-26 |
| #665199 | slapd | slapd: fails to install, remove, distupgrade, and install again | 2016-04-11 |
| #666414 | src:rggobi | FTBFS on s390x: Segmentation fault during installation | 2014-07-13 |
| #684499 | dovecot-core | dovecot-core: Expunged messages continue to reappear | 2016-03-02 |
| #701674 | apf-firewall | apf-firewall doesn't work with kernel-version >= 3.0 | 2015-07-18 |
| #704303 | iceweasel | iceweasel: MPL license text is missing | 2016-02-20 |
| #706877 | insserv | insserv: breaks dist-upgrade by installing before packages fix their init scripts | 2014-12-28 |
| #706909 | smartmontools | smartmontools: updated drivedb.h should go to /var | 2016-02-05 |
| #707305 | libquicktime2 | runtime error on load, "can execute code" | 2013-06-14 |
| #709085 | dvifb | dvifb suffers total font failure | 2013-05-20 |
| #709198 | debconf | debconf: should not use python in maintainer scripts | 2014-11-06 |
| #709641 | libaudiomask-dev | libaudiomask-dev: symlink pointing to wrong location | 2014-08-05 |
| #712102 | pidgin-microblog | Plugin no longer functions with Twitter or Identica | 2013-08-29 |
| #712510 | python-whoosh | python-whoosh FTBFS:some tests failed on mips | 2013-12-24 |
| #715569 | proftpd-mod-vroot | Official mod_vroot lib broken, lib built from source works | 2016-09-02 |
| #722892 | nautilus-pastebin | nautilis-pastebin: Does not appear in file menu | 2016-02-18 |
| #725417 | mbr | mbr: install-mbr wipes the disk-id portion of the MBR, rendering Windows 7 unbootable | 2016-09-15 |
| #727245 | abook | abook: Add an address to Abook with Mutt delete all phone numbers | 2015-12-31 |
| #729975 | hotot | hotot: Wheezy version no longer usable with Twitter, uses retired 1.0 API | 2015-04-29 |
| #729986 | libnss-mysql-bg | libnss-mysql-bg: Patch 04_shadow.diff Introduces Lock Acquisition Hang | 2015-02-23 |
| #731178 | dante-server | dante-server: requires libc6-dev to be installed | 2016-04-09 |
| #734365 | freeplayer | freeplayer: unknown option or missing mandatory argument (while calling vlc) | 2015-08-30 |
| #735260 | yaboot-installer | installation-reports: Jessie Netinst for PowerPC-64 creates will not boot after installation -- but works for PowerPC-32 | 2016-04-12 |
| #735935 | grub-common | grub2: LVM trouble at boot with several PVs | 2016-04-14 |
| #737395 | funny-manpages | funny-manpages: Copyright problem | 2014-09-07 |
| #739251 | iptables | iptables: Upgrade breaks existing rules (and is not documented) | 2016-01-28 |
| #740111 | icedtea-netx | icedtea-netx: NullPointerException in SwingUtilities.appContextGet | 2016-04-22 |
| #740463 | libelmersolver-6.1 | libelmersolver-6.1.so links with both GPL-licensed and GPL-incompatible libraries | 2014-03-02 |
| #740911 | evolution-data-server | WebDAV: Evolution sends invalid REV field, DAViCal expects timestamp | 2015-04-30 |
| #740998 | rdnssd | NetworkManager and rdnssd do not play well together | 2016-03-30 |
| #743828 | redmine | redmine: security: CVE-2014-1985: open redirector issue | 2014-12-31 |
| #743955 | coreutils | coreutils: corrupted files on heavily fragmented ext3 and ext4 partitions | 2016-01-15 |
| #744698 | src:fontmatrix | [fontmatrix] [DFSG] missing source | 2014-11-08 |
| #746937 | xmail | xmail links against libssl but doesn't have openssl exception in License | 2014-05-04 |
| #748130 | libscotch-5.1 | on wheezy/amd64: libscotch-5.1 depends on mpich while mpi-default is openmpi | 2014-09-03 |
| #749833 | scilab | scilab: Scilab include non-free codes | 2016-03-09 |
| #750141 | libqt4-xml | libqt4-xml: vulnerable to billion laughs attack (CVE-2013-4549) | 2014-06-10 |
| #750943 | stunnel4 | stunnel4: init script missing lsb-required status target | 2014-10-16 |
| #751367 | dictionaries-common | unupgradeable: "shared/packages-wordlist doesn't exist" | 2015-04-30 |
| #752381 | src:grub2 | initramfs-tools: does not activate logical volume before trying to mount root filesystem on LVM | 2015-08-17 |
| #752610 | lynx-cur | lynx: Can connect to CVE-2014-0092 test site | 2016-09-21 |
| #753235 | src:lldpad | lldpad: FTBFS: dpkg-source: error: expected ^--- in line 2 of diff `lldpad-0.9.46/debian/patches/fix-typo-in-lldptool-ets-8.patch' | 2016-09-10 |
| #753922 | src:herculesstudio | herculesstudio: Broken patch disallows dpkg-source unpack | 2014-07-06 |
| #753927 | src:usbredir | usbredir: Broken patch disallows dpkg-source unpack | 2014-07-06 |
| #755586 | src:django-app-plugins | django-app-plugins: Please ensure it works with Django 1.7 | 2016-01-03 |
| #755600 | src:djagios | djagios: Please ensure it works with Django 1.7 | 2016-03-02 |
| #755605 | src:django-threaded-multihost | django-threaded-multihost: Please ensure it works with Django 1.7 | 2016-01-03 |
| #755618 | src:python-django-djapian | python-django-djapian: Please ensure it works with Django 1.7 | 2016-03-09 |
| #755634 | src:python-django-websocket | python-django-websocket: Please ensure it works with Django 1.7 | 2016-01-03 |
| #755637 | src:django-genshi | django-genshi: Please ensure it works with Django 1.7 | 2016-01-03 |
| #755992 | proftpd-mod-clamav | proftpd-mod-clamav: error: Can not stat file (9): Bad file descriptor | 2016-09-22 |
| #757771 | rar | rar: Incorrect handling of file names containing international characters when creating an archive | 2014-08-25 |
| #758558 | couchdb | Includes file with unclear license | 2014-08-19 |
| #759936 | proftpd-mod-vroot | proftpd-mod-vroot: Module is broken because of erroneous function vroot_lookup_path | 2014-09-03 |
| #762835 | openafs-fileserver | error exit on dafileserver (segfault) | 2016-04-19 |
| #762950 | libsolid4 | digikam: Removes all images from database when unaccessible mount is found | 2016-05-14 |
| #763824 | libtar0 | writes archives with checksums itself deems wrong | 2014-10-05 |
| #766250 | eject | eject: [kfreebsd] fails to open cdrom tray | 2016-06-07 |
| #767572 | libthunar-vfs-1-2-dbg | libthunar-vfs-1-2-dbg: fails to upgrade from squeeze - trying to overwrite /usr/lib/debug/usr/lib/libthunar-vfs-1.so.2.3.1 | 2014-11-01 |
| #769798 | openswan-modules-dkms | openswan-modules-dkms: module FTBFS with linux-headers-3.2.0-4-amd64 3.2.63-2+deb7u1 | 2015-01-25 |
| #770130 | xserver-xorg-video-intel | gnome-shell: crashes with "Failed to create texture 2d" after "[drm:i8xx_irq_handler] *ERROR* pipe A underrun" | 2015-03-17 |
| #770369 | eterm | Eterm: does not run shell | 2016-03-05 |
| #770402 | nautilus-dropbox | nautilus-dropbox: hangs during installation with 100% cpu usage | 2015-09-14 |
| #770492 | src:linux | linux-image-3.16.0-4-686-pae: chown removes security.capability xattr on other users' files (CVE-2015-1350) | 2016-06-08 |
| #771040 | yaboot-installer | installation-reports: Messes up Mac OS 9 driver partitions | 2016-04-12 |
| #772794 | qpid-cpp | qpid-cpp: Multiple security issues | 2015-02-02 |
| #772795 | grub-pc | grub installation fails on a fakeraid/sataraid/dmraid system | 2016-04-14 |
| #773059 | ogre-doc | ogre-doc: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE | 2014-12-13 |
| #773747 | pgpdump | pgpdump: CVE-2016-4021: endless loop parsing specially crafted input | 2016-09-20 |
| #773808 | openclipart2 | Openclipart2 included non-free images. | 2014-12-23 |
| #774149 | usbmount | usbmount: Can't mount ntfs drive (Transport endpoint is not connected) | 2016-04-25 |
| #774290 | worldwind | worldwind: Immediate crash (HeadlessException) with 'Java(TM) SE Runtime Environment (build 1.7.0_45-b18' | 2014-12-31 |
| #774891 | gtkpod | gtkpod: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE | 2015-01-15 |
| #774931 | asr-manpages | asr-manpages: Unknown licensing status | 2015-01-18 |
| #775183 | spamass-milter | spamass-milter adds bad Received: header, creating false positive | 2016-03-14 |
| #775346 | chicken | chicken: CVE-2014-9651: buffer overrun in CHICKEN Scheme's substring-index | 2016-06-12 |
| #775689 | src:unetbootin | Do NOT use unetbootin for Debian CD images | 2016-09-14 |
| #776118 | nagios3-cgi | nagios3-cgi: prompting due to modified conffiles which were not modified by the user: /etc/nagios3/cgi.cfg | 2015-01-24 |
| #776512 | mantis | function InsertData() is defined twice: installation is broken | 2015-05-12 |
| #777184 | ltsp-client-core | ltsp-client: insserv: script ltsp-client-setup: service ltsp-client-setup already provided! | 2015-07-19 |
| #778747 | openssl | openssl: RFC 7465 says RC4 is broken, never to be used | 2016-08-24 |
| #779468 | apt-spy | apt-spy: creates an invalid sources list | 2015-03-08 |
| #779803 | smuxi | smuxi performs autoconnect on first startup | 2015-08-27 |
| #780323 | coreutils | /bin/cp: cp: *deletes* files' contents with --attributes-only option | 2015-03-23 |
| #780429 | snmp-mibs-downloader | snmp-mibs-downloader: postinst uses /usr/share/doc content (Policy 12.3): /usr/share/doc/mibrfcs/* | 2016-09-01 |
| #780875 | mantis | mantis: MantisBT <1.2.19 multiple vulnerabilities (Access control bypass/XSS/SQL injection/etc) | 2015-03-20 |
| #781595 | src:xdeb | xdeb: disables apt's signature checks | 2015-12-30 |
| #783346 | xen-utils-4.1 | patch for booting Jessie domU with wheezy dom0 | 2015-10-24 |
| #783545 | xul-ext-automatic-save-folder | Doesn’t work, abandonned upstream | 2015-08-21 |
| #783721 | dnssec-tools | dnssec-tools: dnssec-signzone behaviour changed; new signed zonefiles unparseable by rollerd | 2016-02-01 |
| #784446 | backup-manager | backup-manager: Current incremental backup implementation can cause data loss | 2016-03-22 |
| #784619 | src:creepy | [creepy] Qt4's WebKit removal | 2016-08-17 |
| #786338 | ears | ears: broken since python-musicbrainz has been removed | 2015-05-21 |
| #786442 | squirrelmail | some lines don't appear in some messages | 2016-02-16 |
| #786694 | fftw | fftw: FTBFS with TZ=GMT-14 | 2015-06-26 |
| #787350 | src:fontmatrix | [RC][cc-by-nc-sa] Please clarify license of a few svg files | 2015-05-31 |
| #787355 | src:openclipart2 | [RC][cc-by-nc-sa] Please clarify license of a few svg files | 2015-05-31 |
| #787359 | squirrelmail-spam-buttons | [RC][cc-by-nc-sa] Please clarify license of a few files (false positive ?) | 2015-05-31 |
| #787361 | xhtmlrenderer | [RC][cc-by-nc-sa] Please clarify license of a few svg files | 2016-01-11 |
| #787594 | freemat | Some sources are not included in your package | 2016-01-25 |
| #788008 | libcgi-application-plugin-anytemplate-perl | libcgi-application-plugin-anytemplate-perl: missing dependency on libclone-perl | 2015-06-07 |
| #788319 | src:yui3 | [yui3] Some sources are not included in your package | 2015-06-10 |
| #788350 | libhttp-proxy-perl | FTBFS - proxy tests | 2015-06-12 |
| #788725 | src:jffnms | [src:jffnms] Some sources are not included in your package | 2016-04-02 |
| #788833 | src:chicken | chicken: CVE-2015-4556: buffer overrun in CHICKEN Scheme's string-translate* procedure | 2016-06-12 |
| #789197 | src:libmimedir | libmimedir: CVE-2015-3205 | 2015-06-23 |
| #789407 | pidgin-openpgp | unable to send openpgp messages | 2015-06-20 |
| #792078 | cantor-backend-qalculate | cantor-backend-qalculate: GPL3 not documented/incompatible mixing of GPL2/3 code | 2016-06-24 |
| #792126 | mbr | mbr:i386 self-tests depend on VM86 | 2016-06-29 |
| #792852 | gcom | gcom: copyright file missing after upgrade (policy 12.5) | 2015-07-21 |
| #792925 | webalizer | webalizer: Webalizer stopped parsing squid logs (after 1 may 2015) saying Invlid Date Format | 2015-07-22 |
| #793465 | src:libuser | DoS and privilege escalation by local users (CVE-2015-3245 and CVE-2015-3246) | 2016-05-30 |
| #793895 | src:netperf | netperf: FTBFS with -Werror=format-security | 2015-07-28 |
| #794461 | python-mock | RequirementParseError: Expected version spec in funcsigs; python_version<"3.3" at ; python_version<"3.3" | 2016-01-17 |
| #794849 | os-prober | linux: custom linux-image packages fail to install | 2015-08-12 |
| #794850 | src:cl-plplot | cl-plplot: non DFSG file in the source package | 2015-08-08 |
| #796033 | src:ocamlodbc | ocamlodbc: FTBFS under almost any locale (eg. en_GB.UTF-8) | 2015-10-17 |
| #796114 | src:netty | CVE-2015-2156 | 2015-09-12 |
| #796197 | src:sogo | CVE-2015-5395 | 2015-09-06 |
| #796235 | rinetd | rinetd fills up the logs until disk is full up if it cannot bind | 2016-01-11 |
| #796495 | yubiserver | yubiserver: multiple vulnerabilities, affecting old/stable? | 2016-01-03 |
| #797046 | src:libtorrent-rasterbar | CVE-2015-5685: remote execution vulnerability in lazy_bdecode() | 2016-03-23 |
| #797547 | pgsnap | pgsnap seems too old in Jessie | 2016-05-06 |
| #798805 | fonts-cantarell | fonts-cantarell: Switch to autohinting to work around blurry rendering with CFF | 2015-09-21 |
| #798862 | shutter | CVE-2015-0854: Insecure use of system() | 2015-11-06 |
| #798886 | src:ipython | ipython: CVE-2015-6938: XSS vulnerability | 2016-01-07 |
| #799313 | src:jbofihe | jbofihe: FTBFS under some locales (eg. fr_CH.UTF-8) | 2015-09-17 |
| #799441 | hijra-applet | GNOME shell extension not compatible with recent GNOME versions | 2015-10-20 |
| #799715 | gxmessage | gxmessage: ships /usr/share/info/dir.gz on arm64 | 2016-05-15 |
| #800913 | nama | nama: ChainSetup fails rendering all sound operations useless | 2015-12-29 |
| #801046 | git | fatal: Out of memory, malloc failed (tried to allocate 524288000 bytes) | 2016-09-26 |
| #801582 | nvram-wakeup | grub-pc: default entry becomes Halt once (for setting alarm) => no boot | 2015-11-04 |
| #802759 | src:ampache-themes | ampache-themes: non-free files (CC-BY-NC-SA-3.0 and IEC61966-2.1) | 2015-10-23 |
| #802776 | src:matplotlib | matplotlib: ttf-bitstream-vera missing in "Depends:" of python-matplotlib-data | 2016-01-09 |
| #803003 | ess | ess: Maintainer field points to moderated mailing list | 2015-10-27 |
| #803033 | src:catdoc | catdoc: non-free Unicode files | 2015-12-23 |
| #803658 | plymouth | boot hangs before cryptsetup passphrase prompt | 2015-12-04 |
| #805370 | mpage | mpage: non-free license | 2016-09-18 |
| #806273 | os-prober | os-prober: remove or disable-per default the non grub-mount based probing | 2016-01-21 |
| #806930 | pianobar | pianobar needs update for new server SSL certificate | 2015-12-05 |
| #806946 | bindgraph | bindgraph doesn't show any graphic | 2016-02-29 |
| #807074 | fbreader | fbreader: includes files with unclear DFSG-freeness and/or copyright status | 2016-02-22 |
| #807487 | pbuilder | pbuilder fails when using aptitude resolver with aptitude 0.7.5 | 2015-12-11 |
| #808216 | debmirror | debmirror: Debmirror seeems to have problems with new SHA256 in Packages.diff/Index files | 2016-06-19 |
| #808433 | nethogs | nethogs doesn't start, saying "creating socket failed" | 2016-07-12 |
| #808463 | ntfs-3g | non-free code in boot.c | 2016-04-22 |
| #808472 | gnu-efi | gnu-efi copyright file is wrong, includes GPL-licensed code on arm | 2016-06-30 |
| #809733 | src:activemq | activemq: CVE-2015-5254: unsafe deserialization | 2016-03-13 |
| #809813 | gnuplot-doc | gnuplot contain "lena" images | 2016-06-07 |
| #809843 | src:autopsy | autopsy: maintainer address bounces | 2016-08-04 |
| #810153 | busybox | don't source initramfs.conf in busybox initramfs hook | 2016-01-17 |
| #811091 | src:xtrkcad | xtrkcad: missing and outdated licenses. | 2016-02-17 |
| #813775 | linux-atm | Maintainer address bounces | 2016-06-25 |
| #813776 | openwince-include | Maintainer address bounces | 2016-02-05 |
| #813778 | openwince-jtag | Maintainer address bounces | 2016-02-05 |
| #813880 | src:tokyocabinet | tokyocabinet: testsuite failures on some archs | 2016-02-06 |
| #814445 | src:libsdl1.2 | Non-Free file: src/stdlib/SDL_qsort.c | 2016-03-05 |
| #814589 | src:otrs2 | otrs2: source-less files; undocumented copyrights/licenses; abuse of lintian-overrides; systematic DFSG violations | 2016-04-01 |
| #815935 | src:phoronix-test-suite | phoronix-test-suite: FTBFS with nonexistent $HOME | 2016-02-25 |
| #816759 | minissdpd | minissdpd: CVE-2016-3178 CVE-2016-3179 | 2016-05-04 |
| #819992 | fsprotect | [fsprotect] Requires aufs kernel module which is not part of Debian | 2016-09-24 |
| #821375 | claws-mail-themes | claws-mail-themes: Skypilot-Clawssic is non-free | 2016-05-16 |
| #821819 | sympa | sympa: upgrade overwrites configfiles with debconf values | 2016-04-19 |
| #822078 | debian-installer | debian-installer: Unbootable system after the installation on Dell XPS13 P54G model | 2016-04-21 |
| #822787 | src:quagga | quagga: CVE-2016-4049: Missing size check in bgp_dump_routes_func in bgpd/bgp_dump.c allowing DoS | 2016-09-11 |
| #823100 | ghostscript | ghostscript: includes two files claimed to be under a non-free Unicode license | 2016-09-18 |
| #823620 | src:xen | Multiple security issues | 2016-05-06 |
| #823750 | imagemagick | [imagemagick] Multiple security problems | 2016-09-19 |
| #824226 | java-atk-wrapper | openjdk-8-jre: ATK bridge causes segfault when loading JR | 2016-08-29 |
| #824718 | nethogs | nethogs remains broken in Jessie | 2016-05-25 |
| #825002 | sgml-base | sgml-base: broken super catalog after removing docutils-common | 2016-06-14 |
| #825379 | cairo-dock-weather-plug-in | cairo-dock-weather-plug-in: weather.com changed API | 2016-07-17 |
| #825381 | makejail | makejail fails on updating symbolic links | 2016-05-26 |
| #826213 | w3c-dtd-xhtml | w3c-dtd-xhtml: inconsistencies in copyright file | 2016-06-03 |
| #826216 | w3c-sgml-lib | w3c-sgml-lib: inconsistencies in copyright file | 2016-06-03 |
| #827079 | triggerhappy | triggerhappy: Generated event tables are empty, so nothing works. | 2016-06-13 |
| #827744 | src:bzip2 | bzip2: CVE-2016-3189: heap use after free in bzip2recover | 2016-09-22 |
| #829310 | imapproxy | imapproxy: fails to install under systemd | 2016-08-31 |
| #829691 | ruby-shoulda-matchers | ruby-shoulda-matchers: can not be used to satisfy shoulda dependency | 2016-07-15 |
| #830516 | clex | clex: Cannot read the keyboard input | 2016-07-08 |
| #830607 | src:python-simpy | python-simpy: accesses the internet during build | 2016-08-08 |
| #831360 | lush | /usr/bin/lush must not link libbfd-*-system.so dynamically | 2016-07-19 |
| #831857 | src:libupnp | libupnp: CVE-2016-6255: write files via POST | 2016-08-18 |
| #832283 | src:cakephp | cakephp: XML class SSRF vulnerability | 2016-07-29 |
| #832316 | src:cakephp | cakephp: CVE-2015-8379 | 2016-07-25 |
| #832455 | imagemagick | Fix a off-by-one error leading to segfault | 2016-09-19 |
| #832457 | imagemagick | Fix psd file handling | 2016-09-19 |
| #832461 | imagemagick | Fixed check for the number of pixels that will be allocated. | 2016-09-19 |
| #832464 | imagemagick | SUN file handling | 2016-09-19 |
| #832465 | imagemagick | SUN file ABRT signal | 2016-09-19 |
| #832467 | imagemagick | Fix multiple out of bound problem | 2016-09-19 |
| #832469 | imagemagick | HDR file overflow | 2016-09-19 |
| #832474 | imagemagick | Fix a heap buffer overflow in psd file handling | 2016-09-19 |
| #832475 | imagemagick | Fix a outofbound access for psd file | 2016-09-19 |
| #832478 | imagemagick | Fix meta file outofbound access | 2016-09-19 |
| #832480 | imagemagick | Fix head buffer overflow in psd file | 2016-09-19 |
| #832482 | imagemagick | WPG file security bug | 2016-09-19 |
| #832483 | imagemagick | Fix out of bound for viff file | 2016-09-19 |
| #832504 | imagemagick | Fix an out of bound in xcf file handling | 2016-09-19 |
| #832506 | imagemagick | Fix out of bound in quantum handling | 2016-09-19 |
| #832633 | imagemagick | Fix a pbd file out of bound access | 2016-09-19 |
| #832776 | imagemagick | Fix handling of psd file | 2016-09-19 |
| #832780 | imagemagick | Fix a wpg file out of bound | 2016-09-19 |
| #832783 | imagemagick | Fix an out of bound in generic decoder | 2016-09-19 |
| #832787 | imagemagick | Fix an out of bound in psd file | 2016-09-19 |
| #832789 | imagemagick | Fix SEGV reported in profile handling | 2016-09-19 |
| #832791 | imagemagick | Fix an out of bound access in pdb file handling | 2016-09-19 |
| #832793 | imagemagick | Fix a SIGABRT in pdb file handling | 2016-09-19 |
| #832885 | imagemagick | CVE-2016-4562 | 2016-09-19 |
| #832887 | imagemagick | CVE-2016-4563 The TraceStrokePolygon function in MagickCore/draw.c | 2016-09-19 |
| #832888 | imagemagick | CVE-2016-4564 | 2016-09-19 |
| #832890 | src:imagemagick | CVE-2016-5687 | 2016-09-19 |
| #832942 | imagemagick | DDS file security fix | 2016-09-19 |
| #832944 | imagemagick | Avoid a DOS for DDS file | 2016-09-19 |
| #832959 | src:xmlrpc-epi | xmlrpc-epi: CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c | 2016-08-15 |
| #832968 | src:imagemagick | CVE-2016-5010: tiff file Out-of-bounds read | 2016-09-19 |
| #833003 | src:imagemagick | CVE-2016-5688 WPG file issue | 2016-09-19 |
| #833042 | src:imagemagick | CVE-2016-5689 lack of required NULL pointer checks in the DCM parser | 2016-09-19 |
| #833043 | src:imagemagick | CVE-2016-5690 | 2016-09-19 |
| #833044 | src:imagemagick | CVE-2016-5691 DCM file bug lack of validation of pixel.red, pixel.green, and pixel.blue | 2016-09-19 |
| #833099 | src:imagemagick | CVE-2016-6491 buffer overflow | 2016-09-19 |
| #833101 | src:imagemagick | DOS by not releasing memory | 2016-09-19 |
| #833157 | src:sugar-base-0.88 | sugar-base-0.88: don't release with Stretch | 2016-08-01 |
| #833327 | src:xmldiff | xmldiff: maintainer address bounces | 2016-08-03 |
| #833570 | src:fontconfig | fontconfig: CVE-2016-5384: possible double free due to insufficiently validated cache files | 2016-08-16 |
| #833655 | metar | metar: NOAA changed server weather.noaa.gov to tgftp.nws.noaa.gov (metar.h in source) | 2016-09-26 |
| #833730 | src:imagemagick | Buffer overflow in draw.c | 2016-09-19 |
| #833732 | src:imagemagick | memory leak | 2016-09-19 |
| #833735 | src:imagemagick | Coder path transversal | 2016-08-28 |
| #833743 | src:imagemagick | Segfault in ReadRLEImage | 2016-09-19 |
| #833744 | src:imagemagick | RLE check for pixel offset less than 0 | 2016-09-19 |
| #833812 | src:imagemagick | Prevent possible stack overflow | 2016-09-19 |
| #834183 | src:imagemagick | Double free | 2016-09-19 |
| #834501 | src:imagemagick | Outofbound in exif (jpeg) reader | 2016-09-19 |
| #834504 | src:imagemagick | imagemagick: CVE-2016-6823: Buffer overflow in bmp file reader | 2016-09-26 |
| #834550 | src:interchange | interchange: FTBFS with '.' removed from perl's @INC | 2016-09-05 |
| #834624 | vm-bonus-el | vm-bonus-el: vm-bogofilter.el doesn't byte-compile | 2016-08-17 |
| #834731 | src:kdesrc-build | kdesrc-build: FTBFS with '.' removed from perl's @INC | 2016-09-05 |
| #834893 | src:gnupg | gnupg: CVE-2016-6313: RNG prediction vulnerability | 2016-08-29 |
| #834928 | ifupdown | isc-dhcp-client: ifup fails with "Can't bind to dhcp address: Cannot assign, requested address" | 2016-09-22 |
| #834961 | src:libvitacilina-perl | libvitacilina-perl: FTBFS too much often (configure fails) | 2016-09-23 |
| #835125 | src:jqueryui | jqueryui: Wrong licensing information: Licensed under MIT, *not* GPL-2 | 2016-08-22 |
| #835413 | pygobject | pygobject: wrong enum to hash conversion on 64-bit big endian | 2016-09-03 |
| #835649 | flashplugin-nonfree | [flashplugin-nonfree] OldStable (Wheezy) version of package is critically out of date | 2016-08-29 |
| #836122 | imapproxy | imapproxy: systemd unit file breaks imapproxy | 2016-08-30 |
| #836168 | doxygen | doxygen: Injects unescaped '%' signs into LaTeX source | 2016-08-31 |
| #836171 | src:imagemagick | TIFF divide by zero | 2016-09-24 |
| #836172 | src:imagemagick | Prevent buffer overflow in SIXEL, PDB, MAP, and CALS coders (bug report from Donghai Zhu) | 2016-09-24 |
| #836320 | src:mactelnet | mactelnet: CVE-2016-7115 | 2016-09-25 |
| #836347 | gkrellweather | gkrellweather: weather.noaa.gov has been shut down | 2016-09-12 |
| #836426 | gnome-boxes | GTK+ 3.21 causes application redraw issues and warnings ("is drawn without a current allocation") | 2016-09-26 |
| #836532 | src:jclic | jclic: FTBFS too much often (Internal compiler error) | 2016-09-03 |
| #836706 | src:inspircd | inspircd: CVE-2016-7142: certificate fingerprint spoofing through crafted SASL messages | 2016-09-08 |
| #836776 | src:imagemagick | SGI security bug | 2016-09-24 |
| #837054 | weather-util | /usr/bin/weather: The service url required for functionality has changed | 2016-09-08 |
| #837387 | xul-ext-compactheader | xul-ext-compactheader: uninstallable in jessie and wheezy | 2016-09-23 |
| #837599 | src:autotrace | autotrace: CVE-2016-7392: heap-based buffer overflow in pstoedit_suffix_table_init (output-pstoedit.c) | 2016-09-16 |
| #838228 | src:lakai | src:lakai: maintainer address bounces | 2016-09-18 |
| #838248 | src:unadf | unadf: CVE-2016-1243 and CVE-2016-1244 | 2016-09-24 |
| #838414 | gpick | gpick: colors.txt is non-free | 2016-09-22 |
Generated in 0.853 seconds.
select id, bugs.package, bugs.source, severity, title, last_modified, affects_stable, affects_testing, affects_unstable, affects_experimental from bugs where id in (select id from bugs_rt_affects_oldstable) and not (id in (select id from bugs_merged_with where id > merged_with)) AND (severity >= 'serious') order by id asc