Navigation: Suites / Filters / Types / Fields / Sort / Format / Search / Results

Bugs search

Useful queries

Suites[1]

Filters

off / include / exclude
  • tagged patch
  • tagged pending
  • tagged security
  • tagged wontfix
  • tagged moreinfo
  • tagged upstream
  • tagged unreproducible
  • tagged help
  • tagged d-i
  • forwarded upstream
  • claimed bugs
  • fixed in deferred/delayed
  • packages not in main
  • packages not in wheezy
  • packages not in jessie
  • packages not in stretch
  • packages in base system
  • packages in standard installation
  • orphaned packages
  • merged bugs
  • marked as done
  • outdated binaries in wheezy
  • outdated binaries in jessie
  • outdated binaries in stretch
  • outdated binaries in sid
  • different versions in stretch and sid
  • newer in Ubuntu than in sid
  • RT tag for wheezy: ignore
  • RT tag for wheezy: will-remove
  • RT tag for wheezy: can-defer
  • RT tag for wheezy: is-blocker
  • RT tag for jessie: ignore
  • RT tag for jessie: will-remove
  • RT tag for jessie: can-defer
  • RT tag for jessie: is-blocker
  • RT tag for jessie: no-auto-remove
  • RT tag for stretch: ignore
  • RT tag for stretch: will-remove
  • RT tag for stretch: can-defer
  • RT tag for stretch: is-blocker
  • RT tag for stretch: no-auto-remove
  • RT unblock hint
  • key packages
  • pseudo packages
  • packages marked for autoremoval
  • closed in packages in new
  • newer than days
  • modified in the last days

Bugs or packages selection


  ignore:
  ignore:
  ignore:
 
 

Additional fields

Sort

Format

267 bugs found

bug# tags package title popcon severity modified
#727245 [C]   abook abook: Add an address to Abook with Mutt delete all phone numbers 527 6 grave 2016-12-07
#809733 [U|S|u]   src:activemq activemq: CVE-2015-5254: unsafe deserialization 79 6 grave 2016-12-07
#802759   src:ampache-themes ampache-themes: non-free files (CC-BY-NC-SA-3.0 and IEC61966-2.1) 175 5 serious 2015-10-23
#701674   apf-firewall apf-firewall doesn't work with kernel-version >= 3.0 127 6 grave 2016-12-23
#779468   apt-spy apt-spy: creates an invalid sources list 663 6 grave 2015-03-08
#412185 [+]   atftpd Upgrade overwrites /etc/default/atftpd, inetd.conf 1362 5 serious 2016-12-07
#783545   xul-ext-automatic-save-folder Doesn’t work, abandonned upstream 47 5 serious 2016-12-07
#784446   backup-manager backup-manager: Current incremental backup implementation can cause data loss 578 6 grave 2016-12-07
#839051 [U|S|u|whe]   bind9 bind9: CVE-2016-2848: A packet with malformed options can trigger an assertion failure 187426 6 grave 2016-10-20
#760660   bindgraph bindgraph, don't startup. 113 5 serious 2016-11-01
#806946   bindgraph bindgraph doesn't show any graphic 113 6 grave 2016-02-29
#810153   busybox don't source initramfs.conf in busybox initramfs hook 195441 6 grave 2016-12-07
#827744 [+|S|u]   src:bzip2 bzip2: CVE-2016-3189: heap use after free in bzip2recover 198162 6 grave 2017-01-29
#832316 [U|S|u]   src:cakephp cakephp: CVE-2015-8379 195 5 serious 2016-12-07
#832283 [U|S|u]   src:cakephp cakephp: XML class SSRF vulnerability 195 5 serious 2016-12-07
#792078 [u]   cantor-backend-qalculate cantor-backend-qalculate: GPL3 not documented/incompatible mixing of GPL2/3 code 4631 5 serious 2016-12-07
#803033   src:catdoc catdoc: non-free Unicode files 8467 5 serious 2016-12-07
#856213 [S]   src:cdebootstrap cdebootstrap: SHA1 verification truncates hash from 160 to 128 bits 775 6 grave 2017-03-05
#852031 [S|u]   src:cgiemail cgiemail: multiple vulnerabilities (format string injection, open redirect, HTTP header injection, reflected XSS vulnerability) 17 6 grave 2017-01-25
#788833 [U|+|S|u]   src:chicken chicken: CVE-2015-4556: buffer overrun in CHICKEN Scheme's string-translate* procedure 157 6 grave 2016-12-07
#775346 [U|+|S|u]   chicken chicken: CVE-2014-9651: buffer overrun in CHICKEN Scheme's substring-index 157 6 grave 2016-12-07
#821375 [u]   claws-mail-themes claws-mail-themes: Skypilot-Clawssic is non-free 472 5 serious 2016-12-07
#642411 [R]   cltl endless loop installing cltl 43 5 serious 2014-04-26
#792852   src:comgt gcom: copyright file missing after upgrade (policy 12.5) 169 5 serious 2016-12-13
#837387   xul-ext-compactheader xul-ext-compactheader: uninstallable in jessie and wheezy 87 6 grave 2017-01-21
#743955   coreutils coreutils: corrupted files on heavily fragmented ext3 and ext4 partitions 198163 6 grave 2016-11-02
#780323   coreutils /bin/cp: cp: *deletes* files' contents with --attributes-only option 198163 7 critical 2016-11-02
#758558 [u]   couchdb Includes file with unclear license 153 5 serious 2014-08-19
#367347 [H]   cowsay Missing attribution for cow files 3104 5 serious 2016-12-29
#592917 [H]   cowsay cowsay: copyright issues 3104 5 serious 2016-12-29
#850979   crafty crafty: Does not run on Pentium 4 (Illegal instruction) 410 6 grave 2017-01-29
#731178   dante-server dante-server: requires libc6-dev to be installed 108 6 grave 2016-12-07
#709198 [jes-i|str-i]   debconf debconf: should not use python in maintainer scripts 198160 6 grave 2017-03-19
#749991 [d-i]   debian-installer debian-installer: Wrong kernel in debian-installer package 254 6 grave 2017-03-26
#808216 [+]   debmirror debmirror: Debmirror seeems to have problems with new SHA256 in Packages.diff/Index files 638 6 grave 2017-03-16
#815149 [+]   debmirror debmirror: High cpu usage. 638 6 grave 2016-12-07
#842428 [U]   debsecan debsecan: error 403 forbidden since 10/27/2016 1024 6 grave 2017-02-06
#775149 [whe]   dictionaries-common dictionaries-common: fails to install: update-default-wordlist: Question empty but elements installed for class "wordlist" 180949 5 serious 2015-04-30
#751367 [whe]   dictionaries-common unupgradeable: "shared/packages-wordlist doesn't exist" 180949 5 serious 2017-03-20
#755600   src:djagios djagios: Please ensure it works with Django 1.7 14 6 grave 2016-12-07
#755586   src:django-app-plugins django-app-plugins: Please ensure it works with Django 1.7 61 5 serious 2016-01-03
#755637   src:django-genshi django-genshi: Please ensure it works with Django 1.7 28 5 serious 2016-01-03
#755605   src:django-threaded-multihost django-threaded-multihost: Please ensure it works with Django 1.7 23 5 serious 2016-01-03
#684499 [C|U|+]   dovecot-core dovecot-core: Expunged messages continue to reappear 8626 5 serious 2016-12-07
#857067   src:dsdp dsdp FTBFS on s390x: Build killed with signal TERM after 150 minutes of inactivity 1275 5 serious 2017-03-07
#715646   dsniff [Mayhem] Bug report on dsniff: arpspoof crashes with exit status 139 1673 6 grave 2017-03-13
#716457   dsniff [Mayhem] Bug report on dsniff: webmitm crashes with exit status 139 1673 6 grave 2017-03-13
#716355   dsniff [Mayhem] Bug report on dsniff: sshmitm crashes with exit status 139 1673 6 grave 2017-03-13
#716458   dsniff [Mayhem] Bug report on dsniff: webspy crashes with exit status 139 1673 6 grave 2017-03-13
#841056   src:dvi2dvi dvi2dvi: license requires package rename 141 5 serious 2017-01-14
#850885 [+]   dwww apache2: Using dwww, fails with internal server error when trying to access /usr/share/doc 825 6 grave 2017-03-18
#786338   ears ears: broken since python-musicbrainz has been removed 37 6 grave 2016-12-07
#766250 [|whe]   eject eject: [kfreebsd] fails to open cdrom tray 179470 6 grave 2016-06-07
#740463   libelmersolver-6.1 libelmersolver-6.1.so links with both GPL-licensed and GPL-incompatible libraries 68 5 serious 2014-03-02
#770369   eterm Eterm: does not run shell 616 5 serious 2017-01-29
#740911 [U|+|whe]   evolution-data-server WebDAV: Evolution sends invalid REV field, DAViCal expects timestamp 66795 5 serious 2015-04-30
#807074   fbreader fbreader: includes files with unclear DFSG-freeness and/or copyright status 3635 5 serious 2016-12-07
#786694 [+]   fftw fftw: FTBFS with TZ=GMT-14 2069 5 serious 2016-12-07
#858641 [+|S|u]   firebird2.5-classic-common, firebird2.5-super CVE-2017-6369: authenticated remote execution in firebird 2.5 before version 2.5.7 67162 6 grave 2017-03-24
#854880   firmware-atheros firmware-atheros ships binary ath9k_htc firmwares containing GPL code 32708 5 serious 2017-02-25
#835649 [S]   flashplugin-nonfree [flashplugin-nonfree] OldStable (Wheezy) version of package is critically out of date 30043 7 critical 2016-08-29
#787350   src:fontmatrix [RC][cc-by-nc-sa] Please clarify license of a few svg files 331 5 serious 2015-05-31
#744698   src:fontmatrix [fontmatrix] [DFSG] missing source 331 5 serious 2014-11-08
#798805 [+|P]   fonts-cantarell fonts-cantarell: Switch to autohinting to work around blurry rendering with CFF 58043 6 grave 2017-01-26
#787594   freemat Some sources are not included in your package 529 5 serious 2016-12-07
#734365   freeplayer freeplayer: unknown option or missing mandatory argument (while calling vlc) 134 6 grave 2017-03-10
#819992   fsprotect [fsprotect] Requires aufs kernel module which is not part of Debian 18 6 grave 2017-01-09
#851111   src:gargoyle-free gargoyle-free: violates font license 302 5 serious 2017-02-12
#629334   src:gbackground gbackground: uses Switch.pm, removed in perl 5.14 81 5 serious 2015-06-19
#851112   src:gcstar gcstar: violates font license 366 5 serious 2017-01-23
#808472   gnu-efi gnu-efi copyright file is wrong, includes GPL-licensed code on arm 613 5 serious 2016-12-07
#504099   gnu-fdisk gnu-fdisk: fails to display GPT partition properly 667 7 critical 2013-06-29
#809813   gnuplot-doc gnuplot contain "lena" images 33748 5 serious 2016-12-07
#629337   src:gosa-perl gosa-perl: uses Switch.pm, removed in perl 5.14 12 5 serious 2017-01-10
#838414   gpick gpick: colors.txt is non-free 752 5 serious 2016-12-07
#847055 [S|u]   src:graphicsmagick graphicsmagick: CVE-2016-9830 13727 6 grave 2016-12-07
#847072 [S|u]   src:graphicsmagick graphicsmagick: CVE-2016-9830 13727 6 grave 2016-12-07
#752381   src:grub2 initramfs-tools: does not activate logical volume before trying to mount root filesystem on LVM 193674 5 serious 2017-02-16
#772795   grub-pc grub installation fails on a fakeraid/sataraid/dmraid system 193674 7 critical 2017-02-17
#849932   gtk-sharp2-gapi gtk-sharp2-gapi: gapi2-codegen generates fields with void type 29506 5 serious 2017-03-17
#774891 [C|whe]   gtkpod gtkpod: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE 916 5 serious 2015-01-15
#753922 [whe]   src:herculesstudio herculesstudio: Broken patch disallows dpkg-source unpack 50 5 serious 2014-07-06
#799441   hijra-applet GNOME shell extension not compatible with recent GNOME versions 16 5 serious 2015-10-20
#715085   libibdm-dev libibdm-dev: missing Depends: libibdm1 (= ${binary:Version}) 303 5 serious 2017-03-12
#849832   icedove firefox: contains JSHint work under non-free licence 29218 5 serious 2017-01-27
#834928 [ipv6]   ifupdown isc-dhcp-client: ifup fails with "Can't bind to dhcp address: Cannot assign, requested address" 197332 7 critical 2016-12-07
#856879 [+|S]   src:imagemagick CVE-2017-6500: sun file heap-based buffer over-read 107001 5 serious 2017-03-24
#856880 [+|S]   src:imagemagick CVE-2017-6499: Magick++ memory leak 107001 5 serious 2017-03-24
#851383 [U|+|S]   imagemagick imagemagick: CVE-2017-5506: magick/profile.c: double-free memory corruption 107001 5 serious 2017-03-09
#845241 [+|S]   src:imagemagick Prevent fault in MSL interpreter 107001 6 grave 2017-03-14
#851382 [U|+|S]   imagemagick imagemagick: CVE-2017-5507: coders/mpc.c: memory leak in mpc file handling 107001 5 serious 2017-03-09
#851377 [U|+|S]   imagemagick imagemagick: CVE-2017-5509: coders/psd.c: out-of-bounds write flaw in psd file handling 107001 5 serious 2017-01-20
#856878 [+|S]   src:imagemagick CVE-2017-6498: TGA files could trigger assertion failures 107001 5 serious 2017-03-24
#851381 [U|+|S]   imagemagick imagemagick: CVE-2017-5508: PushQuantumPixel heap buffer-overflow 107001 5 serious 2017-03-09
#857426 [S]   src:imagemagick imagemagick: CVE-2016-10252: Memory leak in IsOptionMember function 107001 5 serious 2017-03-24
#851374 [U|+|S]   imagemagick imagemagick: CVE-2017-5511: coders/psd.c: memory corruption heap overflow 107001 5 serious 2017-03-09
#851376 [U|+|S]   imagemagick imagemagick: CVE-2017-5510: coders/psd.c: out-of-bounds write flaw in psd file handling 107001 5 serious 2017-03-09
#851380 [U|+|S]   imagemagick imagemagick: CVE-2016-10146: memory leak in caption and label handling 107001 5 serious 2017-03-09
#706877 [whe]   insserv insserv: breaks dist-upgrade by installing before packages fix their init scripts 187129 7 critical 2014-12-28
#847577 [+]   integrit Embeds dietlibc (GPL) but does not have a Built-Using field 117 5 serious 2017-01-18
#857699 [U|S|u]   ioquake3 ioquake3: CVE-2017-6903: privilege escalation by auto-downloaded files 1560 6 grave 2017-03-24
#739251 [S]   iptables iptables: Upgrade breaks existing rules (and is not documented) 197014 6 grave 2016-01-28
#798886 [U|S|u]   src:ipython ipython: CVE-2015-6938: XSS vulnerability 9220 6 grave 2016-12-07
#841111 [+|S|u]   src:jasper jasper: CVE-2016-8691 CVE-2016-8692 155596 6 grave 2016-12-07
#841112 [S|u]   src:jasper jasper: CVE-2016-8690 155596 6 grave 2016-12-07
#841110 [U|S|u]   src:jasper jasper: CVE-2016-8693 155596 6 grave 2016-12-07
#824226   java-atk-wrapper openjdk-8-jre: ATK bridge causes segfault when loading JR 103183 6 grave 2016-12-07
#799313   src:jbofihe jbofihe: FTBFS under some locales (eg. fr_CH.UTF-8) 23 5 serious 2015-09-17
#843926   libjemalloc1 jemalloc uses a hard coded page size detected during build 14909 5 serious 2017-01-27
#788725   src:jffnms [src:jffnms] Some sources are not included in your package 14 5 serious 2016-12-07
#858213 [S]   jhead CVE-2016-3822 2615 6 grave 2017-03-20
#762950   libsolid4 digikam: Removes all images from database when unaccessible mount is found 39799 6 grave 2016-12-07
#834731 [+]   src:kdesrc-build kdesrc-build: FTBFS with '.' removed from perl's @INC 80 5 serious 2016-12-07
#858217   src:keystone keystone: Missing dependency to net-tools 28 5 serious 2017-03-21
#854008   kstars-data-extra-tycho2 kstars-data-extra-tycho2: deepstars.dat installed in wrong directory 101 6 grave 2017-02-24
#479096   libacpi libacpi0: getting battery status broken by missing support for new sysfs names 559 6 grave 2016-12-07
#788008   libcgi-application-plugin-anytemplate-perl libcgi-application-plugin-anytemplate-perl: missing dependency on libclone-perl 11 5 serious 2016-12-07
#788350 [C]   libhttp-proxy-perl FTBFS - proxy tests 122 5 serious 2016-12-07
#842891 [C|U|S|u]   src:libimage-info-perl libimage-info-perl: CVE-2016-9181: XXE in SVG files 1203 6 grave 2016-12-07
#715066 [+]   libindicate-gtk3-dev libindicate-gtk3-dev: missing Depends: libindicate-gtk3-3 (= ${binary:Version}) 5680 5 serious 2017-03-17
#789197 [S|u]   src:libmimedir libmimedir: CVE-2015-3205 89 6 grave 2016-12-07
#851060 [+]   libnids1.21 libnids1.21: can't assemble TCP streams on armhf 1693 6 grave 2017-02-26
#729986   libnss-mysql-bg libnss-mysql-bg: Patch 04_shadow.diff Introduces Lock Acquisition Hang 142 5 serious 2015-02-23
#853232 [+|P|S]   libphp-phpmailer libphp-phpmailer: CVE-2017-5223 2770 6 grave 2017-02-25
#856592 [S]   src:libpodofo Multiple security issues 8935 6 grave 2017-03-19
#707305 [whe]   libquicktime2 runtime error on load, "can execute code" 12061 5 serious 2013-06-14
#814445 [u]   src:libsdl1.2 Non-Free file: src/stdlib/SDL_qsort.c 119720 5 serious 2016-12-07
#128745 [+]   libstroke0-dev libstroke0-dev: aclocal is confused by libstroke .m4 files 3617 7 critical 2016-12-07
#302907 [+]   libstroke0-dev Need more quoting of autoconf macro files. 3617 7 critical 2016-12-07
#763824 [+]   libtar0 writes archives with checksums itself deems wrong 10907 5 serious 2014-10-05
#767572   libthunar-vfs-1-2-dbg libthunar-vfs-1-2-dbg: fails to upgrade from squeeze - trying to overwrite /usr/lib/debug/usr/lib/libthunar-vfs-1.so.2.3.1 0 5 serious 2014-11-01
#797046 [+|S]   src:libtorrent-rasterbar CVE-2015-5685: remote execution vulnerability in lazy_bdecode() 9865 6 grave 2016-12-07
#496448 [U|S|u]   libui-dialog-perl libui-dialog-perl: Dialog backend allows execution of arbitrary shell commands (CVE-2008-7315) 375 6 grave 2016-10-10
#831857 [jes|+|S|sid|str|u|whe]   src:libupnp libupnp: CVE-2016-6255: write files via POST 68469 6 grave 2016-12-17
#793465 [+|S|u]   src:libuser DoS and privilege escalation by local users (CVE-2015-3245 and CVE-2015-3246) 11247 6 grave 2016-12-07
#834961 [C]   src:libvitacilina-perl libvitacilina-perl: FTBFS too much often (configure fails) 2 5 serious 2016-12-07
#739864   libvorbisidec-dev libvorbisidec-dev needs libogg-dev 12074 5 serious 2017-01-23
#857450 [M|R|u]   libxcb1 libxcb1: many segfaults -gnome and such- related to libxcb 195721 6 grave 2017-03-11
#783610 [+|u]   libxml-libxml-perl Warning: XML::LibXML compiled against libxml2 20902, but runtime libxml2 is older 20901 123400 5 serious 2017-03-11
#517472 [+|u]   libxml-libxml-perl libxml-libxml-perl: Missing versioned dependency on libxml2 - Causes runtime warnings 123400 5 serious 2017-01-24
#796354 [+|u]   libxml-libxml-perl libimage-info-perl: FTBFS: Failed 1/13 test programs. 1/134 subtests failed. 123400 5 serious 2016-12-07
#796385 [+|u]   libxml-libxml-perl request-tracker4: FTBFS: 256 Tests: 39 Failed: 1 123400 5 serious 2016-12-07
#753235 [+]   src:lldpad lldpad: FTBFS: dpkg-source: error: expected ^--- in line 2 of diff `lldpad-0.9.46/debian/patches/fix-typo-in-lldptool-ets-8.patch' 30 5 serious 2016-09-10
#849126 [u]   logtools FTBFS: several errors when building 42 5 serious 2016-12-25
#831360   lush /usr/bin/lush must not link libbfd-*-system.so dynamically 283 6 grave 2016-07-19
#752610 [jes-i|S]   lynx-cur lynx: Can connect to CVE-2014-0092 test site 20994 5 serious 2016-12-07
#836320 [S|u]   src:mactelnet mactelnet: CVE-2016-7115 94 6 grave 2016-12-31
#825381 [+]   makejail makejail fails on updating symbolic links 193 7 critical 2016-05-26
#749557   martian-modem-source fixes to build martian-modem-source with 3.x kernels - at least to 3.13 11 5 serious 2016-11-21
#802776   src:matplotlib matplotlib: ttf-bitstream-vera missing in "Depends:" of python-matplotlib-data 16526 6 grave 2016-12-07
#854279 [u]   src:matplotlib matplotlib: contains fonts without DFSG-compatible licensing 16526 5 serious 2017-02-13
#725417 [+|u]   mbr mbr: install-mbr wipes the disk-id portion of the MBR, rendering Windows 7 unbootable 2340 6 grave 2016-12-23
#792126   mbr mbr:i386 self-tests depend on VM86 2340 5 serious 2016-12-07
#845258 [U|S|u]   src:mcabber mcabber: CVE-2016-9928: remote attacker can modify the roster and intercept messages via a crafted roster-push IQ stanza 401 6 grave 2016-12-23
#850968 [U|S|u]   src:mcollective CVE-2016-2788 470 6 grave 2017-02-07
#841224 [S]   mediatomb mediatomb: libupnp vulnerabilities CVE-2012-5958, CVE-2012-5959, CVE-2012-5960, CVE-2016-6255, CVE-2016-8863 723 6 grave 2016-12-09
#833655 [+]   metar metar: NOAA changed server weather.noaa.gov to tgftp.nws.noaa.gov (metar.h in source) 135 6 grave 2016-12-07
#851114   src:minetest minetest: violates font license 1501 5 serious 2017-01-13
#635711 [H|+]   monkeysphere error on install 399 5 serious 2016-12-14
#778833 [H|+]   monkeysphere monkeysphere: upgrade fails: Failed running transition script /usr/share/monkeysphere/transitions/0.23 399 5 serious 2017-01-26
#842208   src:mozart-stdlib mozart-stdlib: FTBFS: dpkg-checkbuilddeps: error: Unmet build dependencies: mozart (>= 1.4.0) 5 5 serious 2017-02-19
#805370 [u]   mpage mpage: non-free license 1052 5 serious 2016-09-18
#838960 [U|S]   mpg123 mpg123: CVE-2016-1000247: denial of service with crafted id3v2 tags 89407 6 grave 2016-12-07
#858567 [l10n|+]   mssh mssh: local files installed to /usr/@DATADIRNAME@/locale 132 5 serious 2017-03-24
#855705 [+|S|u]   munin munin: CVE-2017-6188: munin-cgi-graph local file write vulnerability 12330 6 grave 2017-03-20
#800913   nama nama: ChainSetup fails rendering all sound operations useless 61 6 grave 2016-12-07
#770402   nautilus-dropbox nautilus-dropbox: hangs during installation with 100% cpu usage 2115 5 serious 2015-09-14
#857199 [P]   src:navit navit: GPL linked with OpenSSL without exception 377 5 serious 2017-03-20
#740998 [ipv6]   rdnssd NetworkManager and rdnssd do not play well together 5691 5 serious 2017-02-16
#811273 [U|+]   nethogs nethogs: creating socket failed while establishing local IP 3169 6 grave 2016-12-07
#824718 [+]   nethogs nethogs remains broken in Jessie 3169 6 grave 2016-05-25
#808433 [U|+]   nethogs nethogs doesn't start, saying "creating socket failed" 3169 6 grave 2016-12-07
#793895 [whe]   src:netperf netperf: FTBFS with -Werror=format-security 483 5 serious 2016-12-03
#796114 [S]   src:netty CVE-2015-2156 2468 6 grave 2017-02-05
#808463 [+]   ntfs-3g ntfs-3g: non-free code in boot.c 112522 5 serious 2017-02-26
#855277 [S]   src:nvidia-graphics-drivers nvidia-graphics-drivers: CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0321, CVE-2017-0318 9003 5 serious 2017-02-23
#801582   nvram-wakeup grub-pc: default entry becomes Halt once (for setting alarm) => no boot 249 7 critical 2017-01-25
#796033   src:ocamlodbc ocamlodbc: FTBFS under almost any locale (eg. en_GB.UTF-8) 72 5 serious 2016-12-07
#773059   ogre-doc ogre-doc: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE 0 5 serious 2014-12-13
#762835   openafs-fileserver error exit on dafileserver (segfault) 564 5 serious 2016-04-19
#773808   openclipart2 Openclipart2 included non-free images. 405 5 serious 2014-12-23
#787355   src:openclipart2 [RC][cc-by-nc-sa] Please clarify license of a few svg files 405 5 serious 2015-05-31
#665199   slapd slapd: fails to install, remove, distupgrade, and install again 195547 5 serious 2017-03-12
#778747 [jes-i|S]   openssl openssl: RFC 7465 says RC4 is broken, never to be used 196004 5 serious 2016-12-07
#769798   openswan-modules-dkms openswan-modules-dkms: module FTBFS with linux-headers-3.2.0-4-amd64 3.2.63-2+deb7u1 0 5 serious 2015-01-25
#810121 [+]   os-prober linux: KVM guests randomly get I/O errors on VirtIO based devices 185114 7 critical 2017-01-20
#794849 [+]   os-prober linux: custom linux-image packages fail to install 185114 7 critical 2017-03-25
#806273 [+]   os-prober os-prober: remove or disable-per default the non grub-mount based probing 185114 7 critical 2017-01-20
#648208 [+]   os-prober os-prober: blockdev --setro affects running kvm instances 185114 7 critical 2017-01-20
#788062 [+]   os-prober os-prober corrupts LVs/partitions while being mounted inside a VM 185114 7 critical 2017-02-06
#814589   src:otrs2 otrs2: source-less files; undocumented copyrights/licenses; abuse of lintian-overrides; systematic DFSG violations 99 5 serious 2016-12-07
#451535   partman-crypto debian-installer: allow to 'reuse' encrypted volumes 0 6 grave 2016-09-27
#498199   partman-crypto d-i cannot use existing encrypted partition 0 6 grave 2016-09-27
#529343   partman-crypto debian-installer: physical volume for encryption: doesnt care if already encrypted and kills data 0 6 grave 2016-09-27
#641264   partman-crypto debian-installer: cannot install to already encrypted partitions 0 6 grave 2016-09-27
#566497   partman-crypto install: Please support reusing existing crypt-lvm partitions 0 6 grave 2016-09-27
#855324 [C]   pdfsam pdfsam fails to start 1590 6 grave 2017-03-05
#815935 [whe]   src:phoronix-test-suite phoronix-test-suite: FTBFS with nonexistent $HOME 324 5 serious 2016-12-02
#851770 [+|S|u]   src:php-gettext php-gettext: CVE-2015-8980 12655 6 grave 2017-01-31
#851771 [S|str-i|u]   src:php-gettext php-gettext: CVE-2016-6175 12655 6 grave 2017-02-04
#853737   phyml phyml: Beagle library causes trouble on machines without proper graphics hardware 433 6 grave 2017-01-31
#853738   phyml phyml: MPI version uses different number of bootstrap steps breaking applications like seaview 433 6 grave 2017-02-01
#853211   phyml phyml: Fails to use mpi 433 6 grave 2017-01-30
#806930   pianobar pianobar needs update for new server SSL certificate 139 6 grave 2015-12-05
#843861 [S|u]   potrace potrace: CVE-2016-8685: invalid memory access in findnext 32459 5 serious 2017-01-08
#715569 [whe]   proftpd-mod-vroot Official mod_vroot lib broken, lib built from source works 2719 6 grave 2016-12-24
#800711 [whe]   proftpd-mod-vroot proftpd-basic: Chroot with and without mod_vroot fails silently dropping, clients to / 2719 6 grave 2016-12-24
#835413 [+]   pygobject pygobject: wrong enum to hash conversion on 64-bit big endian 110211 5 serious 2016-12-07
#755618   src:python-django-djapian python-django-djapian: Please ensure it works with Django 1.7 25 5 serious 2016-12-07
#755634   src:python-django-websocket python-django-websocket: Please ensure it works with Django 1.7 29 5 serious 2016-01-03
#794461   python-mock RequirementParseError: Expected version spec in funcsigs; python_version<"3.3" at ; python_version<"3.3" 16160 6 grave 2017-03-13
#830607   src:python-simpy python-simpy: accesses the internet during build 223 5 serious 2016-12-07
#772794 [S|u]   qpid-cpp qpid-cpp: Multiple security issues 132 6 grave 2015-02-02
#750141 [M|S]   libqt4-xml libqt4-xml: vulnerable to billion laughs attack (CVE-2013-4549) 102950 5 serious 2014-06-10
#858316 [M]   rdiff-backup-fs rdiff-backup-fs: segmentation fault 165 6 grave 2017-03-21
#743828 [S|whe]   redmine redmine: security: CVE-2014-1985: open redirector issue 541 5 serious 2017-03-12
#850253   retty retty doesn't work anymore 57 6 grave 2017-01-07
#666414   src:rggobi FTBFS on s390x: Segmentation fault during installation 234 5 serious 2014-07-13
#796235   rinetd rinetd fills up the logs until disk is full up if it cannot bind 321 7 critical 2017-01-05
#853249 [U|+|S|u]   ruby-archive-tar-minitar ruby-archive-tar-minitar: CVE-2016-10173: directory traversal vulnerability 274 6 grave 2017-02-12
#829691   ruby-shoulda-matchers ruby-shoulda-matchers: can not be used to satisfy shoulda dependency 27 5 serious 2016-12-07
#854804 [S|u]   sane-utils saned: CVE-2017-6318: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server 120216 6 grave 2017-03-09
#797639   scim-unikey scim-unikey: Not loading on AMD64 6 5 serious 2016-11-24
#853835   seaview seaview: Wrong results in connection with multi-processing phyml 265 6 grave 2017-02-01
#841257 [+|S]   sendmail sendmail: Privilege escalation from group smmsp to (user) root 2760 6 grave 2017-02-12
#825002   sgml-base sgml-base: broken super catalog after removing docutils-common 187338 5 serious 2016-12-07
#849777 [P|S|u]   src:shutter shutter: CVE-2016-10081: Insecure use of perl exec() 4066 6 grave 2017-03-02
#852623   sitesummary sitesummary-client fails to submit data 138 5 serious 2017-03-24
#854739 [+|S]   src:sleekxmpp CVE-2017-5591 119 6 grave 2017-03-24
#758623 [+]   slingshot does not start: unable to read font filename 163 6 grave 2016-12-27
#706909   smartmontools smartmontools: updated drivedb.h should go to /var 38327 5 serious 2016-12-07
#779803 [F|S]   smuxi smuxi performs autoconnect on first startup 258 6 grave 2016-12-07
#780429 [jes-i]   snmp-mibs-downloader snmp-mibs-downloader: postinst uses /usr/share/doc content (Policy 12.3): /usr/share/doc/mibrfcs/* 4468 5 serious 2016-12-07
#857299   libsnmpkit2c2a libsnmpkit2c2a:ppc64el is an empty package 330 6 grave 2017-03-09
#857208   src:socklog socklog: building with -A doesn't put the changelog in usr/share/doc/socklog-run/changelog.Debian.gz 80 5 serious 2017-03-08
#775183 [+]   spamass-milter spamass-milter adds bad Received: header, creating false positive 382 5 serious 2016-12-07
#781072 [+]   spamass-milter auth_in_received breaks twice the Received header 382 5 serious 2016-12-07
#858756   src:sqlite3 sqlite3: debian/* files are licensed under GPLv2+ 197204 5 serious 2017-03-26
#786442   squirrelmail some lines don't appear in some messages 1785 6 grave 2017-01-02
#787359   squirrelmail-spam-buttons [RC][cc-by-nc-sa] Please clarify license of a few files (false positive ?) 139 5 serious 2016-12-10
#750943 [+|u|whe]   stunnel4 stunnel4: init script missing lsb-required status target 4071 5 serious 2014-10-16
#842339 [U|+|S|u]   tar tar: CVE-2016-6321: Bypassing the extract path name 198164 6 grave 2016-12-07
#759481 [+]   tinyca tinyca: No support for SHA2 as a signature algorithm. SHA1 gets deprecated in 2016. 1226 5 serious 2017-03-02
#709085   dvifb dvifb suffers total font failure 34 6 grave 2013-05-20
#856117 [U|S|u]   src:tnef tnef: CVE-2017-6307 CVE-2017-6308 CVE-2017-6309 CVE-2017-6310 2213 6 grave 2017-03-13
#813880   src:tokyocabinet tokyocabinet: testsuite failures on some archs 152580 5 serious 2017-01-05
#545827   toshset toshset does not work on 2.6.29 and later kernels 370 6 grave 2017-01-10
#827079   triggerhappy triggerhappy: Generated event tables are empty, so nothing works. 120 6 grave 2016-12-07
#775689 [d-i]   src:unetbootin Do NOT use unetbootin for Debian CD images 4533 5 serious 2017-01-31
#840573 [u]   src:unicon unicon: DFSG-incompatible license 1577 5 serious 2016-12-07
#829310 [+]   imapproxy imapproxy: fails to install under systemd 173 5 serious 2016-12-07
#774149 [H|+]   usbmount usbmount: Can't mount ntfs drive (Transport endpoint is not connected) 1441 6 grave 2017-01-06
#753927 [whe]   src:usbredir usbredir: Broken patch disallows dpkg-source unpack 61305 5 serious 2017-01-17
#826213   w3c-dtd-xhtml w3c-dtd-xhtml: inconsistencies in copyright file 1538 5 serious 2016-06-03
#826216   w3c-sgml-lib w3c-sgml-lib: inconsistencies in copyright file 144 5 serious 2017-02-19
#774290   worldwind worldwind: Immediate crash (HeadlessException) with 'Java(TM) SE Runtime Environment (build 1.7.0_45-b18' 53 6 grave 2014-12-31
#781595 [P|S]   src:xdeb xdeb: disables apt's signature checks 24 6 grave 2015-12-30
#783346 [+]   xen-utils-4.1 patch for booting Jessie domU with wheezy dom0 0 5 serious 2016-10-08
#787361   xhtmlrenderer [RC][cc-by-nc-sa] Please clarify license of a few svg files 18 5 serious 2016-12-07
#832959 [F|+|S|u]   src:xmlrpc-epi xmlrpc-epi: CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c 477 6 grave 2016-12-07
#686150 [whe]   xserver-xorg-core xorg server 1.12.3: xf86UnloadSubModule() hangs 111747 5 serious 2016-10-16
#811091   src:xtrkcad xtrkcad: missing and outdated licenses. 94 5 serious 2016-12-07
#511645 [U|+|u]   xtrs xtrs: hangs on startup due to use of SIGIO 23 6 grave 2017-03-23
#735260 [d-i]   yaboot-installer installation-reports: Jessie Netinst for PowerPC-64 creates will not boot after installation -- but works for PowerPC-32 0 6 grave 2016-04-12
#771040   yaboot-installer installation-reports: Messes up Mac OS 9 driver partitions 0 6 grave 2016-04-12
#796495 [S]   yubiserver yubiserver: multiple vulnerabilities, affecting old/stable? 19 6 grave 2016-01-03
#788319   src:yui3 [yui3] Some sources are not included in your package 46 5 serious 2015-06-10

Generated in 0.880 seconds.

select id, bugs.package, bugs.source, severity, title, last_modified, affects_stable, affects_testing, affects_unstable, affects_experimental, coalesce(popcon_src.insts, 0) as popcon
from bugs left join popcon_src on (bugs.source = popcon_src.source) 
where id in (select id from bugs_rt_affects_oldstable) 
AND (severity >= 'serious')
order by source asc