Navigation: Suites / Filters / Types / Fields / Sort / Format / Search / Results

Bugs search

Useful queries

Suites[1]

Filters

off / include / exclude
  • tagged patch
  • tagged pending
  • tagged security
  • tagged wontfix
  • tagged moreinfo
  • tagged upstream
  • tagged unreproducible
  • tagged help
  • tagged d-i
  • forwarded upstream
  • claimed bugs
  • fixed in deferred/delayed
  • packages not in main
  • packages not in wheezy
  • packages not in jessie
  • packages not in stretch
  • packages in base system
  • packages in standard installation
  • orphaned packages
  • merged bugs
  • marked as done
  • outdated binaries in wheezy
  • outdated binaries in jessie
  • outdated binaries in stretch
  • outdated binaries in sid
  • different versions in stretch and sid
  • newer in Ubuntu than in sid
  • RT tag for wheezy: ignore
  • RT tag for wheezy: will-remove
  • RT tag for wheezy: can-defer
  • RT tag for wheezy: is-blocker
  • RT tag for jessie: ignore
  • RT tag for jessie: will-remove
  • RT tag for jessie: can-defer
  • RT tag for jessie: is-blocker
  • RT tag for jessie: no-auto-remove
  • RT tag for stretch: ignore
  • RT tag for stretch: will-remove
  • RT tag for stretch: can-defer
  • RT tag for stretch: is-blocker
  • RT tag for stretch: no-auto-remove
  • RT unblock hint
  • key packages
  • pseudo packages
  • packages marked for autoremoval
  • closed in packages in new
  • newer than days
  • modified in the last days

Bugs or packages selection


  ignore:
  ignore:
  ignore:
 
 

Additional fields

Sort

Format

255 bugs found

bug# tags package title popcon severity modified
#727245 [C]   abook abook: Add an address to Abook with Mutt delete all phone numbers 536 6 grave 2016-12-07
#809733 [U|S|u]   src:activemq activemq: CVE-2015-5254: unsafe deserialization 80 6 grave 2016-12-07
#802759   src:ampache-themes ampache-themes: non-free files (CC-BY-NC-SA-3.0 and IEC61966-2.1) 174 5 serious 2015-10-23
#701674   apf-firewall apf-firewall doesn't work with kernel-version >= 3.0 128 6 grave 2016-12-23
#779468   apt-spy apt-spy: creates an invalid sources list 675 6 grave 2015-03-08
#412185 [+]   atftpd Upgrade overwrites /etc/default/atftpd, inetd.conf 1373 5 serious 2016-12-07
#783545   xul-ext-automatic-save-folder Doesn’t work, abandonned upstream 49 5 serious 2016-12-07
#784446   backup-manager backup-manager: Current incremental backup implementation can cause data loss 583 6 grave 2016-12-07
#839051 [U|S|u|whe]   bind9 bind9: CVE-2016-2848: A packet with malformed options can trigger an assertion failure 187095 6 grave 2016-10-20
#760660   bindgraph bindgraph, don't startup. 113 5 serious 2016-11-01
#806946   bindgraph bindgraph doesn't show any graphic 113 6 grave 2016-02-29
#810153   busybox don't source initramfs.conf in busybox initramfs hook 194962 6 grave 2016-12-07
#827744 [+|S|u]   src:bzip2 bzip2: CVE-2016-3189: heap use after free in bzip2recover 197720 6 grave 2017-01-29
#832316 [U|S|u]   src:cakephp cakephp: CVE-2015-8379 200 5 serious 2016-12-07
#832283 [U|S|u]   src:cakephp cakephp: XML class SSRF vulnerability 200 5 serious 2016-12-07
#792078 [u]   cantor-backend-qalculate cantor-backend-qalculate: GPL3 not documented/incompatible mixing of GPL2/3 code 4675 5 serious 2016-12-07
#803033   src:catdoc catdoc: non-free Unicode files 8224 5 serious 2016-12-07
#852031 [S|u]   src:cgiemail cgiemail: multiple vulnerabilities (format string injection, open redirect, HTTP header injection, reflected XSS vulnerability) 18 6 grave 2017-01-25
#775346 [U|+|S|u]   chicken chicken: CVE-2014-9651: buffer overrun in CHICKEN Scheme's substring-index 154 6 grave 2016-12-07
#788833 [U|+|S|u]   src:chicken chicken: CVE-2015-4556: buffer overrun in CHICKEN Scheme's string-translate* procedure 154 6 grave 2016-12-07
#821375 [u]   claws-mail-themes claws-mail-themes: Skypilot-Clawssic is non-free 479 5 serious 2016-12-07
#642411 [R]   cltl endless loop installing cltl 43 5 serious 2014-04-26
#792852   src:comgt gcom: copyright file missing after upgrade (policy 12.5) 171 5 serious 2016-12-13
#837387   xul-ext-compactheader xul-ext-compactheader: uninstallable in jessie and wheezy 88 6 grave 2017-01-21
#743955   coreutils coreutils: corrupted files on heavily fragmented ext3 and ext4 partitions 197724 6 grave 2016-11-02
#780323   coreutils /bin/cp: cp: *deletes* files' contents with --attributes-only option 197724 7 critical 2016-11-02
#758558 [u]   couchdb Includes file with unclear license 167 5 serious 2014-08-19
#592917 [H]   cowsay cowsay: copyright issues 3078 5 serious 2016-12-29
#367347 [H]   cowsay Missing attribution for cow files 3078 5 serious 2016-12-29
#850979   crafty crafty: Does not run on Pentium 4 (Illegal instruction) 419 6 grave 2017-01-29
#809167 [S]   cron cron: Cron Daemon Use-After-Free Vulnerability May Cause Local Root Privilege Escalation 197352 7 critical 2017-01-29
#731178   dante-server dante-server: requires libc6-dev to be installed 102 6 grave 2016-12-07
#709198 [jes-i]   debconf debconf: should not use python in maintainer scripts 197720 6 grave 2017-01-29
#815149 [+]   debmirror debmirror: High cpu usage. 649 6 grave 2016-12-07
#808216 [+]   debmirror debmirror: Debmirror seeems to have problems with new SHA256 in Packages.diff/Index files 649 6 grave 2016-12-07
#842428 [U]   debsecan debsecan: error 403 forbidden since 10/27/2016 998 6 grave 2017-02-06
#775149 [whe]   dictionaries-common dictionaries-common: fails to install: update-default-wordlist: Question empty but elements installed for class "wordlist" 180352 5 serious 2015-04-30
#751367 [whe]   dictionaries-common unupgradeable: "shared/packages-wordlist doesn't exist" 180352 5 serious 2017-01-27
#755600   src:djagios djagios: Please ensure it works with Django 1.7 15 6 grave 2016-12-07
#755586   src:django-app-plugins django-app-plugins: Please ensure it works with Django 1.7 59 5 serious 2016-01-03
#755637   src:django-genshi django-genshi: Please ensure it works with Django 1.7 25 5 serious 2016-01-03
#755605   src:django-threaded-multihost django-threaded-multihost: Please ensure it works with Django 1.7 20 5 serious 2016-01-03
#684499 [C|U|+]   dovecot-core dovecot-core: Expunged messages continue to reappear 8726 5 serious 2016-12-07
#836168 [u]   doxygen doxygen: Injects unescaped '%' signs into LaTeX source 8091 5 serious 2016-08-31
#841056   src:dvi2dvi dvi2dvi: license requires package rename 143 5 serious 2017-01-14
#850885 [+]   dwww apache2: Using dwww, fails with internal server error when trying to access /usr/share/doc 809 6 grave 2017-01-18
#786338   ears ears: broken since python-musicbrainz has been removed 41 6 grave 2016-12-07
#766250 [|whe]   eject eject: [kfreebsd] fails to open cdrom tray 178938 6 grave 2016-06-07
#740463   libelmersolver-6.1 libelmersolver-6.1.so links with both GPL-licensed and GPL-incompatible libraries 72 5 serious 2014-03-02
#770369   eterm Eterm: does not run shell 613 5 serious 2017-01-29
#740911 [U|+|whe]   evolution-data-server WebDAV: Evolution sends invalid REV field, DAViCal expects timestamp 66420 5 serious 2015-04-30
#807074   fbreader fbreader: includes files with unclear DFSG-freeness and/or copyright status 3620 5 serious 2016-12-07
#786694 [+]   fftw fftw: FTBFS with TZ=GMT-14 2098 5 serious 2016-12-07
#854880   firmware-atheros firmware-atheros ships binary ath9k_htc firmwares containing GPL code 32318 5 serious 2017-02-11
#835649 [S]   flashplugin-nonfree [flashplugin-nonfree] OldStable (Wheezy) version of package is critically out of date 30347 7 critical 2016-08-29
#744698   src:fontmatrix [fontmatrix] [DFSG] missing source 328 5 serious 2014-11-08
#787350   src:fontmatrix [RC][cc-by-nc-sa] Please clarify license of a few svg files 328 5 serious 2015-05-31
#798805 [+|P]   fonts-cantarell fonts-cantarell: Switch to autohinting to work around blurry rendering with CFF 57511 6 grave 2017-01-26
#787594   freemat Some sources are not included in your package 541 5 serious 2016-12-07
#734365   freeplayer freeplayer: unknown option or missing mandatory argument (while calling vlc) 132 6 grave 2017-02-06
#819992   fsprotect [fsprotect] Requires aufs kernel module which is not part of Debian 19 6 grave 2017-01-09
#851111   src:gargoyle-free gargoyle-free: violates font license 294 5 serious 2017-02-12
#629334   src:gbackground gbackground: uses Switch.pm, removed in perl 5.14 72 5 serious 2015-06-19
#851112   src:gcstar gcstar: violates font license 363 5 serious 2017-01-23
#845848   gnokii gnokii: switch to build depend on the metapackage default-libmysqlclient-dev 1058 5 serious 2017-02-20
#854179 [+]   gnome-extra-icons gnome-extra-icons: Maintainer e-mail address no more exists 1657 5 serious 2017-02-13
#808472   gnu-efi gnu-efi copyright file is wrong, includes GPL-licensed code on arm 630 5 serious 2016-12-07
#504099   gnu-fdisk gnu-fdisk: fails to display GPT partition properly 692 7 critical 2013-06-29
#809813   gnuplot-doc gnuplot contain "lena" images 34316 5 serious 2016-12-07
#629337   src:gosa-perl gosa-perl: uses Switch.pm, removed in perl 5.14 14 5 serious 2017-01-10
#838414   gpick gpick: colors.txt is non-free 728 5 serious 2016-12-07
#847072 [S|u]   src:graphicsmagick graphicsmagick: CVE-2016-9830 13714 6 grave 2016-12-07
#847055 [S|u]   src:graphicsmagick graphicsmagick: CVE-2016-9830 13714 6 grave 2016-12-07
#741342 [+]   grub-common grub2: LVM trouble at boot with several PVs 193157 7 critical 2017-02-19
#735935 [+]   grub-common grub2: LVM trouble at boot with several PVs 193157 7 critical 2017-01-27
#743126 [+]   grub-common grub2: LVM trouble at boot with several PVs 193157 7 critical 2017-01-27
#772795   grub-pc grub installation fails on a fakeraid/sataraid/dmraid system 193157 7 critical 2017-02-17
#741652 [+]   grub-common grub2: LVM trouble at boot with several PVs 193157 7 critical 2016-12-31
#752381   src:grub2 initramfs-tools: does not activate logical volume before trying to mount root filesystem on LVM 193157 5 serious 2017-02-16
#849932   gtk-sharp2-gapi gtk-sharp2-gapi: gapi2-codegen generates fields with void type 29779 5 serious 2017-02-02
#774891 [C|whe]   gtkpod gtkpod: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE 931 5 serious 2015-01-15
#753922 [whe]   src:herculesstudio herculesstudio: Broken patch disallows dpkg-source unpack 51 5 serious 2014-07-06
#799441   hijra-applet GNOME shell extension not compatible with recent GNOME versions 19 5 serious 2015-10-20
#849832   icedove firefox: contains JSHint work under non-free licence 29344 5 serious 2017-01-27
#834928 [ipv6]   ifupdown isc-dhcp-client: ifup fails with "Can't bind to dhcp address: Cannot assign, requested address" 196863 7 critical 2016-12-07
#851376 [U|+|S]   imagemagick imagemagick: CVE-2017-5510: coders/psd.c: out-of-bounds write flaw in psd file handling 106613 5 serious 2017-01-20
#851377 [U|+|S]   imagemagick imagemagick: CVE-2017-5509: coders/psd.c: out-of-bounds write flaw in psd file handling 106613 5 serious 2017-01-20
#851381 [U|+|S]   imagemagick imagemagick: CVE-2017-5508: PushQuantumPixel heap buffer-overflow 106613 5 serious 2017-01-20
#845241 [+|S]   src:imagemagick Prevent fault in MSL interpreter 106613 6 grave 2016-12-19
#851374 [U|+|S]   imagemagick imagemagick: CVE-2017-5511: coders/psd.c: memory corruption heap overflow 106613 5 serious 2017-01-20
#851382 [U|+|S]   imagemagick imagemagick: CVE-2017-5507: coders/mpc.c: memory leak in mpc file handling 106613 5 serious 2017-01-20
#851380 [U|+|S]   imagemagick imagemagick: CVE-2016-10146: memory leak in caption and label handling 106613 5 serious 2017-01-17
#851383 [U|+|S]   imagemagick imagemagick: CVE-2017-5506: magick/profile.c: double-free memory corruption 106613 5 serious 2017-01-20
#706877 [whe]   insserv insserv: breaks dist-upgrade by installing before packages fix their init scripts 187413 7 critical 2014-12-28
#847577 [+]   integrit Embeds dietlibc (GPL) but does not have a Built-Using field 116 5 serious 2017-01-18
#739251 [S]   iptables iptables: Upgrade breaks existing rules (and is not documented) 196490 6 grave 2016-01-28
#798886 [U|S|u]   src:ipython ipython: CVE-2015-6938: XSS vulnerability 9174 6 grave 2016-12-07
#841110 [U|S|u]   src:jasper jasper: CVE-2016-8693 155818 6 grave 2016-12-07
#841112 [S|u]   src:jasper jasper: CVE-2016-8690 155818 6 grave 2016-12-07
#841111 [+|S|u]   src:jasper jasper: CVE-2016-8691 CVE-2016-8692 155818 6 grave 2016-12-07
#824226   java-atk-wrapper openjdk-8-jre: ATK bridge causes segfault when loading JR 102623 6 grave 2016-12-07
#799313   src:jbofihe jbofihe: FTBFS under some locales (eg. fr_CH.UTF-8) 18 5 serious 2015-09-17
#843926   libjemalloc1 jemalloc uses a hard coded page size detected during build 14100 5 serious 2017-01-27
#788725   src:jffnms [src:jffnms] Some sources are not included in your package 15 5 serious 2016-12-07
#762950   libsolid4 digikam: Removes all images from database when unaccessible mount is found 39667 6 grave 2016-12-07
#834731 [+]   src:kdesrc-build kdesrc-build: FTBFS with '.' removed from perl's @INC 82 5 serious 2016-12-07
#854008   kstars-data-extra-tycho2 kstars-data-extra-tycho2: deepstars.dat installed in wrong directory 101 6 grave 2017-02-24
#479096   libacpi libacpi0: getting battery status broken by missing support for new sysfs names 561 6 grave 2016-12-07
#788008   libcgi-application-plugin-anytemplate-perl libcgi-application-plugin-anytemplate-perl: missing dependency on libclone-perl 13 5 serious 2016-12-07
#788350 [C]   libhttp-proxy-perl FTBFS - proxy tests 131 5 serious 2016-12-07
#842891 [C|U|S|u]   src:libimage-info-perl libimage-info-perl: CVE-2016-9181: XXE in SVG files 1208 6 grave 2016-12-07
#789197 [S|u]   src:libmimedir libmimedir: CVE-2015-3205 98 6 grave 2016-12-07
#851060 [+]   libnids1.21 libnids1.21: can't assemble TCP streams on armhf 1656 6 grave 2017-02-23
#729986   libnss-mysql-bg libnss-mysql-bg: Patch 04_shadow.diff Introduces Lock Acquisition Hang 145 5 serious 2015-02-23
#853232 [S]   libphp-phpmailer libphp-phpmailer: CVE-2017-5223 2778 6 grave 2017-02-14
#707305 [whe]   libquicktime2 runtime error on load, "can execute code" 12071 5 serious 2013-06-14
#814445 [u]   src:libsdl1.2 Non-Free file: src/stdlib/SDL_qsort.c 119064 5 serious 2016-12-07
#302907 [+]   libstroke0-dev Need more quoting of autoconf macro files. 3663 7 critical 2016-12-07
#128745 [+]   libstroke0-dev libstroke0-dev: aclocal is confused by libstroke .m4 files 3663 7 critical 2016-12-07
#763824 [+]   libtar0 writes archives with checksums itself deems wrong 11217 5 serious 2014-10-05
#767572   libthunar-vfs-1-2-dbg libthunar-vfs-1-2-dbg: fails to upgrade from squeeze - trying to overwrite /usr/lib/debug/usr/lib/libthunar-vfs-1.so.2.3.1 0 5 serious 2014-11-01
#797046 [+|S]   src:libtorrent-rasterbar CVE-2015-5685: remote execution vulnerability in lazy_bdecode() 9710 6 grave 2016-12-07
#496448 [U|S|u]   libui-dialog-perl libui-dialog-perl: Dialog backend allows execution of arbitrary shell commands (CVE-2008-7315) 363 6 grave 2016-10-10
#831857 [jes|+|S|sid|str|u|whe]   src:libupnp libupnp: CVE-2016-6255: write files via POST 67871 6 grave 2016-12-17
#793465 [+|S|u]   src:libuser DoS and privilege escalation by local users (CVE-2015-3245 and CVE-2015-3246) 10987 6 grave 2016-12-07
#834961 [C]   src:libvitacilina-perl libvitacilina-perl: FTBFS too much often (configure fails) 3 5 serious 2016-12-07
#739864   libvorbisidec-dev libvorbisidec-dev needs libogg-dev 12119 5 serious 2017-01-23
#796385 [+|u]   libxml-libxml-perl request-tracker4: FTBFS: 256 Tests: 39 Failed: 1 122085 5 serious 2016-12-07
#783610 [+|u]   libxml-libxml-perl Warning: XML::LibXML compiled against libxml2 20902, but runtime libxml2 is older 20901 122085 5 serious 2016-12-07
#517472 [+|u]   libxml-libxml-perl libxml-libxml-perl: Missing versioned dependency on libxml2 - Causes runtime warnings 122085 5 serious 2017-01-24
#796354 [+|u]   libxml-libxml-perl libimage-info-perl: FTBFS: Failed 1/13 test programs. 1/134 subtests failed. 122085 5 serious 2016-12-07
#753235 [+]   src:lldpad lldpad: FTBFS: dpkg-source: error: expected ^--- in line 2 of diff `lldpad-0.9.46/debian/patches/fix-typo-in-lldptool-ets-8.patch' 30 5 serious 2016-09-10
#849126 [u]   logtools FTBFS: several errors when building 43 5 serious 2016-12-25
#831360   lush /usr/bin/lush must not link libbfd-*-system.so dynamically 306 6 grave 2016-07-19
#855895   lvm2 lvm2: lvchange while raid1 conversion active causes instant and serious loss of whole device 196176 7 critical 2017-02-23
#752610 [jes-i|S]   lynx-cur lynx: Can connect to CVE-2014-0092 test site 21146 5 serious 2016-12-07
#836320 [S|u]   src:mactelnet mactelnet: CVE-2016-7115 93 6 grave 2016-12-31
#825381 [+]   makejail makejail fails on updating symbolic links 205 7 critical 2016-05-26
#749557   martian-modem-source fixes to build martian-modem-source with 3.x kernels - at least to 3.13 7 5 serious 2016-11-21
#854279 [u]   src:matplotlib matplotlib: contains fonts without DFSG-compatible licensing 16217 5 serious 2017-02-13
#854280 [M|u]   src:matplotlib matplotlib: contains image with non-free color calibration profile 16217 5 serious 2017-02-13
#802776   src:matplotlib matplotlib: ttf-bitstream-vera missing in "Depends:" of python-matplotlib-data 16217 6 grave 2016-12-07
#725417 [+|u]   mbr mbr: install-mbr wipes the disk-id portion of the MBR, rendering Windows 7 unbootable 2358 6 grave 2016-12-23
#792126   mbr mbr:i386 self-tests depend on VM86 2358 5 serious 2016-12-07
#845258 [U|S|u]   src:mcabber mcabber: CVE-2016-9928: remote attacker can modify the roster and intercept messages via a crafted roster-push IQ stanza 402 6 grave 2016-12-23
#850968 [U|S|u]   src:mcollective CVE-2016-2788 490 6 grave 2017-02-07
#841224 [S]   mediatomb mediatomb: libupnp vulnerabilities CVE-2012-5958, CVE-2012-5959, CVE-2012-5960, CVE-2016-6255, CVE-2016-8863 764 6 grave 2016-12-09
#833655 [+]   metar metar: NOAA changed server weather.noaa.gov to tgftp.nws.noaa.gov (metar.h in source) 141 6 grave 2016-12-07
#851114   src:minetest minetest: violates font license 1460 5 serious 2017-01-13
#635711 [H|+]   monkeysphere error on install 402 5 serious 2016-12-14
#778833 [H|+]   monkeysphere monkeysphere: upgrade fails: Failed running transition script /usr/share/monkeysphere/transitions/0.23 402 5 serious 2017-01-26
#842208   src:mozart-stdlib mozart-stdlib: FTBFS: dpkg-checkbuilddeps: error: Unmet build dependencies: mozart (>= 1.4.0) 5 5 serious 2017-02-19
#805370 [u]   mpage mpage: non-free license 1052 5 serious 2016-09-18
#838960 [U|S]   mpg123 mpg123: CVE-2016-1000247: denial of service with crafted id3v2 tags 87842 6 grave 2016-12-07
#855705 [+|P|S|u]   munin munin: CVE-2017-6188: munin-cgi-graph local file write vulnerability 12321 6 grave 2017-02-24
#800913   nama nama: ChainSetup fails rendering all sound operations useless 60 6 grave 2016-12-07
#770402   nautilus-dropbox nautilus-dropbox: hangs during installation with 100% cpu usage 2125 5 serious 2015-09-14
#849504 [U]   nbd-server Data corruption with copy-on-write and multiple threads 572 5 serious 2017-02-25
#740998 [ipv6]   rdnssd NetworkManager and rdnssd do not play well together 5471 5 serious 2017-02-16
#824718 [+]   nethogs nethogs remains broken in Jessie 3173 6 grave 2016-05-25
#811273 [U|+]   nethogs nethogs: creating socket failed while establishing local IP 3173 6 grave 2016-12-07
#808433 [U|+]   nethogs nethogs doesn't start, saying "creating socket failed" 3173 6 grave 2016-12-07
#793895 [whe]   src:netperf netperf: FTBFS with -Werror=format-security 466 5 serious 2016-12-03
#796114 [S]   src:netty CVE-2015-2156 2478 6 grave 2017-02-05
#808463   ntfs-3g ntfs-3g: non-free code in boot.c 111875 5 serious 2017-01-27
#855277 [S]   src:nvidia-graphics-drivers nvidia-graphics-drivers: CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0321, CVE-2017-0318 8954 5 serious 2017-02-23
#801582   nvram-wakeup grub-pc: default entry becomes Halt once (for setting alarm) => no boot 272 7 critical 2017-01-25
#796033   src:ocamlodbc ocamlodbc: FTBFS under almost any locale (eg. en_GB.UTF-8) 72 5 serious 2016-12-07
#773059   ogre-doc ogre-doc: unhandled symlink to directory conversion: /usr/share/doc/PACKAGE 0 5 serious 2014-12-13
#762835   openafs-fileserver error exit on dafileserver (segfault) 559 5 serious 2016-04-19
#787355   src:openclipart2 [RC][cc-by-nc-sa] Please clarify license of a few svg files 406 5 serious 2015-05-31
#773808   openclipart2 Openclipart2 included non-free images. 406 5 serious 2014-12-23
#665199   slapd slapd: fails to install, remove, distupgrade, and install again 195022 5 serious 2017-02-05
#778747 [jes-i|S]   openssl openssl: RFC 7465 says RC4 is broken, never to be used 195368 5 serious 2016-12-07
#769798   openswan-modules-dkms openswan-modules-dkms: module FTBFS with linux-headers-3.2.0-4-amd64 3.2.63-2+deb7u1 0 5 serious 2015-01-25
#794849 [+]   os-prober linux: custom linux-image packages fail to install 184588 7 critical 2017-02-20
#788062 [+]   os-prober os-prober corrupts LVs/partitions while being mounted inside a VM 184588 7 critical 2017-02-06
#806273 [+]   os-prober os-prober: remove or disable-per default the non grub-mount based probing 184588 7 critical 2017-01-20
#810121 [+]   os-prober linux: KVM guests randomly get I/O errors on VirtIO based devices 184588 7 critical 2017-01-20
#648208 [+]   os-prober os-prober: blockdev --setro affects running kvm instances 184588 7 critical 2017-01-20
#814589   src:otrs2 otrs2: source-less files; undocumented copyrights/licenses; abuse of lintian-overrides; systematic DFSG violations 98 5 serious 2016-12-07
#641264   partman-crypto debian-installer: cannot install to already encrypted partitions 0 6 grave 2016-09-27
#498199   partman-crypto d-i cannot use existing encrypted partition 0 6 grave 2016-09-27
#566497   partman-crypto install: Please support reusing existing crypt-lvm partitions 0 6 grave 2016-09-27
#451535   partman-crypto debian-installer: allow to 'reuse' encrypted volumes 0 6 grave 2016-09-27
#529343   partman-crypto debian-installer: physical volume for encryption: doesnt care if already encrypted and kills data 0 6 grave 2016-09-27
#855324 [C]   pdfsam pdfsam fails to start 1610 6 grave 2017-02-21
#815935 [whe]   src:phoronix-test-suite phoronix-test-suite: FTBFS with nonexistent $HOME 306 5 serious 2016-12-02
#844097   photofilmstrip [photofilmstrip] Unable to save project 146 6 grave 2016-11-12
#851771 [S|str-i|u]   src:php-gettext php-gettext: CVE-2016-6175 12524 6 grave 2017-02-04
#851770 [+|S|u]   src:php-gettext php-gettext: CVE-2015-8980 12524 6 grave 2017-01-31
#853211   phyml phyml: Fails to use mpi 444 6 grave 2017-01-30
#853737   phyml phyml: Beagle library causes trouble on machines without proper graphics hardware 444 6 grave 2017-01-31
#853738   phyml phyml: MPI version uses different number of bootstrap steps breaking applications like seaview 444 6 grave 2017-02-01
#806930   pianobar pianobar needs update for new server SSL certificate 149 6 grave 2015-12-05
#843861 [S|u]   potrace potrace: CVE-2016-8685: invalid memory access in findnext 31386 5 serious 2017-01-08
#755992 [U]   proftpd-mod-clamav proftpd-mod-clamav: error: Can not stat file (9): Bad file descriptor 17 7 critical 2017-02-10
#800711 [whe]   proftpd-mod-vroot proftpd-basic: Chroot with and without mod_vroot fails silently dropping, clients to / 2803 6 grave 2016-12-24
#715569 [whe]   proftpd-mod-vroot Official mod_vroot lib broken, lib built from source works 2803 6 grave 2016-12-24
#835413 [+]   pygobject pygobject: wrong enum to hash conversion on 64-bit big endian 109537 5 serious 2016-12-07
#755618   src:python-django-djapian python-django-djapian: Please ensure it works with Django 1.7 23 5 serious 2016-12-07
#755634   src:python-django-websocket python-django-websocket: Please ensure it works with Django 1.7 26 5 serious 2016-01-03
#794461   python-mock RequirementParseError: Expected version spec in funcsigs; python_version<"3.3" at ; python_version<"3.3" 15455 6 grave 2016-12-07
#830607   src:python-simpy python-simpy: accesses the internet during build 225 5 serious 2016-12-07
#772794 [S|u]   qpid-cpp qpid-cpp: Multiple security issues 137 6 grave 2015-02-02
#750141 [M|S]   libqt4-xml libqt4-xml: vulnerable to billion laughs attack (CVE-2013-4549) 102239 5 serious 2014-06-10
#757771 [l10n]   rar rar: Incorrect handling of file names containing international characters when creating an archive 11545 6 grave 2017-01-30
#743828 [S|whe]   redmine redmine: security: CVE-2014-1985: open redirector issue 545 5 serious 2014-12-31
#850253   retty retty doesn't work anymore 61 6 grave 2017-01-07
#666414   src:rggobi FTBFS on s390x: Segmentation fault during installation 248 5 serious 2014-07-13
#796235   rinetd rinetd fills up the logs until disk is full up if it cannot bind 307 7 critical 2017-01-05
#853249 [U|+|S|u]   ruby-archive-tar-minitar ruby-archive-tar-minitar: CVE-2016-10173: directory traversal vulnerability 287 6 grave 2017-02-12
#829691   ruby-shoulda-matchers ruby-shoulda-matchers: can not be used to satisfy shoulda dependency 32 5 serious 2016-12-07
#854804 [S|u]   sane-utils saned: CVE-2017-6318: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server 119695 6 grave 2017-02-25
#797639   scim-unikey scim-unikey: Not loading on AMD64 7 5 serious 2016-11-24
#853835   seaview seaview: Wrong results in connection with multi-processing phyml 221 6 grave 2017-02-01
#841257 [+|S]   sendmail sendmail: Privilege escalation from group smmsp to (user) root 2788 6 grave 2017-02-12
#825002   sgml-base sgml-base: broken super catalog after removing docutils-common 186864 5 serious 2016-12-07
#849777 [S|u]   src:shutter shutter: CVE-2016-10081: Insecure use of perl exec() 3840 6 grave 2017-01-07
#852623   sitesummary sitesummary-client fails to submit data 150 5 serious 2017-01-31
#854739 [S]   src:sleekxmpp CVE-2017-5591 124 6 grave 2017-02-20
#758623 [+]   slingshot does not start: unable to read font filename 161 6 grave 2016-12-27
#706909   smartmontools smartmontools: updated drivedb.h should go to /var 38271 5 serious 2016-12-07
#779803 [F|S]   smuxi smuxi performs autoconnect on first startup 253 6 grave 2016-12-07
#780429 [jes-i]   snmp-mibs-downloader snmp-mibs-downloader: postinst uses /usr/share/doc content (Policy 12.3): /usr/share/doc/mibrfcs/* 4437 5 serious 2016-12-07
#781072 [+]   spamass-milter auth_in_received breaks twice the Received header 388 5 serious 2016-12-07
#775183 [+]   spamass-milter spamass-milter adds bad Received: header, creating false positive 388 5 serious 2016-12-07
#786442   squirrelmail some lines don't appear in some messages 1814 6 grave 2017-01-02
#787359   squirrelmail-spam-buttons [RC][cc-by-nc-sa] Please clarify license of a few files (false positive ?) 139 5 serious 2016-12-10
#750943 [+|u|whe]   stunnel4 stunnel4: init script missing lsb-required status target 4077 5 serious 2014-10-16
#842339 [U|+|S|u]   tar tar: CVE-2016-6321: Bypassing the extract path name 197722 6 grave 2016-12-07
#709085   dvifb dvifb suffers total font failure 30 6 grave 2013-05-20
#856117 [U|S|u]   src:tnef tnef: CVE-2017-6307 CVE-2017-6308 CVE-2017-6309 CVE-2017-6310 2256 6 grave 2017-02-25
#813880   src:tokyocabinet tokyocabinet: testsuite failures on some archs 152410 5 serious 2017-01-05
#545827   toshset toshset does not work on 2.6.29 and later kernels 380 6 grave 2017-01-10
#827079   triggerhappy triggerhappy: Generated event tables are empty, so nothing works. 118 6 grave 2016-12-07
#775689 [d-i]   src:unetbootin Do NOT use unetbootin for Debian CD images 4627 5 serious 2017-01-31
#840573 [u]   src:unicon unicon: DFSG-incompatible license 1513 5 serious 2016-12-07
#829310 [+]   imapproxy imapproxy: fails to install under systemd 173 5 serious 2016-12-07
#774149 [H|+]   usbmount usbmount: Can't mount ntfs drive (Transport endpoint is not connected) 1475 6 grave 2017-01-06
#753927 [whe]   src:usbredir usbredir: Broken patch disallows dpkg-source unpack 60359 5 serious 2017-01-17
#826213   w3c-dtd-xhtml w3c-dtd-xhtml: inconsistencies in copyright file 1543 5 serious 2016-06-03
#826216   w3c-sgml-lib w3c-sgml-lib: inconsistencies in copyright file 145 5 serious 2017-02-19
#774290   worldwind worldwind: Immediate crash (HeadlessException) with 'Java(TM) SE Runtime Environment (build 1.7.0_45-b18' 55 6 grave 2014-12-31
#849875   wpasupplicant broadcom-sta-dkms: Wifi association took too long, failing activation 108128 5 serious 2017-01-30
#781595 [P|S]   src:xdeb xdeb: disables apt's signature checks 25 6 grave 2015-12-30
#783346 [+]   xen-utils-4.1 patch for booting Jessie domU with wheezy dom0 0 5 serious 2016-10-08
#787361   xhtmlrenderer [RC][cc-by-nc-sa] Please clarify license of a few svg files 19 5 serious 2016-12-07
#832959 [F|+|S|u]   src:xmlrpc-epi xmlrpc-epi: CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c 451 6 grave 2016-12-07
#686150 [whe]   xserver-xorg-core xorg server 1.12.3: xf86UnloadSubModule() hangs 111144 5 serious 2016-10-16
#811091   src:xtrkcad xtrkcad: missing and outdated licenses. 99 5 serious 2016-12-07
#771040   yaboot-installer installation-reports: Messes up Mac OS 9 driver partitions 0 6 grave 2016-04-12
#735260 [d-i]   yaboot-installer installation-reports: Jessie Netinst for PowerPC-64 creates will not boot after installation -- but works for PowerPC-32 0 6 grave 2016-04-12
#796495 [S]   yubiserver yubiserver: multiple vulnerabilities, affecting old/stable? 21 6 grave 2016-01-03
#788319   src:yui3 [yui3] Some sources are not included in your package 46 5 serious 2015-06-10

Generated in 0.857 seconds.

select id, bugs.package, bugs.source, severity, title, last_modified, affects_stable, affects_testing, affects_unstable, affects_experimental, coalesce(popcon_src.insts, 0) as popcon
from bugs left join popcon_src on (bugs.source = popcon_src.source) 
where id in (select id from bugs_rt_affects_oldstable) 
AND (severity >= 'serious')
order by source asc