Navigation: Suites / Filters / Types / Fields / Sort / Format / Search / Results

Bugs search

Useful queries for testing (buster)

Suites[1]

Filters

off / include / exclude
  • tagged confirmed
  • tagged patch
  • tagged pending
  • tagged security
  • tagged wontfix
  • tagged moreinfo
  • tagged upstream
  • tagged unreproducible
  • tagged help
  • tagged d-i
  • forwarded upstream
  • claimed bugs
  • fixed in deferred/delayed
  • packages not in main
  • packages not in jessie
  • packages not in stretch
  • packages not in buster
  • packages in base system
  • packages in standard installation
  • orphaned packages
  • merged bugs
  • marked as done
  • outdated binaries in jessie
  • outdated binaries in stretch
  • outdated binaries in buster
  • outdated binaries in sid
  • different versions in buster and sid
  • newer in Ubuntu than in sid
  • RT tag for jessie: ignore
  • RT tag for jessie: will-remove
  • RT tag for jessie: can-defer
  • RT tag for jessie: is-blocker
  • RT tag for jessie: no-auto-remove
  • RT tag for jessie: pu
  • RT tag for stretch: ignore
  • RT tag for stretch: will-remove
  • RT tag for stretch: can-defer
  • RT tag for stretch: is-blocker
  • RT tag for stretch: no-auto-remove
  • RT tag for stretch: pu
  • RT tag for buster: ignore
  • RT tag for buster: will-remove
  • RT tag for buster: can-defer
  • RT tag for buster: is-blocker
  • RT tag for buster: no-auto-remove
  • RT tag for buster: pu
  • RT unblock hint
  • key packages
  • pseudo packages
  • packages marked for autoremoval
  • closed in packages in new
  • newer than days
  • modified in the last days

Bugs or packages selection


  ignore:
  ignore:
  ignore:
 
 

Additional fields

Sort

Format

30 bugs found

bug# tags package title popcon severity modified
#895115 [S]   beep info leakage and unauthorized access to devices 3734 5 serious 2018-07-21
#902409 [+|P|S]   devscripts devscripts: CVE-2018-13043 - grep-excuses uses YAML::Syck in a unsafe way 12652 6 grave 2018-07-03
#891063 [S]   emacs25 When run as root, emacs reads/writes dconf files in a non-root user's /run/user/XXX directory 13648 6 grave 2018-08-14
#906158 [S]   intel-microcode intel-microcode: Update intel-microcode to 20180807 26846 6 grave 2018-08-15
#906160 [S]   intel-microcode intel-microcode: Update intel-microcode to 20180807 26846 6 grave 2018-08-15
#902774 [S]   jetty9 jetty9: CVE-2018-12536 6635 6 grave 2018-07-04
#904616 [U|S|u]   src:keystone keystone: CVE-2018-14432: GET /v3/OS-FEDERATION/projects leaks project information 20 6 grave 2018-08-16
#899127 [+|S]   kf5-messagelib Limit CVE-2017-17689 (EFAIL) for kmail 14118 6 grave 2018-05-19
#898634 [S]   src:kmail kmail: efail attack against S/MIME 18420 6 grave 2018-05-19
#905325 [S|u]   src:knot-resolver knot-resolver: CVE-2018-10920: Improper input validation bug in DNS resolver component 15 6 grave 2018-08-03
#906308 [S]   src:libcgroup CVE-2018-14348 1919 6 grave 2018-08-16
#895114 [U|S|u]   src:libspring-java libspring-java: CVE-2018-1270 CVE-2018-1272 2408 6 grave 2018-04-10
#862373 [C|U|S]   libyaml-libyaml-perl libyaml-libyaml-perl: Unconditionally instantiates objects from yaml data 28671 6 grave 2018-05-31
#862475 [C|S]   libyaml-syck-perl libyaml-syck-perl: Unconditionally instantiates objects from yaml data 11407 6 grave 2018-05-19
#906138 [S|u]   src:libykneomgr libykneomgr: out of bounds read/writes 246 6 grave 2018-08-14
#870815 [U|S|u]   src:libytnef libytnef: CVE-2017-12141: heap-buffer-overflow 46482 6 grave 2018-07-30
#892290 [M|S|R]   light-locker light-locker: at unlock, crash with: arguments to dbus_message_new_method_call() were incorrect 23108 6 grave 2018-08-07
#905586 [+|S|u]   src:lxc lxc: CVE-2018-6556: lxc-user-nic allows unprivileged users to open arbitrary files 2788 6 grave 2018-08-13
#899128 [+|S]   kdepim Limit CVE-2017-17689 (EFAIL) for kmail 18637 6 grave 2018-05-19
#884738 [S|u]   src:openjpeg2 openjpeg2: CVE-2017-17480: stack-based buffer overflow in pgxtovolume function in jp3d/convert.c 88591 6 grave 2017-12-18
#880501 [S]   libpam-runtime pam-auth-update may create empty configuration file, disabling all authentication 192671 6 grave 2018-08-13
#892859 [U|S|u]   src:paramiko paramiko: CVE-2018-7750: Server implementation does not check for auth before serving later requests 13288 6 grave 2018-03-19
#851771 [jes-i|S|str-i|u|whe-i]   src:php-gettext php-gettext: CVE-2016-6175 9656 6 grave 2017-04-22
#901017 [+|S|u]   src:qemu qemu: CVE-2018-11806: slirp: heap buffer overflow while reassembling fragmented datagrams 18944 6 grave 2018-06-08
#903980 [U|S|u]   src:ruby-doorkeeper ruby-doorkeeper: CVE-2018-1000211: Public apps can't revoke OAuth access & refresh tokens in Doorkeeper 76 6 grave 2018-07-23
#888547 [S|u]   src:simple-xml CVE-2017-1000190 9 6 grave 2018-04-30
#906315 [+|S|u]   src:spice spice: CVE-2018-10873: Missing check in demarshal.py:write_validate_array_item() allows for buffer overflow and denial of service 18367 6 grave 2018-08-17
#906316 [+|S|u]   src:spice-gtk spice-gtk: CVE-2018-10873: Missing check in demarshal.py:write_validate_array_item() allows for buffer overflow and denial of service 54061 6 grave 2018-08-17
#894577 [U|S]   thrift-compiler CVE-2016-5397 87 6 grave 2018-07-09
#897009 [S|u]   src:uimaj uimaj: CVE-2017-15691: XML external entity expansion (XXE) attack exposure 14 6 grave 2018-04-27

Generated in 1.490 seconds.

select id, bugs.package, bugs.source, severity, title, last_modified, affects_stable, affects_testing, affects_unstable, affects_experimental , coalesce(popcon_src.insts, 0) as popcon
from bugs  left join popcon_src on (bugs.source = popcon_src.source) 
where id in (select id from bugs_rt_affects_testing) 
and id in (select id from bugs_tags where tag='security') 
AND (severity >= 'serious')
order by source asc