Security Bug Tracker (original) (raw)
The data in this tracker comes solely from the bug database maintained by Debian's security team located in the security-tracker Git repository. The data represented here is derived from: DSAs issued by the Security Team; issues tracked in the CVE database, issues tracked in the National Vulnerability Database (NVD), maintained by NIST; and security issues discovered in Debian packages as reported in the BTS.
All external data (including Debian bug reports and official Debian security advisories) must be added to this database before it appears here. Please help us keep this information up-to-date by reporting any discrepancies or change of status that you are aware of and/or help us improve the quality of this information by participating.
- Vulnerable packages in the unstable suite
- Vulnerable packages in the testing suite
- Vulnerable packages in the stable suite
- Vulnerable packages in backports for stable
- Vulnerable packages in the oldstable suite
- Vulnerable packages in backports for oldstable
- Vulnerable packages in the oldoldstable suite
- Vulnerable packages in backports for oldoldstable
- Candidates for DTSAs
- TODO items
- Packages that may be vulnerable but need to be checked (undetermined issues)
- Packages that have open unimportant issues
- ITPs with potential security issues
- Open vulnerabilities without filed Debian bugs
- Packages names not found in the archive
- Tracked issues without a CVE name
- Package versions which might lack an epoch
- Packages which are latently vulnerable in unstable
- Packages with strange version numbers
- Covered Debian releases and architectures
- All information in JSON format
Search for package or bug name: Reporting problems
(You can enter CVE names, Debian bug numbers and package names in the search forms.)
External interfaces
If you want to automatically open a relevant web page for some object, use the /tracker/redirect/_object_ URL. If no information is contained in this database, the browser is automatically redirected to the corresponding external data source.