| 16461 |
hornetq new security issue CVE-2015-3208 |
Nicolas Lécureuil |
Cauldron, 7 |
|
2015-07-24 |
191 |
Bugzilla |
| 19800 |
dracut new security issue CVE-2016-4484 |
Mageia tools maintainers |
Cauldron, 7 |
Should be mitigated by the installer |
2016-11-16 |
95 |
Bugzilla |
| 21756 |
libkdcraw new security issues CVE-2017-13735, CVE-2017-14265, CVE-2017-14348, CVE-2018-580[0-2,5-6] |
KDE maintainers |
Cauldron, 7 |
Not fixed upstream as of end of 2017 |
2017-09-22 |
191 |
Bugzilla |
| 21757 |
dcraw new security issues CVE-2017-13735, CVE-2017-14265, CVE-2017-14348 |
All Packagers |
Cauldron, 7 |
Not fixed upstream as of end of 2017 |
2017-09-22 |
270 |
Bugzilla |
| 21999 |
hadoop new security issues CVE-2016-6811, CVE-2017-3166, CVE-2017-1571[38], CVE-2018-1296, CVE-2018-[...] |
Nicolas Lécureuil |
Cauldron, 7 |
Fixed upstream in 2.10.0 |
2017-11-09 |
62 |
Bugzilla |
| 22029 |
cxf new security issue CVE-2017-12624 (and possibly several older ones) |
Nicolas Lécureuil |
7 |
Fixed upstream in 3.1.14 |
2017-11-15 |
15 |
Bugzilla |
| 22697 |
solr3 new security issues CVE-2017-3163, CVE-2017-3164, CVE-2017-12629, CVE-2018-1308, CVE-2018-1180[...] |
Java Stack Maintainers |
Cauldron, 7 |
Patches available from Debian |
2018-03-03 |
100 |
Bugzilla |
| 22890 |
policycoreutils new security issue CVE-2018-1063 |
Base system maintainers |
Cauldron, 7 |
Patch available from CentOS |
2018-04-10 |
525 |
Bugzilla |
| 22954 |
tika new security issues CVE-2018-133[589], CVE-2018-8017, CVE-2018-1176[12], CVE-2018-11796, CVE-20[...] |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 1.24 |
2018-04-26 |
47 |
Bugzilla |
| 22955 |
uimaj new security issue CVE-2017-15691 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 2.10.2 |
2018-04-27 |
191 |
Bugzilla |
| 23003 |
derby new security issue CVE-2018-1313 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 10.14.2.0 |
2018-05-08 |
191 |
Bugzilla |
| 23074 |
zookeeper new security issues CVE-2018-8012 and CVE-2019-0201 |
Java Stack Maintainers |
Cauldron, 7 |
Patches available from Debian |
2018-05-23 |
181 |
Bugzilla |
| 23168 |
jasper missing fix for security issue CVE-2016-9397 |
Nicolas Lécureuil |
Cauldron, 7 |
No fix available as of May 2020 |
2018-06-11 |
186 |
Bugzilla |
| 23249 |
cxf new security issues CVE-2018-8039, CVE-2019-12406, CVE-2019-12419, CVE-2019-12423, CVE-2019-1757[...] |
Java Stack Maintainers |
7 |
Fixed upstream in 3.3.8 |
2018-06-29 |
15 |
Bugzilla |
| 23251 |
pdfbox new security issues CVE-2018-8036, CVE-2018-11797, and CVE-2019-0228 |
Java Stack Maintainers |
7 |
Fixed upstream in 2.0.16 |
2018-06-29 |
342 |
Bugzilla |
| 23492 |
openssh new security issue CVE-2018-15919 |
Bruno Cornec |
Cauldron, 7 |
Not fixed upstream as of end of 2018 |
2018-08-28 |
191 |
Bugzilla |
| 23724 |
hibernate-validator new security issues CVE-2017-7536 and CVE-2020-10693 |
Java Stack Maintainers |
7 |
|
2018-10-17 |
31 |
Bugzilla |
| 23799 |
u-boot new security issues CVE-2018-18439, CVE-2018-18440 |
Olivier Blin |
Cauldron, 7 |
Not fixed upstream as of end of 2018 |
2018-11-02 |
54 |
Bugzilla |
| 23859 |
qpid-proton-java new security issues CVE-2018-17187 and CVE-2019-0223 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 0.30.0 |
2018-11-19 |
191 |
Bugzilla |
| 23973 |
scala new security issue CVE-2017-15288 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 2.10.7 |
2018-12-08 |
191 |
Bugzilla |
| 23975 |
springframework new security issue CVE-2018-1257 |
Java Stack Maintainers |
Cauldron, 7 |
|
2018-12-08 |
191 |
Bugzilla |
| 23976 |
springframework-data-commons new security issue CVE-2018-1273 |
Java Stack Maintainers |
Cauldron, 7 |
|
2018-12-08 |
191 |
Bugzilla |
| 24107 |
dcraw new security issues CVE-2018-1956[5-8] |
All Packagers |
Cauldron, 7 |
|
2019-01-01 |
242 |
|
| 24174 |
thrift new security issues CVE-2018-1320 and CVE-2018-11798 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 0.12.0 |
2019-01-13 |
191 |
Bugzilla |
| 24346 |
buildbot new security issues CVE-2019-7313 and CVE-2019-12300 |
Neal Gompa |
7 |
Fixed upstream in 1.8.3 |
2019-02-11 |
346 |
Bugzilla |
| 24509 |
guacd new security issue CVE-2018-1340 |
Nicolas Lécureuil |
7 |
Fixed upstream in 1.0.0 |
2019-03-13 |
18 |
Bugzilla |
| 24668 |
apache-mina new security issue CVE-2019-0231 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 2.0.21 |
2019-04-15 |
191 |
Bugzilla |
| 24817 |
resteasy new security issue CVE-2016-6346 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 3.5.1 |
2019-05-14 |
191 |
Bugzilla |
| 24899 |
python-django new security issues CVE-2019-12308, CVE-2019-12781, CVE-2019-1423[2-5], CVE-2019-19118[...] |
Nicolas Lécureuil |
7 |
|
2019-06-04 |
83 |
Bugzilla |
| 25076 |
unzip new security issue CVE-2019-13232 |
All Packagers |
Cauldron, 7 |
|
2019-07-09 |
191 |
Bugzilla |
| 25112 |
libosinfo new security issue CVE-2019-13313 |
Nicolas Lécureuil |
7 |
|
2019-07-12 |
183 |
Bugzilla |
| 25266 |
jackson-databind new security issues CVE-2019-12086, CVE-2019-12384, CVE-2019-12814, CVE-2019-14379,[...] |
Java Stack Maintainers |
7 |
Fixed upstream in 2.11.0 |
2019-08-11 |
31 |
Bugzilla |
| 25277 |
imagemagick new security issues |
Stig-Ørjan Smelror |
7 |
|
2019-08-11 |
18 |
Bugzilla |
| 25596 |
dom4j new security issues CVE-2018-1000632 and CVE-2020-10683 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 2.0.3 |
2019-10-22 |
23 |
Bugzilla |
| 25599 |
apache-poi new security issue CVE-2019-12415 |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 4.1.1 |
2019-10-23 |
320 |
Bugzilla |
| 25799 |
u-boot new security issues CVE-2019-1310[3-6] |
Olivier Blin |
Cauldron, 7 |
|
2019-12-03 |
54 |
Bugzilla |
| 25939 |
edk2 new security issues CVE-2018-12179, CVE-2018-1218[23], CVE-2019-016[01], CVE-2019-1455[389], CV[...] |
Thierry Vignaud |
7 |
Fixed upstream in 20200801stable |
2019-12-23 |
47 |
Bugzilla |
| 25959 |
koji new security issue CVE-2019-17109 |
Neal Gompa |
Cauldron, 7 |
Fixed upstream in 1.18.1 |
2019-12-26 |
320 |
Bugzilla |
| 25965 |
ruby-rubyzip new security issue CVE-2019-16892 |
All Packagers |
7 |
Fixed upstream in 1.3.0 |
2019-12-27 |
189 |
Bugzilla |
| 25970 |
rabbitmq-server new security issues CVE-2019-1128[17] |
Nicolas Lécureuil |
7 |
Fixed upstream in 3.7.21 |
2019-12-27 |
89 |
Bugzilla |
| 25971 |
librabbitmq new security issue CVE-2019-18609 |
Nicolas Lécureuil |
7 |
Fixed upstream in 0.10.0 |
2019-12-27 |
24 |
Bugzilla |
| 26019 |
netty, netty3 new security issues CVE-2019-16869, CVE-2019-20444, CVE-2019-20445, CVE-2020-7238, CVE[...] |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 4.1.46 |
2020-01-05 |
31 |
Bugzilla |
| 26066 |
virglrenderer new security issues CVE-2019-1838[89] and CVE-2019-1839[01] |
Nicolas Lécureuil |
7 |
Fixes available in upstream git |
2020-01-13 |
189 |
Bugzilla |
| 26080 |
mysql-workbench new security issues CVE-2019-16168, CVE-2020-1730, CVE-2020-1967 |
All Packagers |
7 |
Fixed upstream in 8.0.22 |
2020-01-15 |
31 |
Bugzilla |
| 26147 |
aws-cli new security issue CVE-2018-15869 |
Buchan Milne |
Cauldron, 7 |
Fixed upstream in 1.16.297 |
2020-01-29 |
282 |
Bugzilla |
| 26213 |
ksh new security issue CVE-2019-14868 |
Stig-Ørjan Smelror |
7 |
Patch available from Fedora |
2020-02-18 |
279 |
Bugzilla |
| 26228 |
nethack new security issue(s) fixed upstream in 3.6.6 |
Shlomi Fish |
7 |
|
2020-02-20 |
119 |
Bugzilla |
| 26270 |
sqlite3 new security issues CVE-2019-1992[3-5], CVE-2019-19959, CVE-2019-20218, CVE-2020-6405, CVE-2[...] |
Thierry Vignaud |
7 |
Patches available from Google and Ubuntu |
2020-02-27 |
25 |
Bugzilla |
| 26358 |
u-boot new security issues CVE-2020-8432 and CVE-2020-10648 |
Olivier Blin |
Cauldron, 7 |
Patches proposed upstream |
2020-03-18 |
18 |
Bugzilla |
| 26521 |
mysql-workbench new security issues CVE-2019-14889, CVE-2019-15601, CVE-2019-19646 |
All Packagers |
Cauldron, 7 |
|
2020-04-21 |
190 |
Bugzilla |
| 26530 |
puppet new security issues CVE-2018-11751 and CVE-2020-794[23] |
All Packagers |
Cauldron, 7 |
|
2020-04-23 |
31 |
Bugzilla |
| 26541 |
log4j, log4j12 new security issue CVE-2020-9488 |
Java Stack Maintainers |
Cauldron, 7 |
|
2020-04-26 |
68 |
Bugzilla |
| 26549 |
re2c new infinite loop security issue (CVE-2018-21232) |
All Packagers |
Cauldron, 7 |
Apparently not fully fixed upstream as of 2.0.3 |
2020-04-27 |
77 |
Bugzilla |
| 26556 |
snakeyaml new security issue CVE-2017-18640 |
Java Stack Maintainers |
7 |
Fixed upstream in 1.26 |
2020-04-28 |
189 |
Bugzilla |
| 26614 |
python-virtualenv possible new security issues due to bundled urllib3 and requests |
Python Stack Maintainers |
7 |
|
2020-05-12 |
201 |
Bugzilla |
| 26629 |
python-beaker new security issue due to deserialization of untrusted data CVE-2013-7489 |
Philippe Makowski |
Cauldron, 7 |
No fix available as of May 2020 |
2020-05-15 |
95 |
Bugzilla |
| 26658 |
trousers new security issues in tscd (CVE-2020-2433[0-2]) |
Nicolas Lécureuil |
7 |
|
2020-05-21 |
12 |
Bugzilla |
| 26751 |
graphicsmagick new security issue CVE-2020-12672 |
Stig-Ørjan Smelror |
Cauldron, 7 |
|
2020-06-09 |
173 |
Bugzilla |
| 26756 |
sympa new security issues CVE-2020-10936 and CVE-2020-26880 |
Nicolas Salguero |
Cauldron, 7 |
|
2020-06-09 |
10 |
Bugzilla |
| 26757 |
perl-Email-MIME, perl-Email-MIME-ContentType new DoS security issue |
All Packagers |
7 |
|
2020-06-09 |
171 |
Bugzilla |
| 26800 |
batik new security issue CVE-2019-17566 |
Java Stack Maintainers |
7 |
Fixed upstream in 1.13 |
2020-06-15 |
87 |
Bugzilla |
| 26854 |
fwupd new security issue CVE-2020-10759 |
Thierry Vignaud |
7 |
|
2020-06-24 |
24 |
Bugzilla |
| 26859 |
trojita new security issue CVE-2020-15047 |
David GEIGER |
7 |
|
2020-06-25 |
156 |
Bugzilla |
| 26880 |
alpine, c-client new security issue CVE-2020-14929 |
Christiaan Welvaart |
Cauldron, 7 |
|
2020-07-01 |
144 |
Bugzilla |
| 26914 |
openexr new security issues CVE-2020-1530[4-6] |
All Packagers |
7 |
|
2020-07-07 |
84 |
Bugzilla |
| 26931 |
xrdp new security issue CVE-2020-4044 |
David GEIGER |
7 |
|
2020-07-10 |
117 |
Bugzilla |
| 27018 |
grub2 new security issues CVE-2020-10713, CVE-2020-1430[89], CVE-2020-1431[01], CVE-2020-1570[5-7] |
All Packagers |
Cauldron, 7 |
Fixed upstream in 2.06 |
2020-07-29 |
47 |
Bugzilla |
| 27034 |
net-snmp new security issues CVE-2019-20892, CVE-2020-15861, and CVE-2020-15862 |
Nicolas Salguero |
7 |
|
2020-08-04 |
16 |
Bugzilla |
| 27043 |
systemd new security issue CVE-2020-13776 |
Stig-Ørjan Smelror |
7 |
|
2020-08-05 |
116 |
Bugzilla |
| 27108 |
libcroco new security issue CVE-2020-12825 (and others unfixed due to it being unmaintained) |
All Packagers |
Cauldron, 7 |
|
2020-08-14 |
46 |
Bugzilla |
| 27131 |
Possible missing security fixes in several libraries used by PHP modules |
Marc Krämer |
7 |
|
2020-08-18 |
53 |
|
| 27154 |
curl new security issue CVE-2020-8231 |
Shlomi Fish |
7 |
|
2020-08-20 |
47 |
Bugzilla |
| 27164 |
bind new security issues CVE-2020-862[2-4] |
Guillaume Rousse |
7 |
|
2020-08-21 |
19 |
Bugzilla |
| 27167 |
htmlunit new security issue CVE-2020-5529 |
Java Stack Maintainers |
7 |
|
2020-08-21 |
44 |
Bugzilla |
| 27171 |
perl-PlRPC new security issue CVE-2013-7284 |
All Packagers |
Cauldron, 7 |
Package should be dropped |
2020-08-21 |
100 |
Bugzilla |
| 27200 |
guile1.8 missing fixes for CVE-2016-8605 and CVE-2016-8606 |
All Packagers |
7 |
|
2020-08-26 |
94 |
Bugzilla |
| 27212 |
mongodb new security issue CVE-2020-7923 |
Joseph Wang |
Cauldron, 7 |
|
2020-08-27 |
93 |
Bugzilla |
| 27218 |
qtbase5 new security issue CVE-2020-13962 |
KDE maintainers |
7 |
|
2020-08-28 |
25 |
Bugzilla |
| 27231 |
filezilla new security issue CVE-2020-14002 due to bundled PuTTY |
David GEIGER |
7 |
|
2020-08-31 |
90 |
Bugzilla |
| 27232 |
neomutt new security issues CVE-2020-14093, CVE-2020-14154, and CVE-2020-14954 |
Stig-Ørjan Smelror |
7 |
|
2020-08-31 |
64 |
Bugzilla |
| 27300 |
libxml2 new security issue CVE-2020-24977 |
Shlomi Fish |
Cauldron, 7 |
|
2020-09-22 |
14 |
Bugzilla |
| 27301 |
python-pip new security issue CVE-2020-20916 |
Python Stack Maintainers |
7 |
|
2020-09-22 |
25 |
Bugzilla |
| 27303 |
gnome-shell new security issue CVE-2020-17489 |
GNOME maintainers |
7 |
|
2020-09-22 |
18 |
Bugzilla |
| 27304 |
perl-DBI new security issues CVE-2019-20919, CVE-2020-14392, CVE-2020-14393 |
All Packagers |
7 |
|
2020-09-22 |
65 |
Bugzilla |
| 27305 |
compat-openssl10 new security issue CVE-2020-1968 |
Nicolas Salguero |
7 |
|
2020-09-22 |
67 |
Bugzilla |
| 27307 |
busybox new security issue CVE-2018-1000500 |
Shlomi Fish |
7 |
|
2020-09-22 |
68 |
Bugzilla |
| 27329 |
libraw new security issue CVE-2020-24890 |
All Packagers |
7 |
|
2020-09-26 |
60 |
Bugzilla |
| 27385 |
libass new integer overflow security issue (CVE-2020-26682) |
All Packagers |
Cauldron, 7 |
|
2020-10-11 |
6 |
Bugzilla |
| 27386 |
ant new security issue CVE-2020-11979 |
Java Stack Maintainers |
7 |
Fixed upstream in 1.10.9 |
2020-10-11 |
33 |
Bugzilla |
| 27388 |
libvirt new security issue CVE-2020-25637 |
All Packagers |
7 |
|
2020-10-11 |
19 |
Bugzilla |
| 27389 |
httpcomponents-client new security issue CVE-2020-13956 |
Java Stack Maintainers |
Cauldron, 7 |
|
2020-10-11 |
45 |
Bugzilla |
| 27407 |
python-urllib3 new security issue CVE-2020-26137 |
Philippe Makowski |
7 |
|
2020-10-13 |
9 |
Bugzilla |
| 27487 |
pagure new security issue CVE-2019-11556 |
Neal Gompa |
7 |
Fixed upstream in 5.6 |
2020-10-29 |
5 |
Bugzilla |
| 27560 |
qtwebsockets5 new security issue CVE-2018-21035 |
KDE maintainers |
7 |
|
2020-11-04 |
25 |
Bugzilla |
| 27566 |
gdm new security issue CVE-2020-16125 |
GNOME maintainers |
Cauldron, 7 |
|
2020-11-06 |
6 |
Bugzilla |
| 27568 |
spice-vdagent new security issues CVE-2020-2565[0-3] |
AL13N |
Cauldron, 7 |
|
2020-11-06 |
22 |
Bugzilla |
| 27593 |
guacd new security issue CVE-2020-949[78] |
Java Stack Maintainers |
Cauldron, 7 |
Fixed upstream in 1.2.0 |
2020-11-11 |
18 |
Bugzilla |
| 27594 |
krb5 new security issue CVE-2020-28196 |
Guillaume Rousse |
7 |
Fixed upstream in 1.17.2 |
2020-11-11 |
6 |
Bugzilla |
| 27606 |
tor new security issues fixed upstream in 0.3.5.12 |
Jani Välimaa |
Cauldron, 7 |
|
2020-11-14 |
6 |
Bugzilla |
| 27625 |
openldap new security issues CVE-2020-25709 and CVE-2020-25710 |
Buchan Milne |
7 |
|
2020-11-17 |
12 |
Bugzilla |
| 27626 |
mediainfo new security issue CVE-2020-15395 |
All Packagers |
7 |
|
2020-11-17 |
11 |
Bugzilla |
| 27649 |
jetty new security issue CVE-2020-27216 |
Java Stack Maintainers |
7 |
|
2020-11-23 |
6 |
Bugzilla |
| 27650 |
golang new security issues CVE-2020-2836[267] |
Joseph Wang |
7 |
|
2020-11-23 |
3 |
Bugzilla |
| 27654 |
c-ares possible new security issues fixed upstream in 1.17.1 |
Shlomi Fish |
7 |
|
2020-11-23 |
4 |
Bugzilla |
| 27655 |
dash new security issue bdo#58288 / bsc#1178978 |
Shlomi Fish |
7 |
|
2020-11-23 |
4 |
Bugzilla |
| 27663 |
opensc new security issues CVE-2020-26570, CVE-2020-26571 and CVE-2020-26572 |
Sander Lepik |
7 |
|
2020-11-24 |
4 |
Bugzilla |
| 27664 |
php-pear-Archive_Tar new security issues CVE-2020-28948, CVE-2020-28949 |
Marc Krämer |
Cauldron, 7 |
|
2020-11-24 |
2 |
Bugzilla |
| 27678 |
privoxy 3.0.29 fixes security issues |
Christiaan Welvaart |
7 |
|
2020-11-28 |
0 |
Bugzilla |