Queue Overview for "proposed-updates"
TODO items
- Skip: [check nearer release] gss, kexec-tools, python-django
Removals
- #1101971: viagee - no longer able to connect to gmail
List of missing builds
List of missing packages relative to security archive
Resolution Pending (5 uploads for 5 packages)
| Package | Version | Version Problems | Installability Problems | Architectures | Action |
|---|---|---|---|---|---|
| chromium | 135.0.7049.95-1~deb12u1 | Version problems testing (135.0.7049.52-1) | Installability problems | Built: allamd64arm64armhfi386source Missing: ppc64el | ? |
|
DSA: 5903 Closes: 1103226 CVEs referenced: CVE-2025-3619 CVE-2025-3620 |
|||||
| fig2dev | 1:3.2.8b-3+deb12u1 | Installability problems | Built: source | ? | |
|
CVEs referenced: CVE-2025-31162 CVE-2025-31163 CVE-2025-31164 |
|||||
| graphicsmagick | 1.4+really1.3.40-4+deb12u1 | Installability problems | Built: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource | ? | |
|
DSA: 5905 Closes: 1099955 CVEs referenced: CVE-2025-27795 CVE-2025-32460 Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x |
|||||
| libapache2-mod-auth-openidc | 2.4.12.3-2+deb12u3 | Installability problems | Built: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource | ? | |
|
DSA: 5904 Closes: 1102413 CVEs referenced: CVE-2025-31492 |
|||||
| openssl | 3.0.16-1~deb12u1 | Installability problems | Built: source | ? | |
|
µdebs: present Closes: 1094027 CVEs referenced: CVE-2024-13176 |
|||||
Pending Processing (0 uploads for 0 packages)
Processed (51 uploads for 47 packages)
| Package | Version | Version Problems | Installability Problems | Action |
|---|---|---|---|---|
| adonthell | 0.3.8-2.1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: fix compatibility with SWIG 4.1 Request: 1102786 Closes: 1029043 |
||||
| atop | 2.8.1-1+deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5892 CVEs referenced: CVE-2025-31160 |
||||
| chromium | 135.0.7049.84-1~deb12u1 | Version problems testing (135.0.7049.52-1) | Installability problems | ACCEPTED |
|
DSA: 5898 Closes: 1101978 CVEs referenced: CVE-2025-3066 |
||||
| chromium | 135.0.7049.52-1~deb12u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 5890 CVEs referenced: CVE-2025-3066 CVE-2025-3067 CVE-2025-3068 CVE-2025-3069 CVE-2025-3070 CVE-2025-3071 CVE-2025-3072 CVE-2025-3073 CVE-2025-3074 |
||||
| chromium | 134.0.6998.117-1~deb12u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 5882 CVEs referenced: CVE-2025-2476 |
||||
| chromium | 134.0.6998.88-1~deb12u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 5877 CVEs referenced: CVE-2025-1920 CVE-2025-2135 CVE-2025-2136 CVE-2025-2137 CVE-2025-24201 |
||||
| debian-archive-keyring | 2023.3+deb12u2 | Installability problems c-i failed: gnupg2/2.2.40-1.1 [amd64] gnupg2/2.2.40-1.1 [arm64] gnupg2/2.2.40-1.1 [armel] gnupg2/2.2.40-1.1 [armhf] gnupg2/2.2.40-1.1 [i386] gnupg2/2.2.40-1.1 [ppc64el] gnupg2/2.2.40-1.1 [s390x] mmdebstrap/1.3.5-7 [s390x] | ACCEPTED | |
|
Reason: add archive signing and SRM keys for trixie (Debian 13); move buster (Debian 10) keys to removed keyring Request: 1102630 µdebs: present Closes: 1099223 1100828 1100829 Binary debdiffs: all |
||||
| dpdk | 22.11.8-1~deb12u1 | Installability problems | ACCEPTED | |
|
Reason: new upstream stable release Request: 1102468 Binary debdiffs: arm64 |
||||
| exim4 | 4.96-15+deb12u7 | Installability problems | ACCEPTED | |
|
DSA: 5887 CVEs referenced: CVE-2025-30232 |
||||
| firefox-esr | 128.9.0esr-1~deb12u1 | Installability problems | ACCEPTED | |
|
Missing builds: mips64el DSA: 5889 CVEs referenced: CVE-2025-3028 CVE-2025-3029 CVE-2025-3030 |
||||
| freetype | 2.12.1+dfsg-5+deb12u4 | Installability problems | ACCEPTED | |
|
DSA: 5880 µdebs: present CVEs referenced: CVE-2025-27363 |
||||
| gcc-12 | 12.2.0-14+deb12u1 | Installability problems all c-i failed: dune-grid/2.9.0-2 [s390x] opensaml/3.2.1-3 [arm64] thunderbird/1:115.16.0esr-1~deb12u1 [s390x] | ACCEPTED | |
|
Reason: fix -fstack-protector handling of overflows on AArch64 [CVE-2023-4039] Request: 1055211 CVEs referenced: CVE-2023-4039 Binary debdiffs: all Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource |
||||
| ghostscript | 10.0.0~dfsg-11+deb12u7 | Installability problems | ACCEPTED | |
|
DSA: 5888 CVEs referenced: CVE-2025-27830 CVE-2025-27831 CVE-2025-27832 CVE-2025-27833 CVE-2025-27834 CVE-2025-27835 CVE-2025-27836 |
||||
| glib2.0 | 2.74.6-2+deb12u6 | Installability problems c-i failed: thunderbird/1:115.16.0esr-1~deb12u1 [s390x] | ACCEPTED | |
|
Reason: fix integer overflow in g_date_time_new_from_iso8601() [CVE-2025-3360] Request: 1103051 µdebs: present CVEs referenced: CVE-2025-3360 |
||||
| gss | 1.0.4-1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: fix FTBFS caused by an expired Kerberos ticket Missing builds: armel armhf i386 mipsel Request: 1091842 Closes: 1076885 |
||||
| igtf-policy-bundle | 1.133-1~deb12u1 | Installability problems | ACCEPTED | |
|
Reason: backport current policy bundle Request: 1099596 Binary debdiffs: all Lintian issues: all |
||||
| jetty9 | 9.4.57-0+deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5894 CVEs referenced: CVE-2024-6762 CVE-2024-8184 CVE-2024-9823 Binary debdiffs: all |
||||
| kexec-tools | 1:2.0.25-3+deb12u2 | Installability problems | ACCEPTED | |
|
Reason: fix path for systemd units with merged /usr; drop depedencies no longer required Request: 1086622 µdebs: present Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x
systemd change not required; do not release
|
||||
| krb5 | 1.20.1-2+deb12u3 | Installability problems | ACCEPTED | |
|
Reason: fix memory leak in ndr.c [CVE-2024-26462]; prevent buffer overflow when calculating ulog buffer size [CVE-2025-24528] Request: 1100421 CVEs referenced: CVE-2024-26462 CVE-2025-24528 |
||||
| lemonldap-ng | 2.16.1+ds-deb12u6 | Installability problems | ACCEPTED | |
|
DSA: 5897 CVEs referenced: CVE-2025-31510 |
||||
| libcap2 | 1:2.66-4+deb12u1 | Installability problems c-i failed: mmdebstrap/1.3.5-7 [s390x] | ACCEPTED | |
|
Reason: fix incorrect recognition of group names [CVE-2025-1390] Request: 1100611 µdebs: present Closes: 1098318 CVEs referenced: CVE-2025-1390 |
||||
| libdata-entropy-perl | 0.007-4+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: seed entropy pool with urandom by default [CVE-2025-1860] Request: 1101746 CVEs referenced: CVE-2025-1860 Binary debdiffs: all |
||||
| libsub-handlesvia-perl | 0.050000-1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: fix arbitrary code execution issue [CVE-2025-30673] Request: 1101887 CVEs referenced: CVE-2025-30673 |
||||
| libxslt | 1.1.35-1+deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5884 CVEs referenced: CVE-2024-55549 CVE-2025-24855 Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| linux | 6.1.133-1 | Installability problems | ACCEPTED | |
|
DSA: 5900 µdebs: present Closes: 1050352 1085949 1088682 1100746 1100928 CVEs referenced: CVE-2023-52857 CVE-2024-24855 CVE-2024-26656 CVE-2024-26767 CVE-2024-26982 CVE-2024-27056 CVE-2024-35866 CVE-2024-38611 CVE-2024-40973 CVE-2024-43831 CVE-2024-46772 CVE-2024-47753 CVE-2024-47754 CVE-2024-50056 CVE-2024-50246 CVE-2024-53166 CVE-2024-57977 CVE-2024-58002 CVE-2024-58079 CVE-2025-21702 CVE-2025-21756 CVE-2025-21838 CVE-2025-21918 Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| linux-signed-amd64 | 6.1.133+1 | Installability problems amd64 | ACCEPTED | |
|
DSA: 5900 µdebs: present Closes: 1050352 1085949 1088682 1100746 1100928 CVEs referenced: CVE-2023-52857 CVE-2024-24855 CVE-2024-26656 CVE-2024-26767 CVE-2024-26982 CVE-2024-27056 CVE-2024-35866 CVE-2024-38611 CVE-2024-40973 CVE-2024-43831 CVE-2024-46772 CVE-2024-47753 CVE-2024-47754 CVE-2024-50056 CVE-2024-50246 CVE-2024-53166 CVE-2024-57977 CVE-2024-58002 CVE-2024-58079 CVE-2025-21702 CVE-2025-21756 CVE-2025-21838 CVE-2025-21918 Binary debdiffs: amd64 |
||||
| linux-signed-arm64 | 6.1.133+1 | Installability problems arm64 | ACCEPTED | |
|
DSA: 5900 µdebs: present Closes: 1050352 1085949 1088682 1100746 1100928 CVEs referenced: CVE-2023-52857 CVE-2024-24855 CVE-2024-26656 CVE-2024-26767 CVE-2024-26982 CVE-2024-27056 CVE-2024-35866 CVE-2024-38611 CVE-2024-40973 CVE-2024-43831 CVE-2024-46772 CVE-2024-47753 CVE-2024-47754 CVE-2024-50056 CVE-2024-50246 CVE-2024-53166 CVE-2024-57977 CVE-2024-58002 CVE-2024-58079 CVE-2025-21702 CVE-2025-21756 CVE-2025-21838 CVE-2025-21918 Binary debdiffs: arm64 |
||||
| linux-signed-i386 | 6.1.133+1 | Installability problems i386 | ACCEPTED | |
|
DSA: 5900 µdebs: present Closes: 1050352 1085949 1088682 1100746 1100928 CVEs referenced: CVE-2023-52857 CVE-2024-24855 CVE-2024-26656 CVE-2024-26767 CVE-2024-26982 CVE-2024-27056 CVE-2024-35866 CVE-2024-38611 CVE-2024-40973 CVE-2024-43831 CVE-2024-46772 CVE-2024-47753 CVE-2024-47754 CVE-2024-50056 CVE-2024-50246 CVE-2024-53166 CVE-2024-57977 CVE-2024-58002 CVE-2024-58079 CVE-2025-21702 CVE-2025-21756 CVE-2025-21838 CVE-2025-21918 Binary debdiffs: i386 |
||||
| mediawiki | 1:1.39.12-1~deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5901 CVEs referenced: CVE-2025-32696 CVE-2025-32697 CVE-2025-32698 CVE-2025-32699 CVE-2025-32700 CVE-2025-3469 Binary debdiffs: all |
||||
| mercurial | 6.3.2-1+deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5883 Closes: 1100899 CVEs referenced: CVE-2023-27043 CVE-2025-2361 Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| network-manager | 1.42.4-1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: fix crash dereferencing NULL pointer during debug logging [CVE-2024-6501] Request: 1101067 Closes: 1076294 CVEs referenced: CVE-2024-6501 |
||||
| nginx | 1.22.1-9+deb12u2 | Installability problems i386 mipsel s390x | ACCEPTED | |
|
Reason: fix buffer underread and unordered chunk vulnerabilities in mp4 [CVE-2024-7347] Request: 1100336 CVEs referenced: CVE-2024-7347 Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| opensaml | 3.2.1-3+deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5879 Closes: 1100464 |
||||
| perl | 5.36.0-7+deb12u2 | Installability problems c-i failed: mmdebstrap/1.3.5-7 [s390x] monitoring-plugins-check-logfiles/4.1.1-3 [armel] | ACCEPTED | |
|
DSA: 5902 CVEs referenced: CVE-2024-56406 Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| php8.2 | 8.2.28-1~deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5878 CVEs referenced: CVE-2025-1217 CVE-2025-1219 CVE-2025-1734 CVE-2025-1736 CVE-2025-1861 Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| phpmyadmin | 4:5.2.1+dfsg-1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: fix XSS vulnerabilities [CVE-2025-24529 CVE-2025-24530] Request: 1102399 CVEs referenced: CVE-2025-24529 CVE-2025-24530 |
||||
| policyd-rate-limit | 1.0.1.1-2.1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: Fix startup with newer python3-yaml Request: 1101993 Closes: 1022034 |
||||
| python-django | 3:3.2.19-1+deb12u2 | Installability problems c-i failed: python-django-storages/1.13.2-1 [amd64] python-django-storages/1.13.2-1 [arm64] python-django-storages/1.13.2-1 [armel] python-django-storages/1.13.2-1 [armhf] python-django-storages/1.13.2-1 [i386] python-django-storages/1.13.2-1 [ppc64el] python-django-storages/1.13.2-1 [s390x] | ACCEPTED | |
|
Reason: fix regular expression-based denial of service issue [CVE-2023-36053], denial of service issues [CVE-2024-38875 CVE-2024-39614 CVE-2024-41990 CVE-2024-41991], user enumeration issue [CVE-2024-39329], directory traversal issue [CVE-2024-39330], excessive memory consumption issue [CVE-2024-41989], SQL injection issue [CVE-2024-42005] Request: 1079454 CVEs referenced: CVE-2023-36053 CVE-2024-38875 CVE-2024-39329 CVE-2024-39330 CVE-2024-39614 CVE-2024-41989 CVE-2024-41990 CVE-2024-41991 CVE-2024-42005 Binary debdiffs: all Lintian issues: all |
||||
| qtbase-opensource-src | 5.15.8+dfsg-11+deb12u3 | Installability problems | ACCEPTED | |
|
Reason: delay HTTP2 communication until encrypted() can be responded to [CVE-2024-39936]; fix crash with null checks in table iface methods Request: 1101301 CVEs referenced: CVE-2024-39936 |
||||
| rails | 2:6.1.7.10+dfsg-1~deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5881 Closes: 1051057 1051058 1065119 1072705 1085376 1089755 CVEs referenced: CVE-2023-28362 CVE-2023-38037 CVE-2024-26144 CVE-2024-28103 CVE-2024-41128 CVE-2024-47887 CVE-2024-47888 CVE-2024-47889 CVE-2024-54133 Binary debdiffs: all |
||||
| renaissance | 0.9.0-4.1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: avoid exception on startup Request: 1099673 Closes: 1095596 Binary debdiffs: all |
||||
| ruby-rack | 2.2.13-1~deb12u1 | Installability problems | ACCEPTED | |
|
DSA: 5886 Closes: 1098257 1099546 1100444 CVEs referenced: CVE-2025-25184 CVE-2025-27111 CVE-2025-27610 Binary debdiffs: all |
||||
| thunderbird | 1:128.9.0esr-1~deb12u1 | Installability problems | ACCEPTED | |
|
Missing builds: mips64el s390x DSA: 5891 Binary debdiffs: amd64arm64i386ppc64el Lintian issues: i386 |
||||
| tomcat10 | 10.1.34-0+deb12u2 | Installability problems | ACCEPTED | |
|
DSA: 5893 CVEs referenced: CVE-2025-24813 Binary debdiffs: all Lintian issues: all |
||||
| trafficserver | 9.2.5+ds-0+deb12u2 | Installability problems | ACCEPTED | |
|
DSA: 5896 |
||||
| tzdata | 2025b-0+deb12u1 | Installability problems c-i failed: mmdebstrap/1.3.5-7 [s390x] | ACCEPTED | |
|
Reason: new America/Coyhaique zone for Aysén Region in Chile Request: 1101389 Binary debdiffs: all |
||||
| varnish | 7.1.1-1.1+deb12u1 | Installability problems | ACCEPTED | |
|
Reason: prevent HTTP/1 client-side desync [CVE-2025-30346] Request: 1101775 CVEs referenced: CVE-2025-30346 |
||||
| webkit2gtk | 2.48.1-2~deb12u1 | Installability problems | ACCEPTED | |
|
Missing builds: mipsel DSA: 5899 Binary debdiffs: amd64arm64armelarmhfi386mips64elppc64els390x |
||||
| webkit2gtk | 2.48.0-1~deb12u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 5885 Binary debdiffs: allamd64arm64armelarmhfi386mips64elppc64els390x Lintian issues: mips64el |
||||
| xmedcon | 0.23.0-gtk3+dfsg-1+deb12u2 | Installability problems | ACCEPTED | |
|
Reason: fix buffer overflow [CVE-2025-2581] Request: 1101064 Closes: 1100986 CVEs referenced: CVE-2025-2581 Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||
| xz-utils | 5.4.1-1 | Installability problems | ACCEPTED | |
|
DSA: 5895 CVEs referenced: CVE-2025-31115 Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x |
||||