Queue Overview for "proposed-updates"

List of missing builds
List of missing packages relative to security archive

Resolution Pending (15 uploads for 15 packages)

Package Version Version Problems Installability Problems Architectures Action
horizon 3:14.0.2-3+deb10u1 Installability problems Built: source More info needed

Reason: fix change of WEBROOT

Request: 945592

Queries on changes; could also do with better description
         
ircd-hybrid 1:8.2.24+dfsg.1-1+deb10u1 Installability problems Built: source ?

Closes: 932774

mailutils 1:3.5-4 Installability problems Built: source More info needed

Reason: maidag: drop setuid privileges for all delivery operations but mda [CVE-2019-18862]

Closes: 944265

CVEs referenced: CVE-2019-18862

Awaiting fix in unstable (and potential version change)
         
ncbi-blast+ 2.8.1-1+deb10u1 Installability problems Built: source ?

Closes: 951280

octavia 3.0.0-3+deb10u1 Installability problems Built: source More info needed

Reason: some changes need further discussion; too late for 10.2

Request: 941901

Closes: 941897

CVEs referenced: CVE-2019-17134

opensmtpd 6.0.3p1-5+deb10u4 Installability problems Built: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390xsource ?

DSA: 4634

Closes: 952453

CVEs referenced: CVE-2020-8794

php7.3 7.3.14-1~deb10u1 Installability problems Built: allamd64armelarmhfi386mipsmips64elmipselppc64els390xsource Missing: arm64 Ok

DSA: 4626

postfix 3.4.9-0+10debu1 Installability problems Built: source ?

Closes: 920356 944922

proftpd-dfsg 1.3.6-4+deb10u4 Installability problems Built: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390xsource ?

DSA: 4635

Closes: 951800

CVEs referenced: CVE-2020-9273

python-bleach 3.1.1-0+deb10u1 Installability problems Built: allsource ?

DSA: 4636

Closes: 951907

CVEs referenced: CVE-2020-6802

Binary debdiffs: all

samba 2:4.9.5+dfsg-5+deb10u1 Installability problems Built: allsource Missing: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x Ok

DSA: 4513

CVEs referenced: CVE-2019-10197

softflowd 0.9.9-5+deb10u1 Installability problems Built: source ?
sssd 1.16.3-3.2 Installability problems Built: amd64source ?

Closes: 946847

thunderbird 1:68.5.0-1~deb10u1 Installability problems Built: allamd64arm64i386mips64elppc64els390xsource Missing: armelarmhf Ok

DSA: 4625

Closes: 891848

Lintian issues: allamd64arm64i386mips64elppc64els390xsource

webkit2gtk 2.26.4-1~deb10u1 Installability problems Built: allamd64arm64armelarmhfmipsmips64elmipselppc64els390xsource Missing: i386 Ok

DSA: 4627

Binary debdiffs: allamd64arm64armelarmhfmipsmips64elmipselppc64els390x

Lintian issues: mipsmips64elmipselsource

Pending Processing (0 uploads for 0 packages)

Processed (19 uploads for 16 packages)

Package Version Version Problems Installability Problems Action
apt-cacher-ng 3.2.1-1 Installability problems ACCEPTED

Reason: enforce secured call to the server in maint job triggering [CVE-2020-5202]; allow .zst compression for tarballs; incrase size of the decompression line buffer for config file reading

Request: 948786

Closes: 948259

CVEs referenced: CVE-2020-5202

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

clamav 0.102.2+dfsg-0+deb10u1 Installability problems ACCEPTED

Reason: new upstream release [CVE-2020-3123]

Request: 951871

Closes: 950944 951057

CVEs referenced: CVE-2020-3123

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: source

curl 7.64.0-4+deb10u1 Installability problems REJECTED_PERMANENTLY:prometheus-sql-exporter/0.2.0.ds-6 [ppc64el]syslog-ng/3.19.1-5 [ppc64el]xandikos/0.0.11-2 [ppc64el] ACCEPTED

DSA: 4633

Closes: 940009 940010

CVEs referenced: CVE-2019-5481 CVE-2019-5482

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

evince 3.30.2-3+deb10u1 Installability problems ACCEPTED

DSA: 4624

Closes: 927820

CVEs referenced: CVE-2019-11459

firefox-esr 68.5.0esr-1~deb10u1 Installability problems ACCEPTED

DSA: 4620

CVEs referenced: CVE-2020-6796 CVE-2020-6798 CVE-2020-6800

Lintian issues: armhfi386mipsmipselsource

libexif 0.6.21-5.1+deb10u1 Installability problems ACCEPTED

DSA: 4618

Closes: 945948

CVEs referenced: CVE-2019-9278

libxmlrpc3-java 3.1.3-9+deb10u1 Installability problems ACCEPTED

DSA: 4619

Closes: 949089

CVEs referenced: CVE-2019-17570

Binary debdiffs: all

Lintian issues: all

node-handlebars 3:4.1.0-1+deb10u1 Installability problems REJECTED_PERMANENTLY:node-markdown-it-html5-embed/1.0.0+ds-2 [amd64]node-markdown-it-html5-embed/1.0.0+ds-2 [arm64]node-markdown-it-html5-embed/1.0.0+ds-2 [ppc64el] ACCEPTED

Reason: disallow calling "helperMissing" and "blockHelperMissing" directly [CVE-2019-19919]

Request: 947758

CVEs referenced: CVE-2019-19919

CI: the maintainer wants to look into it and deferred it from the point release
         
node-handlebars 3:4.1.0-1+deb10u1~ Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: disallow calling "helperMissing" and "blockHelperMissing" directly [CVE-2019-19919]

Request: 947758

CVEs referenced: CVE-2019-19919

nvidia-settings-legacy-340xx 340.108-1~deb10u1 Installability problems ACCEPTED

Reason: new upstream release

Request: 950765

Lintian issues: source

pillow 5.4.1-2+deb10u1 Installability problems ACCEPTED

DSA: 4631

CVEs referenced: CVE-2019-16865 CVE-2019-19911 CVE-2020-5311 CVE-2020-5312 CVE-2020-5313

postgresql-11 11.7-0+deb10u1 Installability problems ACCEPTED

DSA: 4623

CVEs referenced: CVE-2020-1720

Binary debdiffs: all

CI: elbrus checking 2020-02-20; suspect flaky on arm64; astrisk doesn't seem flaky (retrying anyways)
         
postgresql-11 11.7-0+deb10u1~ Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4623

ppp 2.4.7-2+4.1+deb10u1 Version problems testing (2.4.7-2+4.1) ppp/testing [amd64] (2.4.7-2+4.1+b1) ppp-udeb/testing [amd64] (2.4.7-2+4.1+b1) Installability problems ACCEPTED

DSA: 4632

┬Ádebs: present

Closes: 950618

CVEs referenced: CVE-2020-8597

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

python-django 1:1.11.28-1~deb10u1 Installability problems ACCEPTED

DSA: 4629

Closes: 950581

CVEs referenced: CVE-2020-7471

Binary debdiffs: all

python-pysaml2 4.5.0-4+deb10u1 Installability problems ACCEPTED

DSA: 4630

Closes: 949227 949322

CVEs referenced: CVE-2020-5390

Binary debdiffs: all

qemu 1:3.1+dfsg-8+deb10u4 Installability problems ACCEPTED

DSA: 4616

Closes: 939869 946210 949731

CVEs referenced: CVE-2019-15890 CVE-2020-1711 CVE-2020-7039

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

qtbase-opensource-src 5.11.3+dfsg1-1+deb10u3 Installability problems ACCEPTED

DSA: 4617

CVEs referenced: CVE-2020-0569 CVE-2020-0570

CI: bluez-qt looks flaky on arm64
         
qtbase-opensource-src 5.11.3+dfsg1-1+deb10u3~ Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4617