Queue Overview for "proposed-updates"

List of missing builds
List of missing packages relative to security archive

Resolution Pending (9 uploads for 7 packages)

Package Version Version Problems Installability Problems Architectures Action
ceph 14.2.21-1+deb11u1 Installability problems Built: source More info needed

Reason: avoid privilege escalation

Request: 1026078

Closes: 1024932

CVEs referenced: CVE-2022-3650

Upload does not match approved diff
         
chromium 111.0.5563.110-1~deb11u1 Version problems testing (111.0.5563.64-1) Installability problems Built: allamd64armhfi386ppc64elsource Missing: arm64 ?

DSA: 5377

Closes: 1015367 1033015 1033223

CVEs referenced: CVE-2023-1528 CVE-2023-1529 CVE-2023-1530 CVE-2023-1531 CVE-2023-1532 CVE-2023-1533 CVE-2023-1534

emacs 1:27.1+1-3.1+deb11u2 Installability problems Built: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource More info needed

DSA: 5360

Closes: 1031730

CVEs referenced: CVE-2022-48337 CVE-2022-48338 CVE-2022-48339

Broken on mips64el
         
firefox-esr 102.9.0esr-1~deb11u1 Installability problems Built: allamd64arm64i386ppc64els390xsource Missing: armhfmips64elmipsel Ok

DSA: 5374

CVEs referenced: CVE-2023-25751 CVE-2023-25752 CVE-2023-28162 CVE-2023-28164 CVE-2023-28176

Lintian issues: allamd64arm64i386ppc64els390xsource

firefox-esr 102.8.0esr-1~deb11u1 Installability problems Built: allamd64arm64i386ppc64els390xsource Missing: armhfmips64elmipsel Ok

DSA: 5350

CVEs referenced: CVE-2023-0767 CVE-2023-25728 CVE-2023-25729 CVE-2023-25730 CVE-2023-25732 CVE-2023-25735 CVE-2023-25737 CVE-2023-25739 CVE-2023-25742 CVE-2023-25744 CVE-2023-25746

Lintian issues: allamd64arm64i386ppc64els390xsource

intel-microcode 3.20230214.1~deb11u1 Version problems testing (3.20221108.2) Installability problems Built: source ?

Closes: 1031334

CVEs referenced: CVE-2022-21216 CVE-2022-21233 CVE-2022-33196 CVE-2022-33972 CVE-2022-38090

Lintian issues: source

puma 4.3.8-1+deb11u2 Installability problems Built: amd64arm64armhfi386mips64elmipselsource Missing: armelppc64els390x Ok

DSA: 5146

CVEs referenced: CVE-2021-41136

puma 4.3.8-1+deb11u1 Installability problems Built: amd64armeli386mips64elmipselppc64elsource Missing: arm64armhfs390x Ok

DSA: 5146

Closes: 1005391 1008723

CVEs referenced: CVE-2022-23634 CVE-2022-24790

snort 2.9.20-0+deb11u1 Installability problems Built: allamd64arm64armelarmhfi386mips64elmipselppc64elsource More info needed

DSA: 5354

CVEs referenced: CVE-2020-3299 CVE-2020-3315 CVE-2021-1223 CVE-2021-1224 CVE-2021-1236 CVE-2021-1494 CVE-2021-1495 CVE-2021-34749 CVE-2021-40114

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64el

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64elsource

Version greater than sid, sec suggest removal
         

Pending Processing (0 uploads for 0 packages)

Processed (146 uploads for 109 packages)

Package Version Version Problems Installability Problems Action
akregator 4:20.08.3-1+deb11u1 Installability problems ACCEPTED

Reason: fix validity checks, including fixing deletion of feeds and folders

Request: 1028571

Closes: 1027689

Lintian issues: source

apache2 2.4.56-1~deb11u1 Installability problems ACCEPTED

DSA: 5376

Closes: 1032476

CVEs referenced: CVE-2023-25690 CVE-2023-27522

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: allmips64elmipselsource

apr 1.7.0-6+deb11u2 Installability problems ACCEPTED

DSA: 5370

CVEs referenced: CVE-2022-24963

Lintian issues: mips64elmipselsource

apr-util 1.6.1-5+deb11u1 Installability problems ACCEPTED

DSA: 5364

CVEs referenced: CVE-2022-25147

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64el

Lintian issues: source

asterisk 1:16.28.0~dfsg-0+deb11u2 Installability problems ACCEPTED

DSA: 5358

CVEs referenced: CVE-2022-23537 CVE-2022-23547 CVE-2022-31031 CVE-2022-37325 CVE-2022-39244 CVE-2022-39269 CVE-2022-42705 CVE-2022-42706

at-spi2-core 2.38.0-4+deb11u1 Installability problems ACCEPTED

Reason: set stop timeout to 5 seconds, so as not to needlessly block system shutdowns

Request: 1030264

µdebs: present

Closes: 890833

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

avahi 0.8-5+deb11u2 Installability problems ACCEPTED

Reason: fix local denial of service issue [CVE-2021-3468]

Request: 1028386

Closes: 984938

CVEs referenced: CVE-2021-3468

bind9 1:9.16.37-1~deb11u1 Installability problems ACCEPTED

DSA: 5329

CVEs referenced: CVE-2022-3094 CVE-2022-3736 CVE-2022-3924

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

c-ares 1.17.1-1+deb11u2 Installability problems ACCEPTED

Reason: prevent stack overflow and denial of service [CVE-2022-4904]

Request: 1031652

Closes: 1031525

CVEs referenced: CVE-2022-4904

Lintian issues: mips64elmipselsource

chromium 111.0.5563.64-1~deb11u1 Installability problems ACCEPTED

DSA: 5371

CVEs referenced: CVE-2023-1213 CVE-2023-1214 CVE-2023-1215 CVE-2023-1216 CVE-2023-1217 CVE-2023-1218 CVE-2023-1219 CVE-2023-1220 CVE-2023-1221 CVE-2023-1222 CVE-2023-1223 CVE-2023-1224 CVE-2023-1225 CVE-2023-1226 CVE-2023-1227 CVE-2023-1228 CVE-2023-1229 CVE-2023-1230 CVE-2023-1231 CVE-2023-1232 CVE-2023-1233 CVE-2023-1234 CVE-2023-1235 CVE-2023-1236

Lintian issues: ppc64elsource

chromium 110.0.5481.177-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5359

CVEs referenced: CVE-2023-0927 CVE-2023-0928 CVE-2023-0929 CVE-2023-0930 CVE-2023-0931 CVE-2023-0932 CVE-2023-0933 CVE-2023-0941

Lintian issues: ppc64el

chromium 110.0.5481.77-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5345

Closes: 1030160

CVEs referenced: CVE-2023-0696 CVE-2023-0697 CVE-2023-0698 CVE-2023-0699 CVE-2023-0700 CVE-2023-0701 CVE-2023-0702 CVE-2023-0703 CVE-2023-0704 CVE-2023-0705

Lintian issues: ppc64el

chromium 109.0.5414.119-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5328

Closes: 1011346

CVEs referenced: CVE-2023-0471 CVE-2023-0472 CVE-2023-0473 CVE-2023-0474

chromium 109.0.5414.74-2~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5317

CVEs referenced: CVE-2023-0128 CVE-2023-0129 CVE-2023-0130 CVE-2023-0131 CVE-2023-0132 CVE-2023-0133 CVE-2023-0134 CVE-2023-0135 CVE-2023-0136 CVE-2023-0137 CVE-2023-0138 CVE-2023-0139 CVE-2023-0140 CVE-2023-0141

Lintian issues: ppc64el

chromium 108.0.5359.124-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5302

CVEs referenced: CVE-2022-4436 CVE-2022-4437 CVE-2022-4438 CVE-2022-4439 CVE-2022-4440

cinder 2:17.0.1-1+deb11u1 Installability problems ACCEPTED

DSA: 5338

Closes: 1029562

CVEs referenced: CVE-2022-47951

Binary debdiffs: all

clamav 0.103.8+dfsg-0+deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release; fix possible remote code execution issue in the HFS+ file parser [CVE-2023-20032], possible information leak in the DMG file parser [CVE-2023-20052]

Request: 1031536

Closes: 1031509

CVEs referenced: CVE-2023-20032 CVE-2023-20052

command-not-found 20.10.1-1+deb11u1 Installability problems ACCEPTED

Reason: add new non-free-firmware component, fixing upgrades to bookworm

Request: 1031783

Closes: 1029803

Lintian issues: allsource

curl 7.74.0-1.3+deb11u7 Installability problems ACCEPTED

DSA: 5365

CVEs referenced: CVE-2023-23916

curl 7.74.0-1.3+deb11u6 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5365

CVEs referenced: CVE-2022-27774

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

curl 7.74.0-1.3+deb11u5 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5330

CVEs referenced: CVE-2022-27774

curl 7.74.0-1.3+deb11u4 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5330

CVEs referenced: CVE-2021-22946 CVE-2022-32221 CVE-2022-43552

cwltool 3.0.20210124104916-3+deb11u1 Installability problems ACCEPTED

Reason: add missing dependency on python3-distutils

Request: 1025329

Closes: 1025327

Binary debdiffs: all

debian-ports-archive-keyring 2023.02.01~deb11u1 Installability problems ACCEPTED

Reason: extend the 2023 signing key's expiration by one year; add 2024 signing key; move 2022 signing key to the removed keyring

Request: 1030732

µdebs: present

Binary debdiffs: all

Lintian issues: source

dpdk 20.11.7-1~deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 1026074

Binary debdiffs: amd64arm64armhfi386ppc64el

e2tools 0.1.0-1+deb11u1 Installability problems ACCEPTED

Reason: fix build failure by adding build dependency on e2fsprogs

Request: 1027772

Closes: 1027361

emacs 1:27.1+1-3.1+deb11u1 Installability problems ACCEPTED

DSA: 5314

Closes: 1025009

CVEs referenced: CVE-2022-45939

erlang 1:23.2.6+dfsg-1+deb11u1 Installability problems ACCEPTED

Reason: fix client authentication bypass issue [CVE-2022-37026]; use -O1 optimization for armel because -O2 makes erl segfault on certain platforms, e.g. Marvell

Closes: 1023673

CVEs referenced: CVE-2022-37026

exiv2 0.27.3-3+deb11u2 Installability problems ACCEPTED

Reason: security fixes [CVE-2021-29458 CVE-2021-29463 CVE-2021-29464 CVE-2021-29470 CVE-2021-29473 CVE-2021-29623 CVE-2021-32815 CVE-2021-34334 CVE-2021-34335 CVE-2021-3482 CVE-2021-37615 CVE-2021-37616 CVE-2021-37618 CVE-2021-37619 CVE-2021-37620 CVE-2021-37621 CVE-2021-37622 CVE-2021-37623]

Request: 1028395

Closes: 986888 987277 987450 987736 988241 988242 988481 992705 992706 992707

CVEs referenced: CVE-2021-29458 CVE-2021-29463 CVE-2021-29464 CVE-2021-29470 CVE-2021-29473 CVE-2021-29623 CVE-2021-31292 CVE-2021-32815 CVE-2021-34334 CVE-2021-34335 CVE-2021-3482 CVE-2021-37615 CVE-2021-37616 CVE-2021-37618 CVE-2021-37619 CVE-2021-37620 CVE-2021-37621 CVE-2021-37622 CVE-2021-37623

Binary debdiffs: all

Lintian issues: mips64elmipselsource

firefox-esr 102.7.0esr-1~deb11u1 Installability problems ACCEPTED

Missing builds: mips64el mipsel

DSA: 5322

Closes: 1028809

CVEs referenced: CVE-2022-46871 CVE-2022-46877 CVE-2023-23598 CVE-2023-23601 CVE-2023-23602 CVE-2023-23603 CVE-2023-23605

Lintian issues: allamd64arm64armhfi386ppc64els390x

firefox-esr 102.6.0esr-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5301

CVEs referenced: CVE-2022-46872 CVE-2022-46874 CVE-2022-46878 CVE-2022-46880 CVE-2022-46881 CVE-2022-46882

Binary debdiffs: allamd64arm64armhfi386ppc64els390x

Lintian issues: arm64armhfi386

firefox-esr 102.5.0esr-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5282

CVEs referenced: CVE-2022-45403 CVE-2022-45404 CVE-2022-45405 CVE-2022-45406 CVE-2022-45408 CVE-2022-45409 CVE-2022-45410 CVE-2022-45411 CVE-2022-45412 CVE-2022-45416 CVE-2022-45418 CVE-2022-45420 CVE-2022-45421

Binary debdiffs: allamd64arm64armhfi386ppc64els390x

Lintian issues: arm64armhfi386

firefox-esr 102.4.0esr-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5259

CVEs referenced: CVE-2022-42927 CVE-2022-42928 CVE-2022-42929 CVE-2022-42932

Binary debdiffs: allamd64arm64armhfi386ppc64els390x

Lintian issues: arm64armhfi386

firefox-esr 102.3.0esr-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5237

CVEs referenced: CVE-2022-40956 CVE-2022-40957 CVE-2022-40958 CVE-2022-40959 CVE-2022-40960 CVE-2022-40962

Binary debdiffs: allamd64arm64i386ppc64els390x

Lintian issues: arm64i386

flask-security 4.0.0-1+deb11u1 Installability problems ACCEPTED

Reason: fix open redirect vulnerability [CVE-2021-23385]

Request: 1031279

CVEs referenced: CVE-2021-23385

Lintian issues: all

frr 7.5.1-1.1+deb11u1 Installability problems ACCEPTED

DSA: 5362

CVEs referenced: CVE-2022-37032

gerbv 2.7.0-2+deb11u2 Installability problems ACCEPTED

DSA: 5306

CVEs referenced: CVE-2021-40393 CVE-2021-40394 CVE-2021-40401 CVE-2021-40403

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

ghostscript 9.53.3~dfsg-7+deb11u3 Installability problems ACCEPTED

Reason: fix path for PostScript helper file in ps2epsi

Request: 1029619

Closes: 1003926 1029541

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource

git 1:2.30.2-1+deb11u2 Installability problems ACCEPTED

DSA: 5357

CVEs referenced: CVE-2023-22490 CVE-2023-23946

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

git 1:2.30.2-1+deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5332

CVEs referenced: CVE-2022-23521 CVE-2022-24765 CVE-2022-29187 CVE-2022-39253 CVE-2022-39260 CVE-2022-41903

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

glance 2:21.0.0-2+deb11u1 Installability problems ACCEPTED

DSA: 5336

Closes: 1029563

CVEs referenced: CVE-2022-47951

gnutls28 3.7.1-5+deb11u3 Installability problems ACCEPTED

DSA: 5349

CVEs referenced: CVE-2023-0361

golang-github-prometheus-exporter-toolkit 0.5.1-2+deb11u2 Installability problems ACCEPTED

Reason: fix authentication cache poisoning issue [CVE-2022-46146]

Request: 1026177

Closes: 1025127

CVEs referenced: CVE-2022-46146

Binary debdiffs: all

golang-github-prometheus-exporter-toolkit 0.5.1-2+deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: patch tests to avoid race condition

Request: 1026177

Closes: 1013578

grep 3.6-1+deb11u1 Installability problems ACCEPTED

Reason: fix incorrect matching when the last of multiple patterns includes a backref

Request: 1029680

Closes: 1029235

haproxy 2.2.9-2+deb11u4 Installability problems ACCEPTED

DSA: 5348

CVEs referenced: CVE-2023-0056 CVE-2023-25725

Lintian issues: source

heimdal 7.7.0+dfsg-2+deb11u3 Installability problems ACCEPTED

DSA: 5344

CVEs referenced: CVE-2022-45142

hsqldb 2.5.1-1+deb11u1 Installability problems ACCEPTED

DSA: 5313

CVEs referenced: CVE-2022-41853

Lintian issues: source

imagemagick 8:6.9.11.60+dfsg-1.3+deb11u1 Installability problems ACCEPTED

DSA: 5347

CVEs referenced: CVE-2022-44267 CVE-2022-44268

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

isc-dhcp 4.4.1-2.3+deb11u2 Installability problems ACCEPTED

Reason: fix IPv6 address lifetime handling

Request: 1028313

µdebs: present

Closes: 1022969

jersey1 1.19.3-6+deb11u1 Installability problems ACCEPTED

Reason: fix build failure with libjettison-java 1.5.3

Request: 1028486

lava 2020.12-5+deb11u2 Installability problems ACCEPTED

DSA: 5318

Closes: 1024429

CVEs referenced: CVE-2022-44641

Lintian issues: all

libapache2-mod-auth-openidc 2.4.9.4-0+deb11u2 Installability problems ACCEPTED

Reason: fix open redirect issue [CVE-2022-23527]

Request: 1026447

Closes: 1026444

CVEs referenced: CVE-2022-23527

Lintian issues: mips64elmipselsource

libapreq2 2.13-7+deb11u1 Installability problems ACCEPTED

Reason: fix buffer overflow issue [CVE-2022-22728]

Request: 1029217

Closes: 1018191

CVEs referenced: CVE-2022-22728

libcommons-net-java 3.6-1+deb11u1 Installability problems ACCEPTED

DSA: 5307

Closes: 1025910

CVEs referenced: CVE-2021-37533

Binary debdiffs: all

Lintian issues: all

libde265 1.0.11-0+deb11u1 Installability problems ACCEPTED

DSA: 5346

Closes: 1004963 1014977 1014999 1025816 1027179 1029357 1029396 1029397

CVEs referenced: CVE-2020-21594 CVE-2020-21595 CVE-2020-21596 CVE-2020-21597 CVE-2020-21598 CVE-2020-21599 CVE-2020-21600 CVE-2020-21601 CVE-2020-21602 CVE-2020-21603 CVE-2020-21604 CVE-2020-21605 CVE-2020-21606 CVE-2021-35452 CVE-2021-36408 CVE-2021-36409 CVE-2021-36410 CVE-2021-36411 CVE-2022-1253 CVE-2022-43235 CVE-2022-43236 CVE-2022-43237 CVE-2022-43238 CVE-2022-43239 CVE-2022-43240 CVE-2022-43241 CVE-2022-43242 CVE-2022-43243 CVE-2022-43244 CVE-2022-43245 CVE-2022-43248 CVE-2022-43249 CVE-2022-43250 CVE-2022-43252 CVE-2022-43253 CVE-2022-47655

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: armelarmhfmips64elmipsel

libhtml-stripscripts-perl 1.06-1+deb11u1 Installability problems ACCEPTED

DSA: 5339

Closes: 1029400

CVEs referenced: CVE-2023-24038

Binary debdiffs: all

libitext5-java 5.5.13.2-1+deb11u1 Installability problems ACCEPTED

DSA: 5323

CVEs referenced: CVE-2021-43113

Binary debdiffs: all

libjettison-java 1.5.3-1~deb11u1 Installability problems ACCEPTED

DSA: 5312

CVEs referenced: CVE-2022-40150 CVE-2022-45685 CVE-2022-45693

Binary debdiffs: all

Lintian issues: source

libksba 1.5.0-3+deb11u2 Installability problems ACCEPTED

DSA: 5305

Lintian issues: source

libreoffice 1:7.0.4-4+deb11u5 Installability problems ACCEPTED

Reason: change Croatia's default currency to Euro

Request: 1027298

Binary debdiffs: all

libreswan 4.3-1+deb11u3 Installability problems ACCEPTED

DSA: 5368

Closes: 1031821

CVEs referenced: CVE-2023-23009

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

libvirt 7.0.0-3+deb11u2 Installability problems ACCEPTED

Reason: fix test failures when combined with newer Xen versions

Request: 1030709

libvirt 7.0.0-3+deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: fix container reboot-related issues

Request: 1024805

Closes: 983871 991773

libxpm 1:3.5.12-1.1~deb11u1 Installability problems ACCEPTED

Reason: fix infinite loop issues [CVE-2022-44617 CVE-2022-46285]; fix double free issue in error handling code; fix "compression commands depend on PATH" [CVE-2022-4883]

Request: 1029651

CVEs referenced: CVE-2022-44617 CVE-2022-46285 CVE-2022-4883

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

libxstream-java 1.4.15-3+deb11u2 Installability problems ACCEPTED

DSA: 5315

Closes: 1027754

CVEs referenced: CVE-2022-41966

Binary debdiffs: all

Lintian issues: source

linux 5.10.162-1 Installability problems ACCEPTED

DSA: 5324

µdebs: present

Closes: 1008501 1027430 1027483 825141

CVEs referenced: CVE-2022-2873 CVE-2022-3545 CVE-2022-3623 CVE-2022-36280 CVE-2022-41218 CVE-2022-45934 CVE-2022-4696 CVE-2022-47929 CVE-2023-0179 CVE-2023-0266 CVE-2023-0394 CVE-2023-23454 CVE-2023-23455

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource

linux-signed-amd64 5.10.162+1 Installability problems amd64 ACCEPTED

DSA: 5324

µdebs: present

Closes: 1008501 1027430 1027483 825141

CVEs referenced: CVE-2022-2873 CVE-2022-3545 CVE-2022-3623 CVE-2022-36280 CVE-2022-41218 CVE-2022-45934 CVE-2022-4696 CVE-2022-47929 CVE-2023-0179 CVE-2023-0266 CVE-2023-0394 CVE-2023-23454 CVE-2023-23455

Binary debdiffs: amd64

Lintian issues: amd64source

linux-signed-arm64 5.10.162+1 Installability problems arm64 ACCEPTED

DSA: 5324

µdebs: present

Closes: 1008501 1027430 1027483 825141

CVEs referenced: CVE-2022-2873 CVE-2022-3545 CVE-2022-3623 CVE-2022-36280 CVE-2022-41218 CVE-2022-45934 CVE-2022-4696 CVE-2022-47929 CVE-2023-0179 CVE-2023-0266 CVE-2023-0394 CVE-2023-23454 CVE-2023-23455

Binary debdiffs: arm64

Lintian issues: arm64source

linux-signed-i386 5.10.162+1 Installability problems i386 ACCEPTED

DSA: 5324

µdebs: present

Closes: 1008501 1027430 1027483 825141

CVEs referenced: CVE-2022-2873 CVE-2022-3545 CVE-2022-3623 CVE-2022-36280 CVE-2022-41218 CVE-2022-45934 CVE-2022-4696 CVE-2022-47929 CVE-2023-0179 CVE-2023-0266 CVE-2023-0394 CVE-2023-23454 CVE-2023-23455

Binary debdiffs: i386

Lintian issues: i386source

lxc 1:4.0.6-2+deb11u2 Installability problems ACCEPTED

Reason: fix file existence oracle [CVE-2022-47952]

Request: 1029121

CVEs referenced: CVE-2022-47952

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

macromoleculebuilder 3.2+dfsg-2+deb11u1 Installability problems ACCEPTED

Reason: fix build failure by adding build dependency on docbook-xsl

Request: 1028054

Closes: 1027828

mariadb-10.5 1:10.5.19-0+deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 1031042

Closes: 1027337

CVEs referenced: CVE-2022-27385

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: all

mono 6.8.0.105+dfsg-3.3~deb11u1 Installability problems ACCEPTED

Reason: remove desktop file

Request: 1031527

Closes: 972146

Binary debdiffs: amd64arm64armelarmhfi386mipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mipselppc64els390x

multipath-tools 0.8.5-2+deb11u1 Installability problems ACCEPTED

DSA: 5366

µdebs: present

Closes: 1022742

CVEs referenced: CVE-2022-41973 CVE-2022-41974

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

ncurses 6.2+20201114-2+deb11u1 Installability problems ACCEPTED

Reason: guard against corrupt terminfo data [CVE-2022-29458]; fix tic crash on very long tc/use clauses

Request: 1030888

µdebs: present

Closes: 1009870 1029399

CVEs referenced: CVE-2022-29458

needrestart 3.5-4+deb11u3 Installability problems ACCEPTED

Reason: fix warnings when using "-b" option

Request: 1029147

Closes: 1026927

Lintian issues: source

netty 1:4.1.48-4+deb11u1 Installability problems ACCEPTED

DSA: 5316

Closes: 1001437 1014769 1027180

CVEs referenced: CVE-2021-37136 CVE-2021-37137 CVE-2021-43797 CVE-2022-41881 CVE-2022-41915

Binary debdiffs: all

node-sqlite3 5.0.0+ds1-1+deb11u2 Installability problems arm64 armhf i386 mips64el mipsel ppc64el s390x ACCEPTED

DSA: 5373

CVEs referenced: CVE-2022-43441

Binary debdiffs: arm64armhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipselsource

nodejs 12.22.12~dfsg-1~deb11u3 Installability problems c-i failed: node-babel7/7.12.12+~cs150.141.84-6 [amd64] node-babel7/7.12.12+~cs150.141.84-6 [arm64] node-babel7/7.12.12+~cs150.141.84-6 [armhf] node-babel7/7.12.12+~cs150.141.84-6 [i386] node-babel7/7.12.12+~cs150.141.84-6 [ppc64el] node-babel7/7.12.12+~cs150.141.84-6 [s390x] node-multiparty/4.2.2-2 [amd64] node-multiparty/4.2.2-2 [arm64] node-multiparty/4.2.2-2 [armhf] node-multiparty/4.2.2-2 [ppc64el] node-multiparty/4.2.2-2 [s390x] ACCEPTED

DSA: 5326

Closes: 1014914

Binary debdiffs: amd64arm64armhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armhfi386mips64elmipselppc64els390xsource

nodejs 12.22.12~dfsg-1~deb11u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5326

CVEs referenced: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 CVE-2022-35255 CVE-2022-35256 CVE-2022-43548

Binary debdiffs: amd64arm64armhfi386ppc64els390x

Lintian issues: allamd64arm64armhfi386ppc64els390x

nodejs 12.22.12~dfsg-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5170

CVEs referenced: CVE-2021-22959 CVE-2021-22960 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824

Binary debdiffs: amd64arm64armhfi386mipselppc64els390x

Lintian issues: amd64arm64armhfi386mipselppc64els390x

nova 2:22.0.1-2+deb11u1 Installability problems ACCEPTED

DSA: 5337

Closes: 1029561

CVEs referenced: CVE-2022-47951

nss 2:3.61-1+deb11u3 Installability problems ACCEPTED

DSA: 5353

CVEs referenced: CVE-2023-0767

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

openjdk-11 11.0.18+10-1~deb11u1 Installability problems ACCEPTED

DSA: 5331

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource

openjdk-17 17.0.6+10-1~deb11u1 Installability problems ACCEPTED

DSA: 5335

Binary debdiffs: all

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

openssl 1.1.1n-0+deb11u4 Installability problems ACCEPTED

DSA: 5343

µdebs: present

CVEs referenced: CVE-2022-2097 CVE-2022-4304 CVE-2022-4450 CVE-2023-0215 CVE-2023-0286

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource

openvswitch 2.15.0+ds1-2+deb11u2 Installability problems ACCEPTED

DSA: 5319

Closes: 1027273

CVEs referenced: CVE-2022-4337 CVE-2022-4338

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

passenger 5.0.30-1.2+deb11u1 Installability problems ACCEPTED

Reason: fix compatibility with more recent NodeJS versions

Request: 1029728

Closes: 1025220

php7.4 7.4.33-1+deb11u3 Installability problems ACCEPTED

DSA: 5363

CVEs referenced: CVE-2023-0567 CVE-2023-0568 CVE-2023-0662

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

phyx 1.01+ds-2+deb11u1 Installability problems ACCEPTED

Reason: remove unnecessary build dependency on libatlas-cpp

Request: 1029994

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: ppc64els390x

pngcheck 3.0.3-1~deb11u1 Installability problems ACCEPTED

DSA: 5300

Closes: 1021278

CVEs referenced: CVE-2020-35511

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: source

postfix 3.5.18-0+deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 1029385

postgresql-13 13.10-0+deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release; fix client memory disclosure issue [CVE-2022-41862]

CVEs referenced: CVE-2022-41862

Binary debdiffs: all

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

python-acme 1.12.0-2+deb11u1 Installability problems ACCEPTED

Reason: fix CSR version to prevent problems with strictly RFC-complying implementations of the ACME API

Request: 1025925

Closes: 1025891

rails 2:6.0.3.7+dfsg-2+deb11u1 Installability problems ACCEPTED

DSA: 5372

CVEs referenced: CVE-2021-22942 CVE-2021-44528 CVE-2022-21831 CVE-2022-22577 CVE-2022-23633 CVE-2022-27777 CVE-2023-22792 CVE-2023-22794 CVE-2023-22795 CVE-2023-22796

ruby-aws-sdk-core 3.104.3-3+deb11u1 Installability problems ACCEPTED

Reason: fix generation of version file

Request: 1028396

Closes: 1028285

ruby-cfpropertylist 2.2.8-1.1+deb11u1 Installability problems ACCEPTED

Reason: fix some functionality by dropping compatibility with Ruby 1.8

Request: 1029823

Closes: 1029726

ruby-image-processing 1.10.3-1+deb11u1 Installability problems ACCEPTED

DSA: 5310

Closes: 1007225

CVEs referenced: CVE-2022-24720

shim 15.7-1~deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release; enable NX support at build time; block Debian grub binaries with sbat < 4

Lintian issues: amd64i386source

shim 15.6-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: new upstream release

Request: 1016179

shim-helpers-amd64-signed 1+15.7+1~deb11u1 Installability problems amd64 ACCEPTED

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream stable release; enable NX support at build time; block Debian grub binaries with sbat < 4

Binary debdiffs: amd64

shim-helpers-amd64-signed 1+15.6+1~deb11u1 Installability problems amd64 ACCEPTED

This upload was superseded by a more current one.

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream release

Request: 1016179

Binary debdiffs: amd64

shim-helpers-arm64-signed 1+15.7+1~deb11u1 Installability problems arm64 ACCEPTED

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream stable release; enable NX support at build time; block Debian grub binaries with sbat < 4

Binary debdiffs: arm64

shim-helpers-arm64-signed 1+15.6+1~deb11u1 Installability problems arm64 ACCEPTED

This upload was superseded by a more current one.

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream release

Request: 1016179

Binary debdiffs: arm64

shim-helpers-i386-signed 1+15.7+1~deb11u1 Installability problems i386 ACCEPTED

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream stable release; enable NX support at build time; block Debian grub binaries with sbat < 4

Binary debdiffs: i386

shim-helpers-i386-signed 1+15.6+1~deb11u1 Installability problems i386 ACCEPTED

This upload was superseded by a more current one.

Distribution mismatch: bullseye-proposed-updates

Reason: new upstream release

Request: 1016179

Binary debdiffs: i386

shim-signed 1.39~1+deb11u1 Installability problems ACCEPTED

Reason: new upstream stable release; enable NX support at build time; block Debian grub binaries with sbat < 4

Binary debdiffs: amd64arm64i386

snakeyaml 1.28-1+deb11u2 Installability problems ACCEPTED

Reason: add documentation regarding security support / issues

Request: 1031635

Binary debdiffs: all

Lintian issues: all

snakeyaml 1.28-1+deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: fix denial of service issues [CVE-2022-25857 CVE-2022-38749 CVE-2022-38750 CVE-2022-38751]

Request: 1031635

CVEs referenced: CVE-2022-25857 CVE-2022-38749 CVE-2022-38750 CVE-2022-38751

Binary debdiffs: all

Lintian issues: all

sox 14.4.2+git20190427-2+deb11u2 Installability problems ACCEPTED

DSA: 5356

Closes: 1032082

CVEs referenced: CVE-2021-33844

sox 14.4.2+git20190427-2+deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5356

Closes: 1010374 1012138 1012516 1021133 1021134 1021135

CVEs referenced: CVE-2021-23159 CVE-2021-23172 CVE-2021-23210 CVE-2021-33844 CVE-2021-3643 CVE-2021-40426 CVE-2022-31650 CVE-2022-31651

spip 3.2.11-3+deb11u7 Installability problems ACCEPTED

DSA: 5367

CVEs referenced: CVE-2023-27372

spip 3.2.11-3+deb11u6 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5325

Lintian issues: all

spyder 4.2.1+dfsg1-3+deb11u1 Installability problems ACCEPTED

Reason: fix duplication of code when saving

Request: 1009659

Closes: 989660

sudo 1.9.5p2-3+deb11u1 Installability problems ACCEPTED

DSA: 5321

CVEs referenced: CVE-2023-22809

swift 2.26.0-10+deb11u1 Installability problems ACCEPTED

DSA: 5327

Closes: 1029200

CVEs referenced: CVE-2022-47950

symfony 4.4.19+dfsg-2+deb11u3 Installability problems ACCEPTED

Reason: remove inadvertently introduced dependency increase

Request: 1030851

symfony 4.4.19+dfsg-2+deb11u2 Installability problems all ACCEPTED

This upload was superseded by a more current one.

Reason: remove private headers before storing responses with HttpCache [CVE-2022-24894]; remove CSRF tokens from storage on successful login [CVE-2022-24895]

Request: 1030851

CVEs referenced: CVE-2022-24894 CVE-2022-24895

Binary debdiffs: all

syslog-ng 3.28.1-2+deb11u1 Installability problems ACCEPTED

DSA: 5369

CVEs referenced: CVE-2022-38725

thunderbird 1:102.9.0-1~deb11u1 Installability problems ACCEPTED

Missing builds: mips64el

DSA: 5375

Lintian issues: i386source

thunderbird 1:102.8.0-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5355

Lintian issues: i386

thunderbird 1:102.6.0-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5303

Binary debdiffs: allamd64arm64i386ppc64els390x

Lintian issues: allamd64arm64i386ppc64els390x

thunderbird 1:102.5.0-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5284

Binary debdiffs: allamd64arm64i386ppc64els390x

Lintian issues: amd64arm64i386ppc64els390x

thunderbird 1:102.4.0-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5262

Binary debdiffs: allamd64arm64i386ppc64els390x

Lintian issues: amd64arm64i386ppc64els390x

thunderbird 1:102.3.0-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5238

Binary debdiffs: allamd64

Lintian issues: amd64

tiff 4.2.0-1+deb11u4 Installability problems ACCEPTED

DSA: 5361

tiff 4.2.0-1+deb11u3 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5333

CVEs referenced: CVE-2022-48281

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390x

tiff 4.2.0-1+deb11u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5333

CVEs referenced: CVE-2022-1354 CVE-2022-1355 CVE-2022-1622 CVE-2022-1623 CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 CVE-2022-2867 CVE-2022-2868 CVE-2022-2869 CVE-2022-2953 CVE-2022-34526 CVE-2022-3570 CVE-2022-3597 CVE-2022-3599 CVE-2022-3627 CVE-2022-3636

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipsels390x

Lintian issues: amd64arm64armelarmhfi386mips64elmipsels390x

tomcat9 9.0.43-2~deb11u5 Installability problems ACCEPTED

Reason: add OpenJDK 17 support to JDK detection

Request: 1028468

Closes: 1020948

Lintian issues: allsource

tor 0.4.5.16-1 Installability problems ACCEPTED

DSA: 5320

Binary debdiffs: all

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64els390xsource

traceroute 1:2.1.0-2+deb11u1 Installability problems ACCEPTED

Reason: interpret v4mapped-IPv6 addresses as IPv4

Request: 1027264

Binary debdiffs: arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: arm64armelarmhfi386mips64elmipselppc64els390x

trafficserver 8.1.6+ds-1~deb11u1 Installability problems ACCEPTED

DSA: 5311

CVEs referenced: CVE-2022-32749 CVE-2022-37392

Binary debdiffs: amd64arm64armhfi386mips64elmipselppc64el

Lintian issues: amd64arm64armhfi386mips64elmipselppc64el

vagrant 2.2.14+dfsg-2 Installability problems ACCEPTED

Reason: add support for VirtualBox 7.0

Request: 1030987

Closes: 1026227

Binary debdiffs: all

varnish 6.5.1-1+deb11u3 Installability problems ACCEPTED

DSA: 5334

Closes: 1023751

CVEs referenced: CVE-2022-45060

Lintian issues: allamd64arm64armelarmhfi386mips64elmipselppc64els390xsource

voms-api-java 3.3.2-1+deb11u1 Installability problems ACCEPTED

Reason: fix build failures by disabling some non-working tests

Request: 1028546

Closes: 1011698 1021551

Binary debdiffs: all

Lintian issues: all

w3m 0.5.3+git20210102-6+deb11u1 Installability problems ACCEPTED

Reason: fix out-of-bounds write issue [CVE-2022-38223]

Request: 1029320

Closes: 1019599

CVEs referenced: CVE-2022-38223

webkit2gtk 2.38.5-1~deb11u1 Installability problems ACCEPTED

DSA: 5351

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

webkit2gtk 2.38.4-2~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5340

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

webkit2gtk 2.38.3-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5308

CVEs referenced: CVE-2022-42852 CVE-2022-42856 CVE-2022-42863 CVE-2022-42867 CVE-2022-46691 CVE-2022-46692 CVE-2022-46698 CVE-2022-46699 CVE-2022-46700

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

wpewebkit 2.38.5-1~deb11u1 Installability problems ACCEPTED

DSA: 5352

CVEs referenced: CVE-2022-42826 CVE-2023-23517 CVE-2023-23518

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

wpewebkit 2.38.4-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5341

CVEs referenced: CVE-2022-42826 CVE-2023-23517 CVE-2023-23518

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

wpewebkit 2.38.3-1~deb11u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5309

Binary debdiffs: amd64arm64armelarmhfi386mips64elmipselppc64els390x

Lintian issues: mips64elmipsel

xapian-core 1.4.18-3+deb11u1 Installability problems ACCEPTED

Reason: prevent database corruption on disk exhaustion

Request: 1033082

Closes: 1032398

xorg-server 2:1.20.11-1+deb11u5 Installability problems ACCEPTED

DSA: 5342

µdebs: present

CVEs referenced: CVE-2023-0494

Lintian issues: source

xorg-server 2:1.20.11-1+deb11u4 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 5304

µdebs: present

Closes: 1026071

CVEs referenced: CVE-2022-4283 CVE-2022-46340 CVE-2022-46341 CVE-2022-46342 CVE-2022-46343 CVE-2022-46344