Queue Overview for "proposed-updates"
TODO items
- Skip: shim
List of missing builds
List of missing packages relative to security archive
Resolution Pending (19 uploads for 19 packages)
| Package | Version | Version Problems | Installability Problems | Architectures | Action |
|---|---|---|---|---|---|
| base-files | 13.8+deb13u5 | Installability problems | Built: source | ? | |
| chromium | 148.0.7778.96-1~deb13u1 | Version problems testing (147.0.7727.137-1) | Installability problems | Built: allamd64i386source Missing: arm64armhfppc64el |
|
|
DSA: 6250 CVEs referenced: CVE-2026-7896 CVE-2026-7897 CVE-2026-7898 CVE-2026-7899 CVE-2026-7900 CVE-2026-7901 CVE-2026-7902 CVE-2026-7903 CVE-2026-7904 CVE-2026-7905 CVE-2026-7906 CVE-2026-7907 CVE-2026-7908 CVE-2026-7909 CVE-2026-7910 CVE-2026-7911 CVE-2026-7912 CVE-2026-7913 CVE-2026-7914 CVE-2026-7915 CVE-2026-7916 CVE-2026-7917 CVE-2026-7918 CVE-2026-7919 CVE-2026-7920 CVE-2026-7921 CVE-2026-7922 CVE-2026-7923 CVE-2026-7924 CVE-2026-7925 CVE-2026-7926 CVE-2026-7927 CVE-2026-7928 CVE-2026-7929 CVE-2026-7930 CVE-2026-7931 CVE-2026-7932 CVE-2026-7933 CVE-2026-7934 CVE-2026-7935 CVE-2026-7936 CVE-2026-7937 CVE-2026-7938 CVE-2026-7939 CVE-2026-7940 CVE-2026-7941 CVE-2026-7942 CVE-2026-7943 CVE-2026-7944 CVE-2026-7945 CVE-2026-7946 CVE-2026-7947 CVE-2026-7948 CVE-2026-7949 CVE-2026-7950 CVE-2026-7951 CVE-2026-7952 CVE-2026-7953 CVE-2026-7954 CVE-2026-7955 CVE-2026-7956 CVE-2026-7957 CVE-2026-7958 CVE-2026-7959 CVE-2026-7960 CVE-2026-7961 CVE-2026-7962 CVE-2026-7963 CVE-2026-7964 CVE-2026-7965 CVE-2026-7966 CVE-2026-7967 CVE-2026-7968 CVE-2026-7969 CVE-2026-7970 CVE-2026-7971 CVE-2026-7972 CVE-2026-7973 CVE-2026-7974 CVE-2026-7975 CVE-2026-7976 CVE-2026-7977 CVE-2026-7978 CVE-2026-7979 CVE-2026-7980 CVE-2026-7981 CVE-2026-7982 CVE-2026-7983 CVE-2026-7984 CVE-2026-7985 CVE-2026-7986 CVE-2026-7987 CVE-2026-7988 CVE-2026-7989 CVE-2026-7990 CVE-2026-7991 CVE-2026-7992 CVE-2026-7993 CVE-2026-7994 CVE-2026-7995 CVE-2026-7996 CVE-2026-7997 CVE-2026-7998 CVE-2026-7999 CVE-2026-8000 CVE-2026-8001 CVE-2026-8002 CVE-2026-8003 CVE-2026-8004 CVE-2026-8005 CVE-2026-8006 CVE-2026-8007 CVE-2026-8008 CVE-2026-8009 CVE-2026-8010 CVE-2026-8011 CVE-2026-8012 CVE-2026-8013 CVE-2026-8014 CVE-2026-8015 CVE-2026-8016 CVE-2026-8017 CVE-2026-8018 CVE-2026-8019 CVE-2026-8020 CVE-2026-8021 CVE-2026-8022 Lintian issues: source |
|||||
| cimg | 3.5.2+dfsg-1+deb13u1 | Version problems testing (3.5.2+dfsg-1) | Installability problems | Built: source | ? |
|
Closes: 1135778 CVEs referenced: CVE-2026-42144 CVE-2026-42146 |
|||||
| ckermit | 416~beta12-1+deb13u1 | Installability problems | Built: source |
|
|
|
Reason: waiting for confirmation from maintainer CVEs referenced: CVE-2025-68920 |
|||||
| courier | 1.4.1-3+deb13u2 | Installability problems | Built: source |
|
|
|
Reason: fixme Closes: 1132026 Lintian issues: source
no bug filed
|
|||||
| dar | 2.7.17-1+b13 | Installability problems | Built: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|
|
|
Reason: rebuild with updated glibc, libcap2 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|||||
| docker.io | 26.1.5+dfsg1-9+b13 | Installability problems | Built: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|
|
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|||||
| firefox-esr | 140.10.2esr-1~deb13u1 | Version problems testing (140.10.1esr-1) | Installability problems | Built: allamd64arm64armhfi386ppc64elriscv64s390xsource | ? |
|
DSA: 6254 CVEs referenced: CVE-2026-8090 CVE-2026-8092 CVE-2026-8094 |
|||||
| kissfft | 131.1.0-4.1~deb13u1 | Version problems testing (131.1.0-4) | Installability problems | Built: source | ? |
|
CVEs referenced: CVE-2025-34297 CVE-2026-41445 Lintian issues: source |
|||||
| libcap2 | 2.75-10+deb13u1+b2 | Installability problems | Built: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|
|
|
Reason: duplicate µdebs: present |
|||||
| libxml-security-java | 2.1.8-1.1~deb13u1 | Version problems testing (2.1.8-1) | Installability problems | Built: source | ? |
|
Closes: 1059313 CVEs referenced: CVE-2023-44483 |
|||||
| musl | 1.2.5-3.1~deb13u1 | Version problems testing (1.2.5-3) | Installability problems | Built: source | ? |
|
Closes: 1133372 CVEs referenced: CVE-2026-40200 CVE-2026-6042 |
|||||
| php8.4 | 8.4.21-1~deb13u1 | Version problems testing (8.4.20-1) libapache2-mod-php8.4/testing [amd64] (8.4.20-1+b1) libapache2-mod-php8.4/testing [arm64] (8.4.20-1+b1) libapache2-mod-php8.4/testing [armhf] (8.4.20-1+b1) libapache2-mod-php8.4/testing [i386] (8.4.20-1+b1) libapache2-mod-php8.4/testing [ppc64el] (8.4.20-1+b1) libapache2-mod-php8.4/testing [riscv64] (8.4.20-1+b1) libapache2-mod-php8.4/testing [s390x] (8.4.20-1+b1) libphp8.4-embed/testing [amd64] (8.4.20-1+b1) libphp8.4-embed/testing [arm64] (8.4.20-1+b1) libphp8.4-embed/testing [armhf] (8.4.20-1+b1) libphp8.4-embed/testing [i386] (8.4.20-1+b1) libphp8.4-embed/testing [ppc64el] (8.4.20-1+b1) libphp8.4-embed/testing [riscv64] (8.4.20-1+b1) libphp8.4-embed/testing [s390x] (8.4.20-1+b1) php8.4-bcmath/testing [amd64] (8.4.20-1+b1) php8.4-bcmath/testing [arm64] (8.4.20-1+b1) php8.4-bcmath/testing [armhf] (8.4.20-1+b1) php8.4-bcmath/testing [i386] (8.4.20-1+b1) php8.4-bcmath/testing [ppc64el] (8.4.20-1+b1) php8.4-bcmath/testing [riscv64] (8.4.20-1+b1) php8.4-bcmath/testing [s390x] (8.4.20-1+b1) php8.4-bz2/testing [amd64] (8.4.20-1+b1) php8.4-bz2/testing [arm64] (8.4.20-1+b1) php8.4-bz2/testing [armhf] (8.4.20-1+b1) php8.4-bz2/testing [i386] (8.4.20-1+b1) php8.4-bz2/testing [ppc64el] (8.4.20-1+b1) php8.4-bz2/testing [riscv64] (8.4.20-1+b1) php8.4-bz2/testing [s390x] (8.4.20-1+b1) php8.4-cgi/testing [amd64] (8.4.20-1+b1) php8.4-cgi/testing [arm64] (8.4.20-1+b1) php8.4-cgi/testing [armhf] (8.4.20-1+b1) php8.4-cgi/testing [i386] (8.4.20-1+b1) php8.4-cgi/testing [ppc64el] (8.4.20-1+b1) php8.4-cgi/testing [riscv64] (8.4.20-1+b1) php8.4-cgi/testing [s390x] (8.4.20-1+b1) php8.4-cli/testing [amd64] (8.4.20-1+b1) php8.4-cli/testing [arm64] (8.4.20-1+b1) php8.4-cli/testing [armhf] (8.4.20-1+b1) php8.4-cli/testing [i386] (8.4.20-1+b1) php8.4-cli/testing [ppc64el] (8.4.20-1+b1) php8.4-cli/testing [riscv64] (8.4.20-1+b1) php8.4-cli/testing [s390x] (8.4.20-1+b1) php8.4-common/testing [amd64] (8.4.20-1+b1) php8.4-common/testing [arm64] (8.4.20-1+b1) php8.4-common/testing [armhf] (8.4.20-1+b1) php8.4-common/testing [i386] (8.4.20-1+b1) php8.4-common/testing [ppc64el] (8.4.20-1+b1) php8.4-common/testing [riscv64] (8.4.20-1+b1) php8.4-common/testing [s390x] (8.4.20-1+b1) php8.4-curl/testing [amd64] (8.4.20-1+b1) php8.4-curl/testing [arm64] (8.4.20-1+b1) php8.4-curl/testing [armhf] (8.4.20-1+b1) php8.4-curl/testing [i386] (8.4.20-1+b1) php8.4-curl/testing [ppc64el] (8.4.20-1+b1) php8.4-curl/testing [riscv64] (8.4.20-1+b1) php8.4-curl/testing [s390x] (8.4.20-1+b1) php8.4-dba/testing [amd64] (8.4.20-1+b1) php8.4-dba/testing [arm64] (8.4.20-1+b1) php8.4-dba/testing [armhf] (8.4.20-1+b1) php8.4-dba/testing [i386] (8.4.20-1+b1) php8.4-dba/testing [ppc64el] (8.4.20-1+b1) php8.4-dba/testing [riscv64] (8.4.20-1+b1) php8.4-dba/testing [s390x] (8.4.20-1+b1) php8.4-dev/testing [amd64] (8.4.20-1+b1) php8.4-dev/testing [arm64] (8.4.20-1+b1) php8.4-dev/testing [armhf] (8.4.20-1+b1) php8.4-dev/testing [i386] (8.4.20-1+b1) php8.4-dev/testing [ppc64el] (8.4.20-1+b1) php8.4-dev/testing [riscv64] (8.4.20-1+b1) php8.4-dev/testing [s390x] (8.4.20-1+b1) php8.4-enchant/testing [amd64] (8.4.20-1+b1) php8.4-enchant/testing [arm64] (8.4.20-1+b1) php8.4-enchant/testing [armhf] (8.4.20-1+b1) php8.4-enchant/testing [i386] (8.4.20-1+b1) php8.4-enchant/testing [ppc64el] (8.4.20-1+b1) php8.4-enchant/testing [riscv64] (8.4.20-1+b1) php8.4-enchant/testing [s390x] (8.4.20-1+b1) php8.4-fpm/testing [amd64] (8.4.20-1+b1) php8.4-fpm/testing [arm64] (8.4.20-1+b1) php8.4-fpm/testing [armhf] (8.4.20-1+b1) php8.4-fpm/testing [i386] (8.4.20-1+b1) php8.4-fpm/testing [ppc64el] (8.4.20-1+b1) php8.4-fpm/testing [riscv64] (8.4.20-1+b1) php8.4-fpm/testing [s390x] (8.4.20-1+b1) php8.4-gd/testing [amd64] (8.4.20-1+b1) php8.4-gd/testing [arm64] (8.4.20-1+b1) php8.4-gd/testing [armhf] (8.4.20-1+b1) php8.4-gd/testing [i386] (8.4.20-1+b1) php8.4-gd/testing [ppc64el] (8.4.20-1+b1) php8.4-gd/testing [riscv64] (8.4.20-1+b1) php8.4-gd/testing [s390x] (8.4.20-1+b1) php8.4-gmp/testing [amd64] (8.4.20-1+b1) php8.4-gmp/testing [arm64] (8.4.20-1+b1) php8.4-gmp/testing [armhf] (8.4.20-1+b1) php8.4-gmp/testing [i386] (8.4.20-1+b1) php8.4-gmp/testing [ppc64el] (8.4.20-1+b1) php8.4-gmp/testing [riscv64] (8.4.20-1+b1) php8.4-gmp/testing [s390x] (8.4.20-1+b1) php8.4-interbase/testing [amd64] (8.4.20-1+b1) php8.4-interbase/testing [arm64] (8.4.20-1+b1) php8.4-interbase/testing [armhf] (8.4.20-1+b1) php8.4-interbase/testing [i386] (8.4.20-1+b1) php8.4-interbase/testing [ppc64el] (8.4.20-1+b1) php8.4-interbase/testing [riscv64] (8.4.20-1+b1) php8.4-interbase/testing [s390x] (8.4.20-1+b1) php8.4-intl/testing [amd64] (8.4.20-1+b1) php8.4-intl/testing [arm64] (8.4.20-1+b1) php8.4-intl/testing [armhf] (8.4.20-1+b1) php8.4-intl/testing [i386] (8.4.20-1+b1) php8.4-intl/testing [ppc64el] (8.4.20-1+b1) php8.4-intl/testing [riscv64] (8.4.20-1+b1) php8.4-intl/testing [s390x] (8.4.20-1+b1) php8.4-ldap/testing [amd64] (8.4.20-1+b1) php8.4-ldap/testing [arm64] (8.4.20-1+b1) php8.4-ldap/testing [armhf] (8.4.20-1+b1) php8.4-ldap/testing [i386] (8.4.20-1+b1) php8.4-ldap/testing [ppc64el] (8.4.20-1+b1) php8.4-ldap/testing [riscv64] (8.4.20-1+b1) php8.4-ldap/testing [s390x] (8.4.20-1+b1) php8.4-mbstring/testing [amd64] (8.4.20-1+b1) php8.4-mbstring/testing [arm64] (8.4.20-1+b1) php8.4-mbstring/testing [armhf] (8.4.20-1+b1) php8.4-mbstring/testing [i386] (8.4.20-1+b1) php8.4-mbstring/testing [ppc64el] (8.4.20-1+b1) php8.4-mbstring/testing [riscv64] (8.4.20-1+b1) php8.4-mbstring/testing [s390x] (8.4.20-1+b1) php8.4-mysql/testing [amd64] (8.4.20-1+b1) php8.4-mysql/testing [arm64] (8.4.20-1+b1) php8.4-mysql/testing [armhf] (8.4.20-1+b1) php8.4-mysql/testing [i386] (8.4.20-1+b1) php8.4-mysql/testing [ppc64el] (8.4.20-1+b1) php8.4-mysql/testing [riscv64] (8.4.20-1+b1) php8.4-mysql/testing [s390x] (8.4.20-1+b1) php8.4-odbc/testing [amd64] (8.4.20-1+b1) php8.4-odbc/testing [arm64] (8.4.20-1+b1) php8.4-odbc/testing [armhf] (8.4.20-1+b1) php8.4-odbc/testing [i386] (8.4.20-1+b1) php8.4-odbc/testing [ppc64el] (8.4.20-1+b1) php8.4-odbc/testing [riscv64] (8.4.20-1+b1) php8.4-odbc/testing [s390x] (8.4.20-1+b1) php8.4-opcache/testing [amd64] (8.4.20-1+b1) php8.4-opcache/testing [arm64] (8.4.20-1+b1) php8.4-opcache/testing [armhf] (8.4.20-1+b1) php8.4-opcache/testing [i386] (8.4.20-1+b1) php8.4-opcache/testing [ppc64el] (8.4.20-1+b1) php8.4-opcache/testing [riscv64] (8.4.20-1+b1) php8.4-opcache/testing [s390x] (8.4.20-1+b1) php8.4-pgsql/testing [amd64] (8.4.20-1+b1) php8.4-pgsql/testing [arm64] (8.4.20-1+b1) php8.4-pgsql/testing [armhf] (8.4.20-1+b1) php8.4-pgsql/testing [i386] (8.4.20-1+b1) php8.4-pgsql/testing [ppc64el] (8.4.20-1+b1) php8.4-pgsql/testing [riscv64] (8.4.20-1+b1) php8.4-pgsql/testing [s390x] (8.4.20-1+b1) php8.4-phpdbg/testing [amd64] (8.4.20-1+b1) php8.4-phpdbg/testing [arm64] (8.4.20-1+b1) php8.4-phpdbg/testing [armhf] (8.4.20-1+b1) php8.4-phpdbg/testing [i386] (8.4.20-1+b1) php8.4-phpdbg/testing [ppc64el] (8.4.20-1+b1) php8.4-phpdbg/testing [riscv64] (8.4.20-1+b1) php8.4-phpdbg/testing [s390x] (8.4.20-1+b1) php8.4-readline/testing [amd64] (8.4.20-1+b1) php8.4-readline/testing [arm64] (8.4.20-1+b1) php8.4-readline/testing [armhf] (8.4.20-1+b1) php8.4-readline/testing [i386] (8.4.20-1+b1) php8.4-readline/testing [ppc64el] (8.4.20-1+b1) php8.4-readline/testing [riscv64] (8.4.20-1+b1) php8.4-readline/testing [s390x] (8.4.20-1+b1) php8.4-snmp/testing [amd64] (8.4.20-1+b1) php8.4-snmp/testing [arm64] (8.4.20-1+b1) php8.4-snmp/testing [armhf] (8.4.20-1+b1) php8.4-snmp/testing [i386] (8.4.20-1+b1) php8.4-snmp/testing [ppc64el] (8.4.20-1+b1) php8.4-snmp/testing [riscv64] (8.4.20-1+b1) php8.4-snmp/testing [s390x] (8.4.20-1+b1) php8.4-soap/testing [amd64] (8.4.20-1+b1) php8.4-soap/testing [arm64] (8.4.20-1+b1) php8.4-soap/testing [armhf] (8.4.20-1+b1) php8.4-soap/testing [i386] (8.4.20-1+b1) php8.4-soap/testing [ppc64el] (8.4.20-1+b1) php8.4-soap/testing [riscv64] (8.4.20-1+b1) php8.4-soap/testing [s390x] (8.4.20-1+b1) php8.4-sqlite3/testing [amd64] (8.4.20-1+b1) php8.4-sqlite3/testing [arm64] (8.4.20-1+b1) php8.4-sqlite3/testing [armhf] (8.4.20-1+b1) php8.4-sqlite3/testing [i386] (8.4.20-1+b1) php8.4-sqlite3/testing [ppc64el] (8.4.20-1+b1) php8.4-sqlite3/testing [riscv64] (8.4.20-1+b1) php8.4-sqlite3/testing [s390x] (8.4.20-1+b1) php8.4-sybase/testing [amd64] (8.4.20-1+b1) php8.4-sybase/testing [arm64] (8.4.20-1+b1) php8.4-sybase/testing [armhf] (8.4.20-1+b1) php8.4-sybase/testing [i386] (8.4.20-1+b1) php8.4-sybase/testing [ppc64el] (8.4.20-1+b1) php8.4-sybase/testing [riscv64] (8.4.20-1+b1) php8.4-sybase/testing [s390x] (8.4.20-1+b1) php8.4-tidy/testing [amd64] (8.4.20-1+b1) php8.4-tidy/testing [arm64] (8.4.20-1+b1) php8.4-tidy/testing [armhf] (8.4.20-1+b1) php8.4-tidy/testing [i386] (8.4.20-1+b1) php8.4-tidy/testing [ppc64el] (8.4.20-1+b1) php8.4-tidy/testing [riscv64] (8.4.20-1+b1) php8.4-tidy/testing [s390x] (8.4.20-1+b1) php8.4-xml/testing [amd64] (8.4.20-1+b1) php8.4-xml/testing [arm64] (8.4.20-1+b1) php8.4-xml/testing [armhf] (8.4.20-1+b1) php8.4-xml/testing [i386] (8.4.20-1+b1) php8.4-xml/testing [ppc64el] (8.4.20-1+b1) php8.4-xml/testing [riscv64] (8.4.20-1+b1) php8.4-xml/testing [s390x] (8.4.20-1+b1) php8.4-zip/testing [amd64] (8.4.20-1+b1) php8.4-zip/testing [arm64] (8.4.20-1+b1) php8.4-zip/testing [armhf] (8.4.20-1+b1) php8.4-zip/testing [i386] (8.4.20-1+b1) php8.4-zip/testing [ppc64el] (8.4.20-1+b1) php8.4-zip/testing [riscv64] (8.4.20-1+b1) php8.4-zip/testing [s390x] (8.4.20-1+b1) | Installability problems | Built: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource | ? |
|
DSA: 6256 CVEs referenced: CVE-2025-14179 CVE-2026-29078 CVE-2026-29079 CVE-2026-6104 CVE-2026-6722 CVE-2026-6735 CVE-2026-7258 CVE-2026-7259 CVE-2026-7261 CVE-2026-7262 CVE-2026-7263 CVE-2026-7568 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
|||||
| postorius | 1.3.13-1+deb13u1 | Version problems testing (1.3.13-1) | Installability problems | Built: allsource | ? |
|
DSA: 6257 |
|||||
| pyjwt | 2.10.1-2+deb13u1 | Installability problems | Built: allsource | ? | |
|
DSA: 6259 Closes: 1130662 CVEs referenced: CVE-2026-32597 Binary debdiffs: all |
|||||
| qemu | 10.0.8+ds-0+deb13u1+b2 | Installability problems | Built: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|
|
|
Reason: rebuild with updated glib2.0, glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
|||||
| shim-helpers-amd64-signed | 1+16.1+2~deb13u1 | Version problems testing (1+15.8+1) | Installability problems | Built: source | ? |
| shim-helpers-arm64-signed | 1+16.1+2~deb13u1 | Version problems testing (1+15.8+1) | Installability problems | Built: source | ? |
| user-mode-linux | 6.12um1+b14 | Installability problems | Built: amd64i386 |
|
|
|
Reason: rebuild with updated linux |
|||||
Pending Processing (0 uploads for 0 packages)
Processed (236 uploads for 187 packages)
| Package | Version | Version Problems | Installability Problems | Action |
|---|---|---|---|---|
| 389-ds-base | 3.1.2+dfsg1-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix heap overflow issue [CVE-2025-14905] Request: 1135820 Closes: 1130910 CVEs referenced: CVE-2025-14905 |
||||
| 7zip | 25.01+dfsg-1~deb13u2 | Installability problems | ACCEPTED | |
|
Reason: relax Breaks / Replaces versions to ease upgrades from bookworm Request: 1133148 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
||||
| apache2 | 2.4.67-1~deb13u2 | Version problems testing (2.4.66-8) | Installability problems | ACCEPTED |
|
DSA: 6248 |
||||
| apache2 | 2.4.67-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: new upstream stable release; fix use-after-free issue [CVE-2026-23918]; fix privilege escalation issue [CVE-2026-24072]; fix NULL pointer dereference issues [CVE-2026-29169 CVE-2026-33007]; fix authentication bypass issue [CVE-2026-33006]; fix HTTP response splitting issue [CVE-2026-33523]; fix out-of-bounds read issues [CVE-2026-33857 CVE-2026-34032]; fix buffer over-read issue [CVE-2026-34059] Request: 1135752 Closes: 1135737 CVEs referenced: CVE-2026-23918 CVE-2026-24072 CVE-2026-29169 CVE-2026-33006 CVE-2026-33007 CVE-2026-33523 CVE-2026-33857 CVE-2026-34032 CVE-2026-34059 Binary debdiffs: all Lintian issues: all |
||||
| awstats | 7.9-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: prevent command injection [CVE-2025-63261] Request: 1132727 Closes: 1131878 CVEs referenced: CVE-2025-63261 Binary debdiffs: all Lintian issues: all |
||||
| bash | 5.2.37-2+b9 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| bepasty | 1.2.1-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix loading pygments CSS Request: 1129951 Closes: 1124997 Binary debdiffs: all |
||||
| bglibs | 2.04+dfsg-8+b8 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| bind9 | 1:9.20.21-1~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6181 CVEs referenced: CVE-2026-1519 CVE-2026-3104 CVE-2026-3119 CVE-2026-3591 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| bird2 | 2.17.1-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: ASPA: Fix downstream validation; BGP: Fix restart behavior on reconfiguration; filters: Fix string attributes; logging: Fix error handling Request: 1132869 |
||||
| black | 25.1.0-3+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix arbitrary file write issue [CVE-2026-32274] Request: 1135836 Closes: 1130657 CVEs referenced: CVE-2026-32274 |
||||
| bubblewrap | 0.11.0-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix privilege escalation issue [CVE-2026-41163] Request: 1134965 Closes: 1134704 CVEs referenced: CVE-2026-41163 |
||||
| busybox | 1.37.0-6+b8 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc µdebs: present Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| calibre | 8.5.0+ds-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix path traversal issues [CVE-2026-25635 CVE-2026-25636 CVE-2026-26064 CVE-2026-26065]; fix code execution issue [CVE-2026-25731]; fix HTTP response header injection issue [CVE-2026-27810]; fix IP ban bypass issue [CVE-2026-27824] Request: 1127428 CVEs referenced: CVE-2026-25635 CVE-2026-25636 CVE-2026-25731 CVE-2026-26064 CVE-2026-26065 CVE-2026-27810 CVE-2026-27824 |
||||
| catatonit | 0.2.1-2+b13 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| cdebootstrap | 0.7.9+b11 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| chkrootkit | 0.58b-5+b7 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| chromium | 147.0.7727.137-1~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6239 Closes: 1052440 CVEs referenced: CVE-2026-7333 CVE-2026-7334 CVE-2026-7335 CVE-2026-7336 CVE-2026-7337 CVE-2026-7338 CVE-2026-7339 CVE-2026-7340 CVE-2026-7341 CVE-2026-7342 CVE-2026-7343 CVE-2026-7344 CVE-2026-7345 CVE-2026-7346 CVE-2026-7347 CVE-2026-7348 CVE-2026-7349 CVE-2026-7350 CVE-2026-7351 CVE-2026-7352 CVE-2026-7353 CVE-2026-7354 CVE-2026-7355 CVE-2026-7356 CVE-2026-7357 CVE-2026-7358 CVE-2026-7359 CVE-2026-7360 CVE-2026-7361 CVE-2026-7363 Lintian issues: source |
||||
| chromium | 147.0.7727.116-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6230 Closes: 1134412 CVEs referenced: CVE-2026-6919 CVE-2026-6920 CVE-2026-6921 |
||||
| chromium | 147.0.7727.101-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6214 CVEs referenced: CVE-2026-6296 CVE-2026-6297 CVE-2026-6298 CVE-2026-6299 CVE-2026-6300 CVE-2026-6301 CVE-2026-6302 CVE-2026-6303 CVE-2026-6304 CVE-2026-6305 CVE-2026-6306 CVE-2026-6307 CVE-2026-6308 CVE-2026-6309 CVE-2026-6310 CVE-2026-6311 CVE-2026-6312 CVE-2026-6313 CVE-2026-6314 CVE-2026-6315 CVE-2026-6316 CVE-2026-6317 CVE-2026-6318 CVE-2026-6319 CVE-2026-6358 CVE-2026-6359 CVE-2026-6360 CVE-2026-6361 CVE-2026-6362 CVE-2026-6363 CVE-2026-6364 |
||||
| chromium | 147.0.7727.55-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6205 Closes: 1132651 CVEs referenced: CVE-2026-5858 CVE-2026-5859 CVE-2026-5860 CVE-2026-5861 CVE-2026-5862 CVE-2026-5863 CVE-2026-5864 CVE-2026-5865 CVE-2026-5866 CVE-2026-5867 CVE-2026-5868 CVE-2026-5869 CVE-2026-5870 CVE-2026-5871 CVE-2026-5872 CVE-2026-5873 CVE-2026-5874 CVE-2026-5875 CVE-2026-5876 CVE-2026-5877 CVE-2026-5878 CVE-2026-5879 CVE-2026-5880 CVE-2026-5881 CVE-2026-5882 CVE-2026-5883 CVE-2026-5884 CVE-2026-5885 CVE-2026-5886 CVE-2026-5887 CVE-2026-5888 CVE-2026-5889 CVE-2026-5890 CVE-2026-5891 CVE-2026-5892 CVE-2026-5893 CVE-2026-5894 CVE-2026-5895 CVE-2026-5896 CVE-2026-5897 CVE-2026-5898 CVE-2026-5899 CVE-2026-5900 CVE-2026-5901 CVE-2026-5902 CVE-2026-5903 CVE-2026-5904 CVE-2026-5905 CVE-2026-5906 CVE-2026-5907 CVE-2026-5908 CVE-2026-5909 CVE-2026-5910 CVE-2026-5911 CVE-2026-5912 CVE-2026-5913 CVE-2026-5914 CVE-2026-5915 CVE-2026-5918 CVE-2026-5919 |
||||
| chromium | 146.0.7680.177-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6192 CVEs referenced: CVE-2026-5272 CVE-2026-5273 CVE-2026-5274 CVE-2026-5275 CVE-2026-5276 CVE-2026-5277 CVE-2026-5278 CVE-2026-5279 CVE-2026-5280 CVE-2026-5281 CVE-2026-5282 CVE-2026-5283 CVE-2026-5284 CVE-2026-5285 CVE-2026-5286 CVE-2026-5287 CVE-2026-5288 CVE-2026-5289 CVE-2026-5290 CVE-2026-5291 CVE-2026-5292 |
||||
| chromium | 146.0.7680.164-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6177 CVEs referenced: CVE-2026-4673 CVE-2026-4674 CVE-2026-4675 CVE-2026-4676 CVE-2026-4677 CVE-2026-4678 CVE-2026-4679 CVE-2026-4680 |
||||
| chromium | 146.0.7680.153-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6171 Closes: 1130569 CVEs referenced: CVE-2026-4439 CVE-2026-4440 CVE-2026-4441 CVE-2026-4442 CVE-2026-4443 CVE-2026-4444 CVE-2026-4445 CVE-2026-4446 CVE-2026-4447 CVE-2026-4448 CVE-2026-4449 CVE-2026-4450 CVE-2026-4451 CVE-2026-4452 CVE-2026-4453 CVE-2026-4454 CVE-2026-4455 CVE-2026-4456 CVE-2026-4457 CVE-2026-4458 CVE-2026-4459 CVE-2026-4460 CVE-2026-4461 CVE-2026-4462 CVE-2026-4463 CVE-2026-4464 |
||||
| chromium | 146.0.7680.80-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6165 CVEs referenced: CVE-2026-3909 CVE-2026-3910 |
||||
| chromium | 146.0.7680.71-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6164 CVEs referenced: CVE-2026-3913 CVE-2026-3914 CVE-2026-3915 CVE-2026-3916 CVE-2026-3917 CVE-2026-3918 CVE-2026-3919 CVE-2026-3920 CVE-2026-3921 CVE-2026-3922 CVE-2026-3923 CVE-2026-3924 CVE-2026-3925 CVE-2026-3926 CVE-2026-3927 CVE-2026-3928 CVE-2026-3929 CVE-2026-3930 CVE-2026-3931 CVE-2026-3932 CVE-2026-3934 CVE-2026-3935 CVE-2026-3936 CVE-2026-3937 CVE-2026-3938 CVE-2026-3939 CVE-2026-3940 CVE-2026-3941 CVE-2026-3942 |
||||
| cockpit | 337-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix code execution issue [CVE-2026-4631] Request: 1133122 CVEs referenced: CVE-2026-4631 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| composer | 2.8.8-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix command injection issues [CVE-2026-40261 CVE-2026-40176] Request: 1134502 CVEs referenced: CVE-2026-40176 CVE-2026-40261 |
||||
| condor | 23.9.6+dfsg-2.1+b9 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc |
||||
| cpp-httplib | 0.18.7-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6228 Closes: 1104926 CVEs referenced: CVE-2025-46728 CVE-2025-52887 CVE-2025-53629 |
||||
| curl | 8.14.1-2+deb13u3 | Installability problems c-i failed: mpdecimal/4.0.1-5 [i386] shadowsocks-libev/3.3.5+ds-16 [i386] | ACCEPTED | |
|
Reason: fix server certificate verification issue [CVE-2025-13034] Request: 1130040 CVEs referenced: CVE-2025-13034 Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| dar | 2.7.17-1+b12 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated openssl Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| deets | 0.3.2-1+b20 | Installability problems | REJECTED | |
|
Reason: rebuild |
||||
| distribution-gpg-keys | 1.119+ds-1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: update included keys Request: 1135747 Binary debdiffs: all |
||||
| distro-info-data | 0.66+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: add Ubuntu 26.10 "Stonking Stingray" Request: 1134901 Lintian issues: source |
||||
| distrobuilder | 3.2-2+b7 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated incus Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| distrobuilder | 3.2-2+b6 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated incus Missing builds: amd64 arm64 armel armhf i386 ppc64el riscv64 s390x |
||||
| dnsdist | 1.9.14-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6235 CVEs referenced: CVE-2026-0396 CVE-2026-0397 CVE-2026-24028 CVE-2026-24029 CVE-2026-24030 CVE-2026-27853 CVE-2026-27854 CVE-2026-33254 CVE-2026-33257 CVE-2026-33260 CVE-2026-33593 CVE-2026-33594 CVE-2026-33595 CVE-2026-33596 CVE-2026-33597 CVE-2026-33598 CVE-2026-33599 CVE-2026-33602 Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| dovecot | 1:2.4.1+dfsg1-6+deb13u5 | Installability problems | ACCEPTED | |
|
Reason: fix memory leak in CVE-2026-27857 fix Request: 1135871 CVEs referenced: CVE-2026-27857 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| dovecot | 1:2.4.1+dfsg1-6+deb13u4 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6197 CVEs referenced: CVE-2025-59028 CVE-2025-59031 CVE-2025-59032 CVE-2026-24031 CVE-2026-27855 CVE-2026-27856 CVE-2026-27857 CVE-2026-27858 CVE-2026-27859 CVE-2026-27860 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| e2fsprogs | 1.47.2-3+b11 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc µdebs: present Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| efibootguard | 0.19-1+b1 | Installability problems | ACCEPTED | |
|
Reason: rebuild against gnu-efi with #1086705 fixed Request: 1134179 |
||||
| ejabberd | 24.12-3+deb13u2 | Installability problems ppc64el riscv64 | ACCEPTED | |
|
Reason: ignore certificate purpose for incoming s2s connections Request: 1130812 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| ejabberd-contrib | 0.2025.01.11~dfsg0-2+deb13u2 | Installability problems amd64 arm64 armel armhf i386 ppc64el riscv64 s390x | ACCEPTED | |
|
Reason: rebuild with updated ejabberd Request: 1130815 Binary debdiffs: allamd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| epics-base | 7.0.8.1+dfsg1-7+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: skip failing test Request: 1135156 Closes: 1108052 |
||||
| erlang | 1:27.3.4.1+dfsg-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix path traversal issues [CVE-2026-21620 CVE-2026-23942[; fix HTTP request smuggling issue [CVE-2026-23941]; fix denial of service issue [CVE-2026-23943] Request: 1132321 CVEs referenced: CVE-2026-21620 CVE-2026-23941 CVE-2026-23942 CVE-2026-23943 Binary debdiffs: all Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| erlang-p1-tls | 1.1.22-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: accept client certificates without sslpurpose flag Request: 1130813 Closes: 1127369 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| exim4 | 4.98.2-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix GnuTLS hostname verify of a server certificate with a zero-length Subject; fix denial of service issue [CVE-2026-40684]; fix out-of-bounds read/write issues [CVE-2026-40685 CVE-2026-40686 CVE-2026-40687] Request: 1135538 Closes: 1134984 CVEs referenced: CVE-2026-40684 CVE-2026-40685 CVE-2026-40686 CVE-2026-40687 |
||||
| feed2toot | 0.17-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: ensure compatibility with Python 3.13 Request: 1130050 Closes: 1118778 Binary debdiffs: all Lintian issues: source |
||||
| firefox-esr | 140.10.1esr-1~deb13u1 | Installability problems all | ACCEPTED | |
|
DSA: 6236 CVEs referenced: CVE-2026-7320 CVE-2026-7321 CVE-2026-7322 CVE-2026-7323 |
||||
| firefox-esr | 140.10.0esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6225 CVEs referenced: CVE-2026-6746 CVE-2026-6747 CVE-2026-6748 CVE-2026-6749 CVE-2026-6750 CVE-2026-6751 CVE-2026-6752 CVE-2026-6753 CVE-2026-6754 CVE-2026-6757 CVE-2026-6761 CVE-2026-6762 CVE-2026-6763 CVE-2026-6764 CVE-2026-6765 CVE-2026-6766 CVE-2026-6767 CVE-2026-6769 CVE-2026-6770 CVE-2026-6771 CVE-2026-6772 CVE-2026-6776 CVE-2026-6785 CVE-2026-6786 |
||||
| firefox-esr | 140.9.1esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6202 CVEs referenced: CVE-2026-5731 CVE-2026-5732 CVE-2026-5734 |
||||
| firefox-esr | 140.9.0esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6178 CVEs referenced: CVE-2025-59375 CVE-2026-4684 CVE-2026-4685 CVE-2026-4686 CVE-2026-4688 CVE-2026-4689 CVE-2026-4690 CVE-2026-4691 CVE-2026-4692 CVE-2026-4693 CVE-2026-4694 CVE-2026-4695 CVE-2026-4696 CVE-2026-4697 CVE-2026-4698 CVE-2026-4699 CVE-2026-4700 CVE-2026-4701 CVE-2026-4702 CVE-2026-4704 CVE-2026-4705 CVE-2026-4706 CVE-2026-4707 CVE-2026-4708 CVE-2026-4709 CVE-2026-4710 CVE-2026-4713 CVE-2026-4714 CVE-2026-4715 CVE-2026-4716 CVE-2026-4717 CVE-2026-4718 CVE-2026-4719 CVE-2026-4720 CVE-2026-4721 |
||||
| firewalld | 2.3.1-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: prevent local users from being able to modify runtime firewall state without prior authentication if the desktop policy is active [CVE-2026-4948] Request: 1135642 CVEs referenced: CVE-2026-4948 |
||||
| flatpak | 1.16.6-1~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6207 Closes: 1132943 1132944 1132945 1132946 CVEs referenced: CVE-2026-34078 CVE-2026-34079 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
||||
| freeciv | 3.1.4+ds-2+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6173 CVEs referenced: CVE-2026-33250 |
||||
| freerdp3 | 3.15.0+dfsg-2.1+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix path traversal issue [CVE-2026-40254] Request: 1135821 CVEs referenced: CVE-2026-40254 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| freerdp3 | 3.15.0+dfsg-2.1+deb13u2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: fix buffer overflow issues [CVE-2026-29774 CVE-2026-31806 CVE-2026-31883 CVE-2026-33982 CVE-2026-33984]; fix out-of-bounds read/write issues [CVE-2026-29775 CVE-2026-31885 CVE-2026-31897 CVE-2026-33986 CVE-2026-33987]; fix integer underflow issue [CVE-2026-29776]; fix denial of service issues [CVE-2026-31884 CVE-2026-33952 CVE-2026-33977 CVE-2026-33983]; fix data leak issue [CVE-2026-33985]; fix double free issue [CVE-2026-33995] Request: 1132926 CVEs referenced: CVE-2026-29774 CVE-2026-29775 CVE-2026-29776 CVE-2026-31806 CVE-2026-31883 CVE-2026-31884 CVE-2026-31885 CVE-2026-31897 CVE-2026-33952 CVE-2026-33977 CVE-2026-33982 CVE-2026-33983 CVE-2026-33984 CVE-2026-33985 CVE-2026-33986 CVE-2026-33987 CVE-2026-33995 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| freerdp3 | 3.15.0+dfsg-2.1+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: fix issues with large certificates; fix clipboard paste issue; fix segmentation fault issue [CVE-2025-4478]; fix use-after-free issues [CVE-2026-22851 CVE-2026-22856 CVE-2026-22857 CVE-2026-23883 CVE-2026-23884 CVE-2026-24491 CVE-2026-24675 CVE-2026-24676 CVE-2026-24678 CVE-2026-24680 CVE-2026-24681 CVE-2026-24683 CVE-2026-24684 CVE-2026-25952 CVE-2026-25953 CVE-2026-25954 CVE-2026-25955 CVE-2026-25959 CVE-2026-25997 CVE-2026-26986]; fix buffer overflow issues [CVE-2026-22852 CVE-2026-22853 CVE-2026-22854 CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23534 CVE-2026-23732]; fix out-of-bounds read issues [CVE-2026-22855 CVE-2026-22859 CVE-2026-24677 CVE-2026-24679 CVE-2026-24682 CVE-2026-25941 CVE-2026-25942]; fix buffer underflow issues [CVE-2026-22858 CVE-2026-26955]; fix null pointer dereference issue [CVE-2026-23948]; fix buffer over-read issue [CVE-2026-26271; fix out-of-bounds write issue [CVE-2026-26965]; fix denial of service issue [CVE-2026-27015] Request: 1127479 CVEs referenced: CVE-2025-4478 CVE-2026-22851 CVE-2026-22852 CVE-2026-22853 CVE-2026-22854 CVE-2026-22855 CVE-2026-22856 CVE-2026-22857 CVE-2026-22858 CVE-2026-22859 CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23534 CVE-2026-23732 CVE-2026-23883 CVE-2026-23884 CVE-2026-23948 CVE-2026-24491 CVE-2026-24675 CVE-2026-24676 CVE-2026-24677 CVE-2026-24678 CVE-2026-24679 CVE-2026-24680 CVE-2026-24681 CVE-2026-24682 CVE-2026-24683 CVE-2026-24684 CVE-2026-25941 CVE-2026-25942 CVE-2026-25952 CVE-2026-25953 CVE-2026-25954 CVE-2026-25955 CVE-2026-25959 CVE-2026-25997 CVE-2026-26271 CVE-2026-26955 CVE-2026-26965 CVE-2026-26986 CVE-2026-27015 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| freetype | 2.13.3+dfsg-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6168 µdebs: present Closes: 1129606 CVEs referenced: CVE-2026-23865 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| fwupd | 2.0.8-3+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: thunderbolt: Fix deploying the thunderbolt controller on the X280 Request: 1135716 Closes: 1123749 Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| gdk-pixbuf | 2.42.12+dfsg-4+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6206 µdebs: present Closes: 1132501 CVEs referenced: CVE-2026-5201 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| gimp | 3.0.4-3+deb13u8 | Installability problems | ACCEPTED | |
|
DSA: 6215 CVEs referenced: CVE-2026-4150 CVE-2026-4151 CVE-2026-4152 CVE-2026-4153 |
||||
| git-lfs | 3.6.1-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix arbitrary file write issue [CVE-2025-26625] Request: 1134421 Closes: 1118339 CVEs referenced: CVE-2025-26625 Binary debdiffs: all |
||||
| glance | 2:30.0.0-3+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix build failure Request: 1132768 |
||||
| glance | 2:30.0.0-3+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: fix server-side request forgery issue [CVE-2026-34881] Request: 1132768 Closes: 1131274 CVEs referenced: CVE-2026-34881 |
||||
| glib2.0 | 2.84.4-3~deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix timezone handling with Debian & Ubuntu's symlinks; fix missing input validation in g_buffered_input_stream_peek [CVE-2026-0988]; fix integer overflow in base64 encoding [CVE-2026-1484]; fix buffer underflow vulnerability in content type parsing [CVE-2026-1485]; fix integer overflow in unicode conversion [CVE-2026-1489] Request: 1128227 µdebs: present Closes: 1119919 1125752 1126549 1126550 1126551 CVEs referenced: CVE-2026-0988 CVE-2026-1484 CVE-2026-1485 CVE-2026-1489 Lintian issues: source |
||||
| glibc | 2.41-12+deb13u3 | Installability problems c-i failed: agenda.app/0.47-2 [s390x] axel/2.17.14-2 [arm64] bagel/1.2.2-8 [s390x] bedops/2.4.41+dfsg-3 [s390x] berkeley-express/1.5.3+dfsg-3 [i386] bittwist/4.7+ds-2 [s390x] blis/1.1-2 [i386] blitz++/1:1.0.2+ds-4.1 [i386] camlpdf/2.8.1-1 [i386] cffi/1:0.24.1-3 [arm64] cffi/1:0.24.1-3 [i386] cffi/1:0.24.1-3 [ppc64el] cffi/1:0.24.1-3 [s390x] chrony/4.6.1-3+deb13u1 [i386] cminpack/1.3.6-5 [arm64] cminpack/1.3.6-5 [i386] cminpack/1.3.6-5 [ppc64el] cminpack/1.3.6-5 [s390x] cmph/2.0.2-3.1 [arm64] cmph/2.0.2-3.1 [ppc64el] cmph/2.0.2-3.1 [s390x] crash/8.0.6-1 [amd64] cron/3.0pl1-197 [s390x] daligner/1.0+git20240119.335105d-3 [i386] dascrubber/1.1-4 [i386] dazzdb/1.0+git20250217.a3eefd4-1 [i386] dazzdb/1.0+git20250217.a3eefd4-1 [s390x] dbuskit/0.1.1-13 [arm64] dds/2.9.0-10 [i386] dmalloc/5.5.2-14 [amd64] dmalloc/5.5.2-14 [arm64] dmalloc/5.5.2-14 [i386] dmalloc/5.5.2-14 [ppc64el] dmalloc/5.5.2-14 [s390x] dumb-init/1.2.5-3 [ppc64el] edflib/1.27-1 [i386] endlessh/1.1-5.1 [i386] esorex/3.13.7+ds-1 [amd64] esorex/3.13.7+ds-1 [arm64] esorex/3.13.7+ds-1 [i386] esorex/3.13.7+ds-1 [ppc64el] esorex/3.13.7+ds-1 [s390x] examl/3.0.22-6 [ppc64el] examl/3.0.22-6 [s390x] fakechroot/2.20.1+ds-18 [amd64] fakechroot/2.20.1+ds-18 [arm64] fakechroot/2.20.1+ds-18 [i386] fakechroot/2.20.1+ds-18 [ppc64el] fakechroot/2.20.1+ds-18 [s390x] fastdds/3.1.2+ds-1 [s390x] fatrace/0.18.0-1 [amd64] festival/1:2.5.0-11 [arm64] festival/1:2.5.0-11 [i386] festival/1:2.5.0-11 [s390x] figlet/2.2.5-3 [amd64] figlet/2.2.5-3 [arm64] figlet/2.2.5-3 [i386] figlet/2.2.5-3 [s390x] flatpak/1.16.3-1~deb13u1 [amd64] ggd-utils/1.0.0+ds-1 [amd64] ggd-utils/1.0.0+ds-1 [arm64] golang-github-xenolf-lego/4.9.1-2 [amd64] gtg-trace/0.2-3-4 [amd64] gtg-trace/0.2-3-4 [arm64] guile-fibers/1.3.1-5 [ppc64el] hmmer/3.4+dfsg-2 [arm64] initramfs-tools/0.148.3 [ppc64el] ladspa-sdk/1.17-1 [arm64] librecast/0.9.1-1 [s390x] libvirt-dbus/1.4.1-4 [s390x] miller/6.13.0-1 [ppc64el] prometheus-alertmanager/0.28.1+ds-1 [i386] proteinortho/6.3.1+dfsg-1 [ppc64el] pymatgen/2025.2.18+dfsg1-5 [i386] | ACCEPTED | |
|
Reason: fix incorrect handling of DNS responses [CVE-2026-4437]; fix return of invalid DNS hostnames [CVE-2026-4438]; fix assertion failure [CVE-2026-4046]; fix a null pointer dereference in the nss_database_check_reload_and_get function; fix invalid pointer arithmetic in ANSI_X3.110 iconv module; various test suite fixes Request: 1135111 µdebs: present Closes: 1131435 1131887 1132499 CVEs referenced: CVE-2026-4046 CVE-2026-4437 CVE-2026-4438 |
||||
| gnupg2 | 2.4.7-21+deb13u1+b3 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc µdebs: present Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| gnutls28 | 3.8.9-3+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: Preserve extension order across client Hello retry Request: 1130735 Closes: 1130152 |
||||
| grub-efi-amd64-signed | 1+2.12+9+deb13u2 | Installability problems amd64 | ACCEPTED | |
|
Distribution mismatch: trixie-proposed-updates Reason: fix an illegal instruction on riscv64 Request: 1135292 Binary debdiffs: amd64 |
||||
| grub-efi-arm64-signed | 1+2.12+9+deb13u2 | Installability problems arm64 | ACCEPTED | |
|
Distribution mismatch: trixie-proposed-updates Reason: fix an illegal instruction on riscv64 Request: 1135292 Binary debdiffs: arm64 |
||||
| grub-efi-ia32-signed | 1+2.12+9+deb13u2 | Installability problems i386 | ACCEPTED | |
|
Distribution mismatch: trixie-proposed-updates Reason: fix an illegal instruction on riscv64 Request: 1135292 Binary debdiffs: i386 |
||||
| grub2 | 2.12-9+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix an illegal instruction on riscv64 Request: 1135292 µdebs: present Closes: 1108898 |
||||
| gst-plugins-bad1.0 | 1.26.2-3+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6190 CVEs referenced: CVE-2026-2923 CVE-2026-3081 CVE-2026-3082 CVE-2026-3084 CVE-2026-3086 |
||||
| gst-plugins-base1.0 | 1.26.2-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6167 CVEs referenced: CVE-2026-2921 |
||||
| gst-plugins-ugly1.0 | 1.26.3-4+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6191 CVEs referenced: CVE-2026-2920 CVE-2026-2922 Binary debdiffs: s390x |
||||
| gvfs | 1.57.2-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: use control connection address for PASV data [CVE-2026-28295]; reject paths containing CR/LF characters [CVE-2026-28296] Request: 1132174 CVEs referenced: CVE-2026-28295 CVE-2026-28296 |
||||
| harfbuzz | 10.2.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix NULL pointer dereference issue [CVE-2026-22693] Request: 1135904 µdebs: present Closes: 1125189 CVEs referenced: CVE-2026-22693 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| heimdal | 7.8.git20221117.28daf24+dfsg-9+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix memory leak in heimdal-clients; add build dependency on libcrypt-dev Request: 1130553 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| imagemagick | 8:7.1.1.43+dfsg1-1+deb13u8 | Installability problems | ACCEPTED | |
|
DSA: 6240 CVEs referenced: CVE-2026-32636 CVE-2026-33535 CVE-2026-33536 CVE-2026-33899 CVE-2026-33900 CVE-2026-33901 CVE-2026-33902 CVE-2026-33905 CVE-2026-33908 CVE-2026-34238 CVE-2026-40169 CVE-2026-40183 CVE-2026-40310 CVE-2026-40311 CVE-2026-40312 Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| imagemagick | 8:7.1.1.43+dfsg1-1+deb13u7 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6169 CVEs referenced: CVE-2026-28493 CVE-2026-28494 CVE-2026-28686 CVE-2026-28687 CVE-2026-28688 CVE-2026-28689 CVE-2026-28690 CVE-2026-28691 CVE-2026-28692 CVE-2026-28693 CVE-2026-30883 CVE-2026-30929 CVE-2026-30931 CVE-2026-30935 CVE-2026-30936 CVE-2026-30937 CVE-2026-31853 CVE-2026-32259 |
||||
| imagemagick | 8:7.1.1.43+dfsg1-1+deb13u6 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6158 CVEs referenced: CVE-2026-24481 CVE-2026-24484 CVE-2026-24485 CVE-2026-25576 CVE-2026-25637 CVE-2026-25638 CVE-2026-25794 CVE-2026-25795 CVE-2026-25796 CVE-2026-25797 CVE-2026-25798 CVE-2026-25799 CVE-2026-25897 CVE-2026-25898 CVE-2026-25965 CVE-2026-25966 CVE-2026-25967 CVE-2026-25968 CVE-2026-25969 CVE-2026-25970 CVE-2026-25971 CVE-2026-25982 CVE-2026-25983 CVE-2026-25985 CVE-2026-25986 CVE-2026-25987 CVE-2026-25988 CVE-2026-25989 CVE-2026-26066 CVE-2026-26283 CVE-2026-26284 CVE-2026-26983 CVE-2026-27798 CVE-2026-27799 |
||||
| incus | 6.0.4-2+deb13u7 | Installability problems | ACCEPTED | |
|
DSA: 6244 CVEs referenced: CVE-2026-40195 CVE-2026-40197 CVE-2026-40243 CVE-2026-40251 CVE-2026-41647 CVE-2026-41648 CVE-2026-41684 CVE-2026-41685 Binary debdiffs: all |
||||
| incus | 6.0.4-2+deb13u6 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6212 CVEs referenced: CVE-2026-34178 CVE-2026-34179 |
||||
| incus | 6.0.4-2+deb13u5 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6184 CVEs referenced: CVE-2026-28384 CVE-2026-33542 CVE-2026-33743 CVE-2026-33897 |
||||
| inetutils | 2:2.6-3+deb13u3 | Installability problems | ACCEPTED | |
|
DSA: 6193 CVEs referenced: CVE-2026-24061 CVE-2026-32746 CVE-2026-32772 Binary debdiffs: arm64 |
||||
| initramfs-tools | 0.148.4 | Installability problems | ACCEPTED | |
|
Reason: include Cadence driver, fixing failure to boot from USB storage on boards using Starfive SoC; unmkinitramfs: Accept lower-case hex digits in cpio headers, fixing compatibility with some other tools Request: 1135902 Closes: 1108924 |
||||
| integrit | 4.1-7+b13 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| jpeg-xl | 0.11.2-0.1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix uninitialised memory read issues [CVE-2025-12474 CVE-2026-1837]; fix cross build failure; fix "nojava" build profile; fix build on big-endian architectures Request: 1135145 Closes: 1092659 1110508 1110520 1114914 1123400 1128067 1128068 CVEs referenced: CVE-2025-12474 CVE-2026-1837 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| jq | 1.7.1-6+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix buffer overflow issue [CVE-2026-32316]; fix denial of service issues [CVE-2026-33947 CVE-2026-39956]; fix validation bypass issue [CVE-2026-33948]; fix out-of-bounds read issue [CVE-2026-39979]; fix use of hardcoded seed [CVE-2026-40164] Request: 1134168 CVEs referenced: CVE-2026-32316 CVE-2026-33947 CVE-2026-33948 CVE-2026-39956 CVE-2026-39979 CVE-2026-40164 |
||||
| jtreg7 | 7.5.2+1+ds2-3~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6231 Binary debdiffs: all Lintian issues: source |
||||
| kpackage | 5.116.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: skip flaky test Request: 1134828 Closes: 1031061 |
||||
| lemonldap-ng | 2.21.2+ds-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: OIDC: don't ignore non default signature algorithm; OIDC: register Front-Channel-Logout URL; really hide passwords in session-explorer when stored in session; update documentation to avoid using unsecured Nginx variable Request: 1135326 |
||||
| libarchive | 3.7.4-4+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix out-of-bounds read issues [CVE-2025-5918 CVE-2026-4424]; fix denial of service issues [CVE-2026-4111 CVE-2026-4426]; fix possible code execution issue [CVE-2026-5121] Request: 1135713 Closes: 1107624 1130753 1131444 1131446 1133002 CVEs referenced: CVE-2025-5918 CVE-2026-4111 CVE-2026-4424 CVE-2026-4426 CVE-2026-5121 |
||||
| libcap2 | 2.75-10+deb13u1+b1 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc µdebs: present Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| libcap2 | 1:2.75-10+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix time of check / time of use issue [CVE-2026-4878] Request: 1132991 µdebs: present CVEs referenced: CVE-2026-4878 Lintian issues: all |
||||
| libcdio | 2.2.0-4.1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix buffer overflow issue [CVE-2024-36600] Request: 1134262 Closes: 1129256 CVEs referenced: CVE-2024-36600 |
||||
| libcoap3 | 4.3.4-1.1+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix out-of-bounds read issue [CVE-2026-29013]; fix buffer overflow issue [CVE-2025-34468] Request: 1134383 CVEs referenced: CVE-2025-34468 CVE-2026-29013 |
||||
| libcryptx-perl | 0.085-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix "Crypt::PK key generation is not fork safe and will generate identical keys" [CVE-2026-41564] Request: 1134802 CVEs referenced: CVE-2026-41564 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| libdatetime-timezone-perl | 1:2.65-1+2026b | Installability problems | ACCEPTED | |
|
Reason: update included timezone data Request: 1135843 |
||||
| libdatetime-timezone-perl | 1:2.65-1+2026a | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: update to database 2026a Request: 1131470 |
||||
| libexif | 0.6.25-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix integer underflow issues [CVE-2026-40386 CVE-2026-32775]; fix integer overflow issue [CVE-2026-40385] Request: 1134175 Closes: 1131116 1133922 1133923 CVEs referenced: CVE-2026-32775 CVE-2026-40385 CVE-2026-40386 |
||||
| libfinance-quote-perl | 1.65-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix date in quotes retrieved from XETRA source Request: 1132880 Closes: 1132870 |
||||
| libnet-cidr-lite-perl | 0.22-3~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix ACL bypass issues [CVE-2026-40198 CVE-2026-40199] Request: 1133269 CVEs referenced: CVE-2026-40198 CVE-2026-40199 |
||||
| libpng1.6 | 1.6.48-1+deb13u4 | Installability problems | ACCEPTED | |
|
DSA: 6189 µdebs: present CVEs referenced: CVE-2026-33416 CVE-2026-33636 |
||||
| libreoffice | 4:25.2.3-2+deb13u4 | Installability problems armel armhf ppc64el s390x | ACCEPTED | |
|
DSA: 6251 CVEs referenced: CVE-2026-4430 Binary debdiffs: allamd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| libreoffice-texmaths | 0.49-1.1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: add dependency on dvipng/dvisvgm Request: 1130821 Binary debdiffs: all |
||||
| libtext-csv-xs-perl | 1.60-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix stack corruption issue [CVE-2026-7111] Request: 1135859 Closes: 1135232 CVEs referenced: CVE-2026-7111 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| libvncserver | 0.9.15+dfsg-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix out of bounds read issue [CVE-2026-32853]; fix NULL pointer dereference issue [CVE-2026-32854] Request: 1132878 CVEs referenced: CVE-2026-32853 CVE-2026-32854 |
||||
| libxml-parser-perl | 2.47-2~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6182 Closes: 378412 CVEs referenced: CVE-2006-10002 CVE-2006-10003 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| libxslt | 1.1.35-1.2+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix deterministic generate-id() regression causing build failures in other packages Request: 1133127 Closes: 1114928 Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| libyaml-syck-perl | 1.34-2+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6175 CVEs referenced: CVE-2026-4177 |
||||
| linux | 6.12.86-1 | Installability problems c-i running: cross-toolchain-base/77 [ppc64el] | ACCEPTED | |
|
DSA: 6253 µdebs: present Closes: 1113728 CVEs referenced: CVE-2025-38584 CVE-2026-23468 CVE-2026-31419 CVE-2026-31709 CVE-2026-31715 Binary debdiffs: allamd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| linux | 6.12.85-1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6238 µdebs: present Closes: 1127612 1130930 1132622 CVEs referenced: CVE-2024-14027 CVE-2025-22117 CVE-2025-38426 CVE-2025-38627 CVE-2025-39764 CVE-2025-40005 CVE-2025-40135 CVE-2025-40147 CVE-2025-40150 CVE-2025-68239 CVE-2025-68334 CVE-2025-68736 CVE-2025-71152 CVE-2025-71161 CVE-2025-71221 CVE-2025-71269 CVE-2026-22981 CVE-2026-22985 CVE-2026-22986 CVE-2026-22993 CVE-2026-23070 CVE-2026-23104 CVE-2026-23138 CVE-2026-23157 CVE-2026-23210 CVE-2026-23226 CVE-2026-23227 CVE-2026-23231 CVE-2026-23239 CVE-2026-23240 CVE-2026-23245 CVE-2026-23255 CVE-2026-23274 CVE-2026-23276 CVE-2026-23277 CVE-2026-23278 CVE-2026-23281 CVE-2026-23364 CVE-2026-23368 CVE-2026-23375 CVE-2026-23386 CVE-2026-23389 CVE-2026-23391 CVE-2026-23392 CVE-2026-23393 CVE-2026-23395 CVE-2026-23396 CVE-2026-23397 CVE-2026-23398 CVE-2026-23399 CVE-2026-23401 CVE-2026-23414 CVE-2026-23417 CVE-2026-23442 CVE-2026-31407 CVE-2026-31431 CVE-2026-31531 CVE-2026-31532 CVE-2026-31628 CVE-2026-31786 CVE-2026-31787 CVE-2026-31788 |
||||
| linux | 6.12.74-2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6162 µdebs: present |
||||
| linux-signed-amd64 | 6.12.86+1 | Installability problems amd64 | ACCEPTED | |
|
DSA: 6253 µdebs: present Closes: 1113728 CVEs referenced: CVE-2025-38584 CVE-2026-23468 CVE-2026-31419 CVE-2026-31709 CVE-2026-31715 Binary debdiffs: amd64 |
||||
| linux-signed-amd64 | 6.12.85+1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6238 µdebs: present Closes: 1127612 1130930 1132622 CVEs referenced: CVE-2024-14027 CVE-2025-22117 CVE-2025-38426 CVE-2025-38627 CVE-2025-39764 CVE-2025-40005 CVE-2025-40135 CVE-2025-40147 CVE-2025-40150 CVE-2025-68239 CVE-2025-68334 CVE-2025-68736 CVE-2025-71152 CVE-2025-71161 CVE-2025-71221 CVE-2025-71269 CVE-2026-22981 CVE-2026-22985 CVE-2026-22986 CVE-2026-22993 CVE-2026-23070 CVE-2026-23104 CVE-2026-23138 CVE-2026-23157 CVE-2026-23210 CVE-2026-23226 CVE-2026-23227 CVE-2026-23231 CVE-2026-23239 CVE-2026-23240 CVE-2026-23245 CVE-2026-23255 CVE-2026-23274 CVE-2026-23276 CVE-2026-23277 CVE-2026-23278 CVE-2026-23281 CVE-2026-23364 CVE-2026-23368 CVE-2026-23375 CVE-2026-23386 CVE-2026-23389 CVE-2026-23391 CVE-2026-23392 CVE-2026-23393 CVE-2026-23395 CVE-2026-23396 CVE-2026-23397 CVE-2026-23398 CVE-2026-23399 CVE-2026-23401 CVE-2026-23414 CVE-2026-23417 CVE-2026-23442 CVE-2026-31407 CVE-2026-31431 CVE-2026-31531 CVE-2026-31532 CVE-2026-31628 CVE-2026-31786 CVE-2026-31787 CVE-2026-31788 |
||||
| linux-signed-amd64 | 6.12.74+2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6162 µdebs: present |
||||
| linux-signed-arm64 | 6.12.86+1 | Installability problems arm64 | ACCEPTED | |
|
DSA: 6253 µdebs: present Closes: 1113728 CVEs referenced: CVE-2025-38584 CVE-2026-23468 CVE-2026-31419 CVE-2026-31709 CVE-2026-31715 Binary debdiffs: arm64 |
||||
| linux-signed-arm64 | 6.12.85+1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6238 µdebs: present Closes: 1127612 1130930 1132622 CVEs referenced: CVE-2024-14027 CVE-2025-22117 CVE-2025-38426 CVE-2025-38627 CVE-2025-39764 CVE-2025-40005 CVE-2025-40135 CVE-2025-40147 CVE-2025-40150 CVE-2025-68239 CVE-2025-68334 CVE-2025-68736 CVE-2025-71152 CVE-2025-71161 CVE-2025-71221 CVE-2025-71269 CVE-2026-22981 CVE-2026-22985 CVE-2026-22986 CVE-2026-22993 CVE-2026-23070 CVE-2026-23104 CVE-2026-23138 CVE-2026-23157 CVE-2026-23210 CVE-2026-23226 CVE-2026-23227 CVE-2026-23231 CVE-2026-23239 CVE-2026-23240 CVE-2026-23245 CVE-2026-23255 CVE-2026-23274 CVE-2026-23276 CVE-2026-23277 CVE-2026-23278 CVE-2026-23281 CVE-2026-23364 CVE-2026-23368 CVE-2026-23375 CVE-2026-23386 CVE-2026-23389 CVE-2026-23391 CVE-2026-23392 CVE-2026-23393 CVE-2026-23395 CVE-2026-23396 CVE-2026-23397 CVE-2026-23398 CVE-2026-23399 CVE-2026-23401 CVE-2026-23414 CVE-2026-23417 CVE-2026-23442 CVE-2026-31407 CVE-2026-31431 CVE-2026-31531 CVE-2026-31532 CVE-2026-31628 CVE-2026-31786 CVE-2026-31787 CVE-2026-31788 |
||||
| linux-signed-arm64 | 6.12.74+2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6162 µdebs: present |
||||
| luanti | 5.10.0+dfsg-5+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6217 |
||||
| lxc | 6.0.4-4+deb13u3+b1 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| lxc | 1:6.0.4-4+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix authorisation bypass issue [CVE-2026-39402] Request: 1135291 CVEs referenced: CVE-2026-39402 |
||||
| lxd | 5.0.2+git20231211.1364ae4-9+deb13u6 | Installability problems | ACCEPTED | |
|
DSA: 6247 CVEs referenced: CVE-2026-40197 CVE-2026-40251 CVE-2026-41648 CVE-2026-41684 CVE-2026-41685 Binary debdiffs: all Lintian issues: all |
||||
| lxd | 5.0.2+git20231211.1364ae4-9+deb13u5 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6213 CVEs referenced: CVE-2026-34177 CVE-2026-34178 CVE-2026-34179 Lintian issues: all |
||||
| lxd | 5.0.2+git20231211.1364ae4-9+deb13u4 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6188 CVEs referenced: CVE-2026-28384 CVE-2026-33542 CVE-2026-33897 Lintian issues: all |
||||
| mailman-suite | 0+20240312-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: add django.contrib.humanize to recommended apps in sample config Request: 1120015 Closes: 1116708 Binary debdiffs: all |
||||
| mapserver | 8.4.0-4+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix buffer overflow issue [CVE-2026-33721] Request: 1135608 CVEs referenced: CVE-2026-33721 Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| mediawiki | 1:1.43.8+dfsg-1~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6208 CVEs referenced: CVE-2026-34086 CVE-2026-34087 CVE-2026-34088 CVE-2026-34089 CVE-2026-34090 CVE-2026-34091 CVE-2026-34092 CVE-2026-34093 CVE-2026-34094 CVE-2026-34095 CVE-2026-5266 Binary debdiffs: all |
||||
| modsecurity-crs | 3.3.7-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix file extension blocking bypass issue [CVE-2026-33691] Request: 1135209 CVEs referenced: CVE-2026-33691 Lintian issues: source |
||||
| mongo-c-driver | 1.30.4-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix insufficient validation issues [CVE-2025-14911 CVE-2026-6231]; fix denial of service issue [CVE-2026-4359]; fix buffer overflow issue [CVE-2026-6691]; improve handling of corrupt GridFS files Request: 1135124 CVEs referenced: CVE-2025-14911 CVE-2026-4359 CVE-2026-6231 CVE-2026-6691 Binary debdiffs: ppc64el Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| multipart | 1.2.1-2+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6161 CVEs referenced: CVE-2026-28356 |
||||
| mumble | 1.5.735-5+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix Opus buffer overrun leading to crash Request: 1131017 Closes: 1129178 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| mupdf | 1.25.1+ds1-6+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6218 Closes: 1133189 CVEs referenced: CVE-2026-3308 |
||||
| nautilus-wipe | 0.4.alpha2-1.1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: remove Multi-Arch: same Request: 1136015 Closes: 1077235 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| netatalk | 4.2.3~ds-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix authentication in complex AD environments Request: 1117453 Closes: 1111652 |
||||
| netty | 1:4.1.48-10+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6160 Closes: 1111105 1113994 1118282 1123606 CVEs referenced: CVE-2025-55163 CVE-2025-58056 CVE-2025-58057 CVE-2025-59419 CVE-2025-67735 Binary debdiffs: all Lintian issues: source |
||||
| nginx | 1.26.3-3+deb13u4 | Installability problems c-i running: roundcube/1.6.13+dfsg-0+deb13u1 [ppc64el] | ACCEPTED | |
|
Reason: use "$host" instead of "$http_host" Request: 1134654 Lintian issues: all |
||||
| nginx | 1.26.3-3+deb13u3 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: fix buffer overflow issues [CVE-2026-27654 CVE-2026-27784 CVE-2026-32647]; fix session authentication issues [CVE-2026-27651 CVE-2026-28753]; fix OCSP result bypass issue [CVE-2026-28755] Request: 1132345 CVEs referenced: CVE-2026-27651 CVE-2026-27654 CVE-2026-27784 CVE-2026-28753 CVE-2026-28755 CVE-2026-32647 Binary debdiffs: armhf |
||||
| ngtcp2 | 1.11.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6222 Closes: 1134197 CVEs referenced: CVE-2026-40170 |
||||
| node-flatted | 3.2.7~ds-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix prototype pollution issue [CVE-2026-33228] Request: 1131505 Closes: 1131462 CVEs referenced: CVE-2026-33228 |
||||
| node-node-rsa | 1.1.1-5+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix builds with OpenSSL 3 Request: 1131339 Closes: 1117354 |
||||
| node-tar | 6.2.1+~cs7.0.8-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: properly sanitize absolute linkpaths [CVE-2026-23745]; normalize out unicode ligatures [CVE-2026-23950]; properly sanitize hard links containing '..' [CVE-2026-24842]; prevent hardlinking to files outside the extraction root [CVE-2026-26960]; strip leading '/' before sanitizing '..' [CVE-2026-29786]; prevent escaping symlinks with drive-relative paths [CVE-2026-31802] Request: 1131776 Closes: 1129378 CVEs referenced: CVE-2026-23745 CVE-2026-23950 CVE-2026-24842 CVE-2026-26960 CVE-2026-29786 CVE-2026-31802 Binary debdiffs: all |
||||
| nodejs | 20.19.2+dfsg-1+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6183 CVEs referenced: CVE-2026-21637 CVE-2026-21710 CVE-2026-21713 CVE-2026-21714 CVE-2026-21715 CVE-2026-21716 CVE-2026-21717 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| nodejs | 20.19.2+dfsg-1+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6166 CVEs referenced: CVE-2025-23085 CVE-2025-55130 CVE-2025-55131 CVE-2025-55132 CVE-2025-59465 CVE-2025-59466 CVE-2026-21637 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| ntfs-3g | 1:2022.10.3-5+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6221 µdebs: present CVEs referenced: CVE-2026-40706 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| numba | 0.61.2+dfsg-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: conditionally skip tests requiring more CPUs than available Request: 1135265 Closes: 1108051 |
||||
| opam | 2.3.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6216 |
||||
| openjdk-21 | 21.0.11+10-1~deb13u2 | Installability problems amd64 arm64 armel armhf i386 ppc64el riscv64 s390x | ACCEPTED | |
|
DSA: 6231 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
||||
| openjdk-21 | 21.0.11+10-1~deb13u1 | Installability problems armel riscv64 | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6231 |
||||
| openjdk-25 | 25.0.3+9-2~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6246 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| openssh | 1:10.0p1-7+deb13u4 | Installability problems | ACCEPTED | |
|
Reason: don't reuse c->isatty for signalling that the remote channel has a tty attached Request: 1135624 µdebs: present Closes: 1130595 1132572 1132573 1132574 1132575 1132576 1135798 CVEs referenced: CVE-2026-3497 CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
||||
| openssh | 1:10.0p1-7+deb13u3 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: ensure scp does not unexpectedly make transferred files setuid or setgid [CVE-2026-35385]; fix command execution issue [CVE-2026-35386]; fix incomplete application of PubkeyAcceptedAlgorithms and HostbasedAcceptedAlgorithms with regard to ECDSA keys [CVE-2026-35387]; use connection multiplexing confirmation for proxy-mode multiplexing sessions [CVE-2026-35388]; fix handling of the authorized_keys "principals" option [CVE-2026-35414]; validate user and host names for ProxyJump/-J options passed via the command line; IPQoS handling improvements Request: 1135624 µdebs: present Closes: 1130595 1132572 1132573 1132574 1132575 1132576 CVEs referenced: CVE-2026-3497 CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| openssh | 1:10.0p1-7+deb13u2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6204 µdebs: present Closes: 1130595 CVEs referenced: CVE-2026-3497 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| openssl | 3.5.6-1~deb13u1 | Installability problems c-i failed: fastdds/3.1.2+ds-1 [s390x] nodejs/20.19.2+dfsg-1 [amd64] nodejs/20.19.2+dfsg-1 [arm64] nodejs/20.19.2+dfsg-1 [i386] nodejs/20.19.2+dfsg-1 [ppc64el] nodejs/20.19.2+dfsg-1 [s390x] | ACCEPTED | |
|
Reason: new upstream stable release Request: 1135700 µdebs: present Binary debdiffs: all Lintian issues: all |
||||
| openssl | 3.5.5-1~deb13u2 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6201 µdebs: present Closes: 1130650 CVEs referenced: CVE-2026-2673 CVE-2026-28387 CVE-2026-28389 CVE-2026-28390 CVE-2026-31789 CVE-2026-31790 |
||||
| orca | 48.1-1+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: remove lightdm wrapper on package removal Request: 1135300 Closes: 826542 Binary debdiffs: all |
||||
| osdlyrics | 0.5.15+dfsg-2+deb13u1+b1 | Installability problems | ACCEPTED | |
|
Reason: rebuild in a clean environment Request: 1133382 |
||||
| osdlyrics | 0.5.15+dfsg-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: add missing runtime dependency python3-pycurl Request: 1133382 Closes: 1133380 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x
binNMU on amd64
|
||||
| packagekit | 1.3.1-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6226 Binary debdiffs: s390x |
||||
| pdns | 4.9.14-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6233 CVEs referenced: CVE-2026-33257 CVE-2026-33260 CVE-2026-33608 CVE-2026-33609 CVE-2026-33610 CVE-2026-33611 Binary debdiffs: s390x |
||||
| pdns-recursor | 5.2.9-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6234 CVEs referenced: CVE-2026-33257 CVE-2026-33258 CVE-2026-33259 CVE-2026-33260 CVE-2026-33261 CVE-2026-33600 CVE-2026-33601 |
||||
| phosh | 0.46.0-3+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: cell-broadcast-prompt: close dialog on swipe; strip whitespace; wifi-network: don't unconditionally overwrite active access point; don't set active indicator visible Request: 1132011 |
||||
| php-league-commonmark | 2.7.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix DisallowedRawHtml bypass via newline/tab in tag names [CVE-2026-30838]; fix DomainFilteringAdapter hostname boundary bypass [CVE-2026-33347] Request: 1132185 CVEs referenced: CVE-2026-30838 CVE-2026-33347 |
||||
| php-phpseclib | 2.0.48-3+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix denial of service issue [CVE-2024-27355]; fix variable time comparison issue [CVE-2026-40194] Request: 1134373 CVEs referenced: CVE-2024-27355 CVE-2026-40194 |
||||
| php-phpseclib | 2.0.48-3+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6186 Closes: 1131483 CVEs referenced: CVE-2026-32935 |
||||
| php-phpseclib3 | 3.0.43-2+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix denial of service issue [CVE-2024-27355]; fix variable time comparison issue [CVE-2026-40194] Request: 1134372 CVEs referenced: CVE-2024-27355 CVE-2026-40194 |
||||
| php-phpseclib3 | 3.0.43-2+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6187 Closes: 1131482 CVEs referenced: CVE-2026-32935 |
||||
| php8.4 | 8.4.16-1~deb13u1 | Installability problems c-i failed: matomo/5.3.1+dfsg-1 [amd64] php-crypt-gpg/1.6.11-1 [arm64] | ACCEPTED | |
|
DSA: 6088 CVEs referenced: CVE-2025-14177 CVE-2025-14178 CVE-2025-14180 Lintian issues: source |
||||
| phpseclib | 1.0.23-6+deb13u3 | Installability problems | ACCEPTED | |
|
Reason: fix denial of service issue [CVE-2024-27355]; fix variable time comparison issue [CVE-2026-40194] Request: 1134374 CVEs referenced: CVE-2024-27355 CVE-2026-40194 |
||||
| phpseclib | 1.0.23-6+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6185 Closes: 1131485 CVEs referenced: CVE-2026-32935 |
||||
| pillow | 11.1.0-5+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6219 CVEs referenced: CVE-2026-40192 |
||||
| proftpd-dfsg | 1.3.8.c+dfsg-4+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix SQL injection issue [CVE-2026-42167] Request: 1135374 Closes: 1135119 CVEs referenced: CVE-2026-42167 Lintian issues: source |
||||
| prosody | 13.0.1-1+deb131u | Installability problems | ACCEPTED | |
|
DSA: 6252 CVEs referenced: CVE-2026-43504 CVE-2026-43505 CVE-2026-43506 CVE-2026-43507 |
||||
| pyasn1 | 0.6.1-1+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6194 Closes: 1131371 CVEs referenced: CVE-2026-30922 |
||||
| pymupdf | 1.25.4+ds1-3+deb13u1 | Installability problems c-i failed: pymupdf/1.25.4+ds1-3+deb13u1 [amd64] pymupdf/1.25.4+ds1-3+deb13u1 [arm64] pymupdf/1.25.4+ds1-3+deb13u1 [i386] pymupdf/1.25.4+ds1-3+deb13u1 [ppc64el] pymupdf/1.25.4+ds1-3+deb13u1 [riscv64] pymupdf/1.25.4+ds1-3+deb13u1 [s390x] | ACCEPTED | |
|
Reason: improve safety of 'pymupdf embed-extract' when dealing with existing files [CVE-2026-3029] Request: 1131610 CVEs referenced: CVE-2026-3029 |
||||
| python-aiohttp | 3.11.16-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6241 CVEs referenced: CVE-2025-69223 CVE-2025-69224 CVE-2025-69225 CVE-2025-69226 CVE-2025-69227 CVE-2025-69228 CVE-2025-69229 |
||||
| python-authlib | 1.6.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix cross-site request forgery issue [CVE-2025-68158]; fix denial of service issues [CVE-2025-62706 CVE-2025-61920]; fix policy bypass issue [CVE-2025-59420] Request: 1129477 CVEs referenced: CVE-2025-59420 CVE-2025-61920 CVE-2025-62706 CVE-2025-68158 |
||||
| python-bottle-sqlite | 0.2.0-4+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix compaibility with Python 3.11+ Request: 1132590 Closes: 1132009 Binary debdiffs: all |
||||
| python-certbot | 4.0.0-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: re-use selected profile for renewals Request: 1132949 Closes: 1125267 |
||||
| python-ldap | 3.4.4-1+deb13u1 | Installability problems c-i running: django-ldapdb/1.5.1-3 [ppc64el] django-ldapdb/1.5.1-3 [s390x] | ACCEPTED | |
|
Reason: fix insufficient escaping issue [CVE-2025-61911]; fix denial of service issue [CVE-2025-61912] Request: 1132935 CVEs referenced: CVE-2025-61911 CVE-2025-61912 Binary debdiffs: all |
||||
| python-mapbox-earcut | 1.0.3-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: remove "Multi-Arch: same" annotation Request: 1135121 Closes: 1133401 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| python-oslo.db | 17.2.1-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix compatibility with newer mariadb versions Request: 1110851 |
||||
| python-tornado | 6.4.2-3+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6195 CVEs referenced: CVE-2025-67725 |
||||
| python3-lxc | 1:5.0.0-2+deb13u1 | Version problems testing (1:5.0.0-2) python3-lxc/testing [amd64] (1:5.0.0-2+b4) python3-lxc/testing [arm64] (1:5.0.0-2+b5) python3-lxc/testing [armhf] (1:5.0.0-2+b4) python3-lxc/testing [i386] (1:5.0.0-2+b4) python3-lxc/testing [ppc64el] (1:5.0.0-2+b4) python3-lxc/testing [riscv64] (1:5.0.0-2+b4) python3-lxc/testing [s390x] (1:5.0.0-2+b4) | Installability problems | ACCEPTED |
|
Reason: fix compatibility with Python 3.13 Request: 1135867 Closes: 1135733 |
||||
| python3.13 | 3.13.5-2+deb13u2 | Installability problems c-i failed: swi-prolog/9.2.9+dfsg-1 [ppc64el] swi-prolog/9.2.9+dfsg-1 [riscv64] | ACCEPTED | |
|
Reason: fix early halt of base64 processing [CVE-2026-3446]; fix validation bypass issue [CVE-2026-3644]; fix stack overflow issue [CVE-2026-4224]; fix insufficient validation issue [CVE-2026-4519]; fix insufficient escaping issue [CVE-2026-6019]; fix use-after-free issue Request: 1135877 Closes: 1135116 CVEs referenced: CVE-2026-3446 CVE-2026-3644 CVE-2026-4224 CVE-2026-4519 CVE-2026-6019 CVE-2026-6100 |
||||
| python3.13 | 3.13.5-2+deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. Reason: fix header injection issues [CVE-2025-11468 CVE-2025-15282 CVE-2026-0672 CVE-2026-0865 CVE-2026-1299]; fix denial of service issues [CVE-2025-12084 CVE-2025-13836 CVE-2025-13837 CVE-2025-6069 CVE-2025-6075 CVE-2025-8194]; fix incorrect parsing of TarInfo header [CVE-2025-13462]; fix insufficient validation in zipFile [CVE-2025-8291]; fix missing sys.audit invocation [CVE-2026-2297] Request: 1132941 Closes: 1124764 1126740 1126745 1126762 1126780 1126787 CVEs referenced: CVE-2025-11468 CVE-2025-12084 CVE-2025-13462 CVE-2025-13836 CVE-2025-13837 CVE-2025-15282 CVE-2025-6069 CVE-2025-6075 CVE-2025-8194 CVE-2025-8291 CVE-2026-0672 CVE-2026-0865 CVE-2026-1299 CVE-2026-2297 |
||||
| qcoro | 0.12.0-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: skip flaky tests Request: 1135878 Closes: 1108055 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| qt6-base | 6.8.2+dfsg-9+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix data race issues Request: 1135659 Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| remmina | 1.4.39+dfsg-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: disable "phone home" functionality Request: 1133078 |
||||
| request-tracker5 | 5.0.7+dfsg-4+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix builds of CKEditor when firefox is >= 148 Request: 1130053 Closes: 1129090 Lintian issues: source |
||||
| roundcube | 1.6.15+dfsg-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6196 CVEs referenced: CVE-2026-35537 CVE-2026-35538 CVE-2026-35539 CVE-2026-35540 CVE-2026-35541 CVE-2026-35542 CVE-2026-35543 CVE-2026-35544 CVE-2026-35545 |
||||
| rsync | 3.4.1+ds1-5+deb13u2 | Installability problems c-i failed: nanoc/4.13.3-3 [ppc64el] | ACCEPTED | |
|
Reason: fix symlink handling on the receiver; fix use-after-free issue [CVE-2026-41035] Request: 1135375 Closes: 1093160 CVEs referenced: CVE-2026-41035 Lintian issues: source |
||||
| ruby-rack | 3.1.20-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6180 CVEs referenced: CVE-2026-22860 CVE-2026-25500 Binary debdiffs: all Lintian issues: source |
||||
| sash | 3.8-7+b12 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| sed | 4.9-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix time of check / time of use issue [CVE-2026-5958] Request: 1135112 Closes: 1134495 CVEs referenced: CVE-2026-5958 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| shim | 16.1-2~deb13u1 | Version problems testing (15.8-1) | Installability problems | ACCEPTED |
|
Reason: new upstream release; build with default gcc; set SBAT revocation level to 2025021800 Missing lock-step packages: shim-helpers-amd64-signed shim-helpers-arm64-signed shim-signed Request: 1131861 Lintian issues: source |
||||
| simpleeval | 1.0.3-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6220 Closes: 1130875 CVEs referenced: CVE-2026-32640 Binary debdiffs: all |
||||
| snapd | 2.68.3-3+deb13u1+b6 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated libcap2, glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| snapd | 2.68.3-3+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6170 Closes: 1131120 CVEs referenced: CVE-2026-3888 |
||||
| spip | 4.4.13+dfsg-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6174 |
||||
| starlet | 0.31-2+deb13u1 | Version problems testing (0.31-2) | Installability problems | ACCEPTED |
|
Reason: fix HTTP request smuggling issue [CVE-2026-40561] Request: 1135858 Closes: 1135584 CVEs referenced: CVE-2026-40561 |
||||
| stayrtr | 0.6.2-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: stop serving stale VRPs when the validator is stuck; use Restart=on-abnormal instead of on-abort Request: 1124638 |
||||
| strongswan | 6.0.1-6+deb13u5 | Installability problems | ACCEPTED | |
|
DSA: 6227 CVEs referenced: CVE-2026-35328 CVE-2026-35329 CVE-2026-35330 CVE-2026-35331 CVE-2026-35332 CVE-2026-35333 CVE-2026-35334 |
||||
| strongswan | 6.0.1-6+deb13u4 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6176 CVEs referenced: CVE-2026-25075 |
||||
| sudo | 1.9.16p2-3+deb13u2 | Installability problems c-i running: crash/8.0.6-1 [amd64] | ACCEPTED | |
|
Reason: fix privilege escalation issue [CVE-2026-35535] Request: 1133278 Closes: 1130593 CVEs referenced: CVE-2026-35535 Lintian issues: source |
||||
| superqt | 0.7.3-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: skip flaky font metrics test Request: 1135882 Closes: 1131249 |
||||
| suricata | 1:7.0.10-1+deb13u4 | Installability problems | ACCEPTED | |
|
Reason: fix denial of service issues [CVE-2026-31932 CVE-2026-31933 CVE-2026-31935 CVE-2026-31937] Request: 1134685 CVEs referenced: CVE-2026-31932 CVE-2026-31933 CVE-2026-31935 CVE-2026-31937 |
||||
| swupdate | 2024.12.1+dfsg-3+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix denial of service issue [CVE-2026-28525] Request: 1135638 CVEs referenced: CVE-2026-28525 Lintian issues: allamd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| sylpheed | 3.8.0~beta1-2+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: add link check to address [CVE-2021-37746] Request: 1130207 CVEs referenced: CVE-2021-37746 |
||||
| systemd | 257.13-1~deb13u1 | Installability problems | ACCEPTED | |
|
Reason: new upstream stable release; ensure /tmp workaround does not override local unit/fstab; fix assert and freeze [CVE-2026-29111]; fix code execution issues [CVE-2026-40225 CVE-2026-4105]; fix nspawn escape-to-host issue [CVE-2026-40226] Request: 1135188 Closes: 1116344 CVEs referenced: CVE-2026-29111 CVE-2026-40225 CVE-2026-40226 CVE-2026-4105 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: amd64arm64armelarmhfi386ppc64elriscv64s390xsource |
||||
| systemd-boot-efi-amd64-signed | 257.13+1~deb13u1 | Installability problems | ACCEPTED | |
|
Distribution mismatch: trixie-proposed-updates Reason: new upstream stable release; ensure /tmp workaround does not override local unit/fstab; fix assert and freeze [CVE-2026-29111]; fix code execution issues [CVE-2026-40225 CVE-2026-4105]; fix nspawn escape-to-host issue [CVE-2026-40226] Request: 1135188 Closes: 1116344 CVEs referenced: CVE-2026-29111 CVE-2026-40225 CVE-2026-40226 CVE-2026-4105 Binary debdiffs: amd64 Lintian issues: source |
||||
| systemd-boot-efi-arm64-signed | 257.13+1~deb13u1 | Installability problems | ACCEPTED | |
|
Distribution mismatch: trixie-proposed-updates Reason: new upstream stable release; ensure /tmp workaround does not override local unit/fstab; fix assert and freeze [CVE-2026-29111]; fix code execution issues [CVE-2026-40225 CVE-2026-4105]; fix nspawn escape-to-host issue [CVE-2026-40226] Request: 1135188 Closes: 1116344 CVEs referenced: CVE-2026-29111 CVE-2026-40225 CVE-2026-40226 CVE-2026-4105 Binary debdiffs: arm64 Lintian issues: source |
||||
| thunderbird | 1:140.10.1esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6242 |
||||
| thunderbird | 1:140.10.0esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6229 |
||||
| thunderbird | 1:140.9.1esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6211 |
||||
| thunderbird | 1:140.9.0esr-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6179 |
||||
| tiff | 4.7.0-3+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6203 Closes: 1132632 CVEs referenced: CVE-2026-4775 |
||||
| tini | 0.19.0-3+b7 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| toil | 8.0.0-5+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: conditionally skip tests requiring more CPUs than available Request: 1135228 Closes: 1108056 |
||||
| tor | 0.4.9.6-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6200 Binary debdiffs: all |
||||
| tripwire | 2.4.3.7-6+b17 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| tsocks | 1.8beta5+ds1-3+b7 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| tzdata | 2026b-0+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: new upstream release; update data for British Columbia Request: 1135177 |
||||
| unbound | 1.22.0-2+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: never try TLS to reach root nameservers Request: 1130863 Closes: 1129922 |
||||
| user-mode-linux | 6.12um1+b13 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated Linux |
||||
| valkey | 8.1.1+dfsg1-3+deb13u2 | Installability problems | ACCEPTED | |
|
DSA: 6198 Closes: 1130911 CVEs referenced: CVE-2025-67733 CVE-2026-21863 Lintian issues: source |
||||
| vips | 8.16.1-1+deb13u1 | Installability problems | ACCEPTED | |
|
Reason: fix buffer overflow issues [CVE-2026-2913 CVE-2026-3147 CVE-2026-3281]; fix memory corruption issue [CVE-2026-3145]; fix null pointer dereference issue [CVE-2026-3146]; fix out of bound read issues [CVE-2026-3282 CVE-2026-3283]; fix integer overflow issue [CVE-2026-3284] Request: 1132858 Closes: 1128785 1129310 1129311 1129312 1129314 1129315 CVEs referenced: CVE-2026-2913 CVE-2026-3145 CVE-2026-3146 CVE-2026-3147 CVE-2026-3281 CVE-2026-3282 CVE-2026-3283 CVE-2026-3284 Binary debdiffs: s390x |
||||
| webkit2gtk | 2.52.3-2~deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6232 Binary debdiffs: allamd64arm64armelarmhfi386ppc64elriscv64s390x Lintian issues: source |
||||
| webkit2gtk | 2.50.6-1~deb13u1 | Installability problems | ACCEPTED | |
|
This upload was superseded by a more current one. DSA: 6172 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| wireshark | 4.4.15-0+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6249 Closes: 1135323 CVEs referenced: CVE-2026-5299 CVE-2026-5401 CVE-2026-5403 CVE-2026-5404 CVE-2026-5405 CVE-2026-5406 CVE-2026-5407 CVE-2026-5408 CVE-2026-5409 CVE-2026-5653 CVE-2026-5654 CVE-2026-5656 CVE-2026-5657 CVE-2026-6519 CVE-2026-6520 CVE-2026-6521 CVE-2026-6522 CVE-2026-6523 CVE-2026-6524 CVE-2026-6527 CVE-2026-6529 CVE-2026-6530 CVE-2026-6531 CVE-2026-6532 CVE-2026-6533 CVE-2026-6534 CVE-2026-6535 CVE-2026-6537 CVE-2026-6538 CVE-2026-6867 CVE-2026-6868 CVE-2026-6869 CVE-2026-6870 CVE-2026-7375 CVE-2026-7376 CVE-2026-7378 CVE-2026-7379 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| xdg-dbus-proxy | 0.1.6-1+deb13u1 | Installability problems | ACCEPTED | |
|
DSA: 6209 Closes: 1132939 CVEs referenced: CVE-2026-34080 Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||
| xorg-server | 2:21.1.16-1.3+deb13u2 | Installability problems | ACCEPTED | |
|
Reason: fix buffer re-use issue [CVE-2026-33999]; fix / improve bounds checking [CVE-2026-34000 CVE-2026-34003]; fix use after free issue [CVE-2026-34001]; fix out-of-bounds read issue [CVE-2026-34002] Request: 1134330 µdebs: present CVEs referenced: CVE-2026-33999 CVE-2026-34000 CVE-2026-34001 CVE-2026-34002 CVE-2026-34003 |
||||
| zsh | 5.9-8+b23 | Installability problems | ACCEPTED | |
|
Reason: rebuild with updated libcap2, glibc Binary debdiffs: amd64arm64armelarmhfi386ppc64elriscv64s390x |
||||