Queue Overview for "proposed-updates"

Removals

List of missing builds
List of missing packages relative to security archive

Resolution Pending (15 uploads for 14 packages)

Package Version Version Problems Installability Problems Architectures Action
cacti 1.2.2+ds1-2+deb10u2 Installability problems Built: allsource Ok

DSA: 4604

Closes: 941036 947374 947375

CVEs referenced: CVE-2019-16723 CVE-2019-17357 CVE-2019-17358

clamav 0.102.1+dfsg-0+deb10u1 Installability problems Built: source ?

Closes: 690789 945265

CVEs referenced: CVE-2019-15961

Lintian issues: source

debian-security-support 2019.12.12~deb10u1 Installability problems Built: source ?

Lintian issues: source

gtk2-engines-murrine 0.98.2-2+deb10u1 Installability problems Built: source ?

Closes: 838994

horizon 3:14.0.2-3+deb10u1 Installability problems Built: source More info needed

Reason: fix change of WEBROOT

Request: 945592

Queries on changes; could also do with better description
         
mailutils 1:3.5-4 Installability problems Built: source More info needed

Reason: maidag: drop setuid privileges for all delivery operations but mda [CVE-2019-18862]

Closes: 944265

CVEs referenced: CVE-2019-18862

Awaiting fix in unstable (and potential version change)
         
numix-gtk-theme 2.6.7-4+deb10u1 Installability problems Built: source ?

Closes: 891493

octavia 3.0.0-3+deb10u1 Installability problems Built: source More info needed

Reason: some changes need further discussion; too late for 10.2

Request: 941901

Closes: 941897

CVEs referenced: CVE-2019-17134

quassel 1:0.13.1-1+deb10u2 Installability problems Built: source ?

Closes: 940482

quassel 1:0.13.1-1+deb10u1 Installability problems Built: source ?

Closes: 940482

roundcube 1.3.10+dfsg.1-1~deb10u1 Installability problems Built: source ?

Closes: 947320

samba 2:4.9.5+dfsg-5+deb10u1 Installability problems Built: allsource Missing: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x Ok

DSA: 4513

CVEs referenced: CVE-2019-10197

thunderbird 1:68.4.1-1~deb10u1 Version problems testing (1:60.9.0-1) Installability problems Built: allamd64arm64i386mips64elppc64els390xsource Missing: armelarmhf Ok

DSA: 4603

Lintian issues: allamd64arm64i386mips64elppc64els390x

tiff 4.1.0+git191117-2~deb10u1 Installability problems Built: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390xsource ?

DSA: 4608

Closes: 934780 945402

CVEs referenced: CVE-2019-14973

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: mipsmips64elmipsel

tigervnc 1.9.0+dfsg-3+deb10u1 Installability problems Built: source ?

Closes: 947428

CVEs referenced: CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695

Pending Processing (0 uploads for 0 packages)

Processed (104 uploads for 90 packages)

Package Version Version Problems Installability Problems Action
alot 0.8.1-1+deb10u1 Installability problems ACCEPTED

Reason: remove expiration time from test suite keys, fixing build failure

Request: 948485

Closes: 930057

atril 1.20.3-1+deb10u1 Installability problems ACCEPTED

Reason: fix segfault when no document is loaded; fix read of uninitialised memory [CVE-2019-11459]

Request: 946819

Closes: 927821

CVEs referenced: CVE-2019-1010006 CVE-2019-11459

beagle 5.0-180928+dfsg-1+deb10u1 Installability problems ACCEPTED

Reason: provide wrapper script instead of symlinks to JARs, making them work again

Request: 948601

Closes: 940611

Binary debdiffs: all

Lintian issues: all

bgpdump 1.6.0-1+deb10u1 Installability problems ACCEPTED

Reason: fix segmentation fault

Request: 945965

Closes: 945881

Binary debdiffs: mips64el

brightd 0.4.1-2+deb10u1 Installability problems ACCEPTED

Reason: actually compare the value read out of /sys/class/power_supply/AC/online with '0'

Request: 948826

Closes: 934140

Lintian issues: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

chromium 79.0.3945.130-1~deb10u1 Installability problems ACCEPTED

DSA: 4606

CVEs referenced: CVE-2019-13725 CVE-2019-13726 CVE-2019-13727 CVE-2019-13728 CVE-2019-13729 CVE-2019-13730 CVE-2019-13732 CVE-2019-13734 CVE-2019-13735 CVE-2019-13736 CVE-2019-13737 CVE-2019-13738 CVE-2019-13739 CVE-2019-13740 CVE-2019-13741 CVE-2019-13742 CVE-2019-13743 CVE-2019-13744 CVE-2019-13745 CVE-2019-13746 CVE-2019-13747 CVE-2019-13748 CVE-2019-13749 CVE-2019-13750 CVE-2019-13751 CVE-2019-13752 CVE-2019-13753 CVE-2019-13754 CVE-2019-13755 CVE-2019-13756 CVE-2019-13757 CVE-2019-13758 CVE-2019-13759 CVE-2019-13761 CVE-2019-13762 CVE-2019-13763 CVE-2019-13764 CVE-2019-13767 CVE-2020-6377 CVE-2020-6378 CVE-2020-6379 CVE-2020-6380

Lintian issues: source

chromium 78.0.3904.108-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4575

CVEs referenced: CVE-2019-13723 CVE-2019-13724

console-common 0.7.90+deb10u1 Installability problems ACCEPTED

Reason: fix regression that led to files not being included

Request: 948290

Closes: 935096

Binary debdiffs: all

Lintian issues: all

csh 20110502-4+deb10u1 Installability problems ACCEPTED

Reason: fix segfault on eval

Request: 948850

Closes: 933057

cups 2.2.10-6+deb10u2 Installability problems ACCEPTED

Reason: fix memory leak in ppdOpen; fix validation of default language in ippSetValuetag [CVE-2019-2228]

Request: 947832

Closes: 946782 946941

CVEs referenced: CVE-2019-2228

cyrus-imapd 3.0.8-6+deb10u4 Installability problems ACCEPTED

Reason: add BACKUP type to cyrus-upgrade-db, fixing upgrade issues

Request: 947125

Closes: 930764

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

cyrus-imapd 3.0.8-6+deb10u3 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4590

CVEs referenced: CVE-2019-19783

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

cyrus-sasl2 2.1.27+dfsg-1+deb10u1 Installability problems ACCEPTED

DSA: 4591

Closes: 947043

CVEs referenced: CVE-2019-19906

davical 1.1.8-1+deb10u1 Installability problems ACCEPTED

DSA: 4582

Closes: 946343

CVEs referenced: CVE-2019-18345 CVE-2019-18346 CVE-2019-18347

Binary debdiffs: all

debian-edu-config 2.10.65+deb10u3 Installability problems ACCEPTED

DSA: 4589

Closes: 946797

CVEs referenced: CVE-2019-3467

Binary debdiffs: all

debian-lan-config 0.25+deb10u1 Installability problems ACCEPTED

DSA: 4595

Binary debdiffs: all

debos 1.0.0+git20190123.d6e16be-1+b1 Installability problems ACCEPTED

Reason: rebuild against updated golang-github-go-debos-fakemachine

Request: 946467

Binary debdiffs: amd64

dispmua 1.8.4.6-1~deb10u1 Installability problems ACCEPTED

Reason: new upstream release compatible with Thunderbird 68

Request: 946651

Closes: 943584

Binary debdiffs: all

Lintian issues: source

dkimpy 0.9.6-0+deb10u1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 947321

Binary debdiffs: all

Lintian issues: all

dkimpy-milter 1.0.3-1 Installability problems ACCEPTED

Reason: fix privilege managment at startup so Unix sockets work

Request: 948979

Binary debdiffs: all

Lintian issues: all

dpdk 18.11.5-1~deb10u1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 945518

CVEs referenced: CVE-2019-14818

Binary debdiffs: allamd64arm64armhfi386ppc64el

Lintian issues: amd64arm64armhfi386ppc64elsource

dpdk 18.11.2-2+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4567

CVEs referenced: CVE-2019-14818

enigmail 2:2.1.3+ds1-4~deb10u2 Version problems testing (2:2.0.12+ds1-1) Installability problems ACCEPTED

DSA: 4571

Closes: 933832 944216 945014

Binary debdiffs: all

Lintian issues: source

fig2dev 1:3.2.7a-5+deb10u2 Installability problems ACCEPTED

Reason: allow Fig v2 text strings ending with multiple ^A [CVE-2019-19555]

Request: 946184

Closes: 946176

CVEs referenced: CVE-2019-19555

firefox-esr 68.4.1esr-1~deb10u1 Installability problems ACCEPTED

DSA: 4600

CVEs referenced: CVE-2019-17026

Lintian issues: armhfi386mipsmipselsource

firefox-esr 68.4.0esr-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4600

Closes: 946193

CVEs referenced: CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024

Lintian issues: armhfi386mipsmipsel

firefox-esr 68.3.0esr-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4580

CVEs referenced: CVE-2019-11745 CVE-2019-17005 CVE-2019-17008 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012

Lintian issues: armhfi386mipsmipsel

freeimage 3.18.0+ds2-1+deb10u1 Installability problems ACCEPTED

DSA: 4593

Closes: 929597

CVEs referenced: CVE-2019-12211 CVE-2019-12213

freerdp2 2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u1 Installability problems ACCEPTED

Reason: fix realloc return handling [CVE-2019-17177]

Request: 946831

CVEs referenced: CVE-2019-17177

Lintian issues: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

ghostscript 9.27~dfsg-2+deb10u3 Installability problems ACCEPTED

DSA: 4569

CVEs referenced: CVE-2019-14869

git 1:2.20.1-2+deb10u1 Installability problems ACCEPTED

DSA: 4581

CVEs referenced: CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352 CVE-2019-1353 CVE-2019-1354 CVE-2019-1387 CVE-2019-19604

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

git-lfs 2.7.1-1+deb10u1 Installability problems ACCEPTED

Reason: fix build issues with newer Go versions

Request: 948854

Closes: 940485

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

gnubg 1.06.002-1+deb10u1 Installability problems ACCEPTED

Reason: increase the size of static buffers used to build messages during program start so that the Spanish translation doesn't overflow a buffer

Request: 948796

Closes: 932351

gnutls28 3.6.7-4+deb10u1 Installability problems ACCEPTED

Reason: fix interop problems with gnutls 2.x

Request: 945925

Closes: 933538

guile-2.2 2.2.4+1-2+deb10u1 Installability problems ACCEPTED

Reason: fix build failure

Request: 939802

Closes: 930774

haproxy 1.8.19-1+deb10u1 Installability problems ACCEPTED

DSA: 4577

CVEs referenced: CVE-2019-19330

intel-microcode 3.20191115.2~deb10u1 Installability problems ACCEPTED

DSA: 4565

Closes: 946515

CVEs referenced: CVE-2019-0117 CVE-2019-11135

Binary debdiffs: amd64i386

intel-microcode 3.20191115.1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4565

CVEs referenced: CVE-2019-0117 CVE-2019-11135

Binary debdiffs: amd64i386

intel-microcode 3.20191112.1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4565

CVEs referenced: CVE-2019-0117 CVE-2019-11135 CVE-2019-11139

Binary debdiffs: amd64i386

ldm 2:2.18.06-1+deb10u1 Installability problems ACCEPTED

DSA: 4601

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libburn 1.5.0-1+deb10u1 Installability problems ACCEPTED

Reason: fix "cdrskin multi-track burning was slow and stalled after track 1"

Request: 947038

Closes: 946679

Binary debdiffs: armelarmhfi386mipsmipsel

libcgns 3.3.0-7~deb10u1 Installability problems ACCEPTED

Reason: fix build failure on ppc64el

Request: 948857

Closes: 944127

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libimobiledevice 1.2.1~git20181030.92c5462-2 Installability problems ACCEPTED

Reason: properly handle partial SSL writes

Request: 941365

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libmatroska 1.4.9-1+deb10u1 Installability problems ACCEPTED

Reason: bump shared library dependency to 1.4.7 since that version introduced new symbols

Request: 946864

Closes: 946669

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libmysofa 0.6~dfsg0-3+deb10u1 Installability problems ACCEPTED

Reason: security fixes [CVE-2019-16091 CVE-2019-16092 CVE-2019-16093 CVE-2019-16094 CVE-2019-16095]

Request: 940647

Closes: 939735

CVEs referenced: CVE-2019-16091 CVE-2019-16092 CVE-2019-16093 CVE-2019-16094 CVE-2019-16095

libvirt 5.0.0-4+deb10u1 Installability problems REJECTED_PERMANENTLY:debci/2.0 [ppc64el] ACCEPTED

Reason: apparmor: Allow one to run pygrub; don't render osxsave, ospke into QEMU comman line; this helps newer QEMU with some configs generated by virt-install

Request: 944294

Closes: 944248

libvncserver 0.9.11+dfsg-1.3+deb10u2 Installability problems ACCEPTED

Reason: fix crashing of x11vnc when vncviewer connects

Request: 948400

Closes: 905786

Binary debdiffs: mipsel

Lintian issues: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libvncserver 0.9.11+dfsg-1.3+deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: rfbserver: don't leak stack memory to the remote [CVE-2019-15681]; resolve a freeze during connection closure and a segmentation fault on multi-threaded VNC servers; fix issue connecting to VMWare servers

Request: 946822

Closes: 880531 905786 943793

CVEs referenced: CVE-2019-15681

Binary debdiffs: mipsel

Lintian issues: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

libvpx 1.7.0-3+deb10u1 Installability problems ACCEPTED

DSA: 4578

CVEs referenced: CVE-2019-9232 CVE-2019-9325 CVE-2019-9371 CVE-2019-9433

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

limnoria 2019.02.23-1+deb10u1 Installability problems ACCEPTED

Reason: fix remote information disclosure and possibly remote code execution in the Math plugin [CVE-2019-19010]

Request: 944865

CVEs referenced: CVE-2019-19010

Binary debdiffs: all

linux 4.19.87-1 Installability problems ACCEPTED

Reason: new upstream stable version

µdebs: present

Closes: 930443 931341 940530 941291 944641 945023

CVEs referenced: CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-15030 CVE-2019-15031 CVE-2019-15098 CVE-2019-15504 CVE-2019-15505 CVE-2019-15918 CVE-2019-16714 CVE-2019-16746 CVE-2019-17052 CVE-2019-17053 CVE-2019-17054 CVE-2019-17055 CVE-2019-17056 CVE-2019-17075 CVE-2019-17133 CVE-2019-17666 CVE-2019-18660 CVE-2019-18683 CVE-2019-18813 CVE-2019-19045 CVE-2019-19048 CVE-2019-19049 CVE-2019-19052 CVE-2019-19060 CVE-2019-19065 CVE-2019-19080 CVE-2019-19081

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

linux 4.19.67-2+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4564

µdebs: present

CVEs referenced: CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-11135

linux-latest 105+deb10u2 Installability problems ACCEPTED

Reason: update for -7 kernel ABI

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

linux-signed-amd64 4.19.87+1 Installability problems ACCEPTED

Reason: new upstream stable release

µdebs: present

Closes: 930443 931341 940530 941291 944641 945023

CVEs referenced: CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-15030 CVE-2019-15031 CVE-2019-15098 CVE-2019-15504 CVE-2019-15505 CVE-2019-15918 CVE-2019-16714 CVE-2019-16746 CVE-2019-17052 CVE-2019-17053 CVE-2019-17054 CVE-2019-17055 CVE-2019-17056 CVE-2019-17075 CVE-2019-17133 CVE-2019-17666 CVE-2019-18660 CVE-2019-18683 CVE-2019-18813 CVE-2019-19045 CVE-2019-19048 CVE-2019-19049 CVE-2019-19052 CVE-2019-19060 CVE-2019-19065 CVE-2019-19080 CVE-2019-19081

Binary debdiffs: amd64

Lintian issues: amd64

linux-signed-amd64 4.19.67+2+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4564

µdebs: present

CVEs referenced: CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-11135

linux-signed-arm64 4.19.87+1 Installability problems ACCEPTED

Reason: new upstream stable release

µdebs: present

Closes: 930443 931341 940530 941291 944641 945023

CVEs referenced: CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-15030 CVE-2019-15031 CVE-2019-15098 CVE-2019-15504 CVE-2019-15505 CVE-2019-15918 CVE-2019-16714 CVE-2019-16746 CVE-2019-17052 CVE-2019-17053 CVE-2019-17054 CVE-2019-17055 CVE-2019-17056 CVE-2019-17075 CVE-2019-17133 CVE-2019-17666 CVE-2019-18660 CVE-2019-18683 CVE-2019-18813 CVE-2019-19045 CVE-2019-19048 CVE-2019-19049 CVE-2019-19052 CVE-2019-19060 CVE-2019-19065 CVE-2019-19080 CVE-2019-19081

Binary debdiffs: arm64

Lintian issues: arm64

linux-signed-arm64 4.19.67+2+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4564

µdebs: present

CVEs referenced: CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-11135

linux-signed-i386 4.19.87+1 Installability problems ACCEPTED

Reason: new upstream stable release

µdebs: present

Closes: 930443 931341 940530 941291 944641 945023

CVEs referenced: CVE-2019-14814 CVE-2019-14815 CVE-2019-14816 CVE-2019-15030 CVE-2019-15031 CVE-2019-15098 CVE-2019-15504 CVE-2019-15505 CVE-2019-15918 CVE-2019-16714 CVE-2019-16746 CVE-2019-17052 CVE-2019-17053 CVE-2019-17054 CVE-2019-17055 CVE-2019-17056 CVE-2019-17075 CVE-2019-17133 CVE-2019-17666 CVE-2019-18660 CVE-2019-18683 CVE-2019-18813 CVE-2019-19045 CVE-2019-19048 CVE-2019-19049 CVE-2019-19052 CVE-2019-19060 CVE-2019-19065 CVE-2019-19080 CVE-2019-19081

Binary debdiffs: i386

Lintian issues: i386

linux-signed-i386 4.19.67+2+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4564

µdebs: present

CVEs referenced: CVE-2018-12207 CVE-2019-0154 CVE-2019-0155 CVE-2019-11135

mediawiki 1:1.31.6-1~deb10u1 Installability problems ACCEPTED

DSA: 4592

CVEs referenced: CVE-2019-19709

mnemosyne 2.6.1+ds-1+deb10u1 Installability problems ACCEPTED

Reason: add missing dependency on PIL

Request: 948609

Closes: 947032

Binary debdiffs: all

mosquitto 1.5.7-1+deb10u1 Installability problems ACCEPTED

DSA: 4570

Closes: 940654

CVEs referenced: CVE-2019-11779

netty 1:4.1.33-1+deb10u1 Installability problems ACCEPTED

DSA: 4597

Closes: 941266

CVEs referenced: CVE-2019-16869

Binary debdiffs: all

nss 2:3.42.1-1+deb10u2 Installability problems ACCEPTED

DSA: 4579

CVEs referenced: CVE-2019-11745 CVE-2019-17007

ntpsec 1.1.3+dfsg1-2+deb10u1 Installability problems ACCEPTED

Reason: fix slow DNS retries; fix ntpdate -s (syslog) to fix the if-up hook; documentation fixes

Request: 941713

Closes: 924192 926877 931414

nyancat 1.5.1-1+build1~deb10u1 Installability problems ACCEPTED

Reason: rebuild in a clean environment to add the systemd unit for nyancat-server

Request: 948390

Closes: 947292

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

openconnect 8.02-1+deb10u1 Installability problems ACCEPTED

DSA: 4607

Closes: 940871

CVEs referenced: CVE-2019-16239

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

openjdk-11 11.0.6+10-1~deb10u1 Installability problems ACCEPTED

DSA: 4605

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: source

openjdk-11 11.0.5+10-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4546

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

openjpeg2 2.3.0-2+deb10u1 Installability problems ACCEPTED

Reason: fix heap overflow [CVE-2018-21010] and integer overflow [CVE-2018-20847]

Request: 942575

Closes: 931294 939553

CVEs referenced: CVE-2018-20847 CVE-2018-21010

opensmtpd 6.0.3p1-5+deb10u1 Installability problems ACCEPTED

Reason: warn users of change of smtpd.conf syntax (in earlier versions); install smtpctl setgid opensmtpq

Request: 946083

Closes: 944268 945910

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

php-horde 5.2.20+debian0-1+deb10u1 Installability problems ACCEPTED

Reason: fix stored cross-site scripting issue in Horde Cloud Block [CVE-2019-12095]

Request: 946705

CVEs referenced: CVE-2019-12095

postfix 3.4.8-0+10debu1 Installability problems ACCEPTED

Reason: new upstream stable release

Request: 948988

Closes: 941293

postgresql-11 11.6-0+deb10u1 Installability problems ACCEPTED

Reason: new upstream stable release

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

postgresql-common 200+deb10u3 Installability problems ACCEPTED

DSA: 4568

CVEs referenced: CVE-2019-3466

proftpd-dfsg 1.3.6-4+deb10u3 Installability problems ACCEPTED

Reason: fix CRL issues [CVE-2019-19270 CVE-2019-19269]

Missing builds: i386

Request: 946559

Closes: 946345 946346

CVEs referenced: CVE-2019-19269 CVE-2019-19270

pykaraoke 0.7.5-1.2+deb10u1 Installability problems ACCEPTED

Reason: fix path to fonts

Request: 948464

Closes: 948385

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

python-django 1:1.11.27-1~deb10u1 Installability problems ACCEPTED

DSA: 4598

Closes: 946937

CVEs referenced: CVE-2019-19844

Binary debdiffs: all

python-ecdsa 0.13-3+deb10u1 Installability problems ACCEPTED

DSA: 4588

CVEs referenced: CVE-2019-14853 CVE-2019-14859

Binary debdiffs: all

python-evtx 0.6.1-1+deb10u1 Installability problems ACCEPTED

Reason: fix import of "hexdump"

Request: 948545

Closes: 942353

Binary debdiffs: all

python3.7 3.7.3-2+deb10u1 Installability problems ACCEPTED

Reason: security fixes [CVE-2019-9740 CVE-2019-9947 CVE-2019-9948 CVE-2019-10160 CVE-2019-16056 CVE-2019-16935]

Request: 948104

CVEs referenced: CVE-2019-10160 CVE-2019-16056 CVE-2019-16935 CVE-2019-9740 CVE-2019-9947 CVE-2019-9948

Binary debdiffs: all

qemu 1:3.1+dfsg-8+deb10u3 Installability problems ACCEPTED

DSA: 4566

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

qtbase-opensource-src 5.11.3+dfsg1-1+deb10u2 Installability problems ACCEPTED

Reason: add support for non-PPD printers and avoid silent fallback to a printer supporting PPD; fix crash when using QLabels with rich text; fix graphics tablet hover events

Request: 944856

Closes: 911702 911844 935627 935909

qtwebengine-opensource-src 5.11.3+dfsg-2+deb10u1 Installability problems amd64 armhf ACCEPTED

Reason: fix PDF parsing; disable executable stack

Request: 945845

Closes: 882805 887875 919504

Binary debdiffs: amd64arm64armhfi386mipsel

Lintian issues: amd64arm64armhfi386mipselsource

raspi3-firmware 1.20190215-1+deb10u2 Installability problems ACCEPTED

Reason: fix detection of serial console with kernel 5.x

Request: 946402

Closes: 941974

ros-ros-comm 1.14.3+ds1-5+deb10u1 Installability problems ACCEPTED

Reason: fix security issues [CVE-2019-13566 CVE-2019-13465 CVE-2019-13445]

Request: 945896

CVEs referenced: CVE-2019-13445 CVE-2019-13465 CVE-2019-13566

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

ruby2.5 2.5.5-3+deb10u1 Installability problems ACCEPTED

DSA: 4586

CVEs referenced: CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255

schleuder 3.4.0-2+deb10u1 Installability problems ACCEPTED

Reason: fix recognizing keywords in mails with "protected headers" and empty subject; strip non-self-signatures when refreshing or fetching keys; error if the argument provided to `refresh_keys` is not an existing list

Request: 944348

Closes: 940524 940526 940527

simplesamlphp 1.16.3-1+deb10u2 Installability problems ACCEPTED

Reason: fix incompatibility with PHP 7.3

Request: 946841

Closes: 944820

slurm-llnl 18.08.5.2-1+deb10u1 Installability problems ACCEPTED

DSA: 4572

CVEs referenced: CVE-2019-12838

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

spamassassin 3.4.2-1+deb10u1 Installability problems ACCEPTED

DSA: 4584

Closes: 946652 946653

CVEs referenced: CVE-2018-11805 CVE-2019-12420

spf-engine 2.9.2-0+deb10u1 Installability problems ACCEPTED

Reason: fix privilege managment at startup so Unix sockets work; update documentation for TestOnly

Request: 948904

Binary debdiffs: all

Lintian issues: all

spip 3.2.4-1+deb10u2 Installability problems ACCEPTED

DSA: 4583

symfony 3.4.22+dfsg-2+deb10u1 Installability problems ACCEPTED

DSA: 4573

Closes: 930003

CVEs referenced: CVE-2019-18887 CVE-2019-18888 CVE-2019-18889

thunderbird 1:68.3.0-2~deb10u1 Version problems testing (1:60.9.0-1) Installability problems ACCEPTED

Missing builds: armel armhf

DSA: 4585

Closes: 946588

Binary debdiffs: allamd64arm64i386mips64elppc64els390x

Lintian issues: amd64arm64i386mips64elppc64els390xsource

thunderbird 1:68.2.2-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

DSA: 4571

Binary debdiffs: allamd64arm64i386ppc64els390x

Lintian issues: amd64arm64i386ppc64els390x

tifffile 20181128-1+deb10u1 Installability problems ACCEPTED

Reason: fix wrapper script

Request: 948472

Closes: 938668 939511

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

tightvnc 1:1.3.9-9+deb10u1 Installability problems ACCEPTED

Reason: security fixes [CVE-2014-6053 CVE-2019-8287 CVE-2018-20021 CVE-2018-20022 CVE-2018-20748 CVE-2018-7225 CVE-2019-15678 CVE-2019-15679 CVE-2019-15680 CVE-2019-15681]

Request: 947254

Closes: 945364

CVEs referenced: CVE-2014-6053 CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20748 CVE-2018-7225 CVE-2019-15678 CVE-2019-15679 CVE-2019-15680 CVE-2019-15681 CVE-2019-8287

Binary debdiffs: amd64arm64armelarmhfi386ppc64els390x

Lintian issues: ppc64el

uif 1.1.9-1+deb10u1 Installability problems ACCEPTED

Reason: fix paths to ip(6)tables-restore in light of the migration to nftables

Request: 946175

Closes: 932265

Binary debdiffs: all

Lintian issues: all

unhide 20130526-3+deb10u1 Installability problems ACCEPTED

Reason: fix stack exhaustion

Request: 946901

Closes: 945864

webkit2gtk 2.26.2-1~deb10+1 Installability problems ACCEPTED

DSA: 4563

CVEs referenced: CVE-2019-8710 CVE-2019-8743 CVE-2019-8764 CVE-2019-8765 CVE-2019-8766 CVE-2019-8782 CVE-2019-8783 CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 CVE-2019-8821 CVE-2019-8822 CVE-2019-8823

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

wordpress 5.0.4+dfsg1-1+deb10u1 Installability problems ACCEPTED

DSA: 4599

Closes: 939543 942459 946905

CVEs referenced: CVE-2019-16217 CVE-2019-16218 CVE-2019-16219 CVE-2019-16220 CVE-2019-16221 CVE-2019-16222 CVE-2019-16223 CVE-2019-16780 CVE-2019-16781 CVE-2019-17669 CVE-2019-17671 CVE-2019-17672 CVE-2019-17673 CVE-2019-17674 CVE-2019-17675 CVE-2019-20041 CVE-2019-20042 CVE-2019-20043

x2goclient 4.1.2.1-2+deb10u1 Installability problems ACCEPTED

Reason: strip ~/, ~user{,/}, ${HOME}{,/} and $HOME{,/} from destination paths in scp mode; fixes regression with newer libssh versions with fixes for CVE-2019-14889 applied

Request: 947201

Closes: 947129

CVEs referenced: CVE-2019-14889

xen 4.11.3+24-g14b62ab3e5-1~deb10u1 Installability problems ACCEPTED

DSA: 4602

Binary debdiffs: amd64arm64armhfi386

Lintian issues: amd64arm64armhfi386