Queue Overview for "proposed-updates"

List of missing builds
List of missing packages relative to security archive

Resolution Pending (14 uploads for 11 packages)

Package Version Version Problems Installability Problems Architectures Action
crmsh 4.0.0~git20190108.3d56538-3+deb10u1 Installability problems Built: source ?

Closes: 985376

CVEs referenced: CVE-2020-35459

golang-1.11 1.11.6-1+deb10u4 Installability problems Built: allamd64arm64armelarmhfi386mipsmips64elppc64els390xsource Missing: mipsel Ok

DSA: 4848

CVEs referenced: CVE-2020-15586 CVE-2020-16845 CVE-2020-7919 CVE-2021-3114

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elppc64els390xsource

node-glob-parent 3.1.0-1+deb10u1 Installability problems Built: source ?

CVEs referenced: CVE-2020-28469

node-handlebars 3:4.1.0-1+deb10u3 Installability problems Built: source ?

CVEs referenced: CVE-2019-20920 CVE-2021-23369

node-hosted-git-info 2.7.1-1+deb10u1 Installability problems Built: source ?

CVEs referenced: CVE-2021-23362

octavia 3.0.0-3+deb10u1 Installability problems Built: source More info needed

Reason: some changes need further discussion; too late for 10.2

Request: 941901

Closes: 941897

CVEs referenced: CVE-2019-17134

openvswitch 2.10.7+ds1-0+deb10u1 Installability problems Built: allamd64arm64armelarmhfi386mips64elmipselppc64elsource Missing: mipss390x Ok

DSA: 4852

Closes: 982493

CVEs referenced: CVE-2020-35498

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64el

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64elsource

openvswitch 2.10.6+ds1-0+deb10u1 Installability problems Built: allamd64arm64armelarmhfi386mips64elmipselppc64elsource Missing: mipss390x Ok

DSA: 4836

Closes: 980132

CVEs referenced: CVE-2015-8011 CVE-2020-27827

Binary debdiffs: allamd64arm64armelarmhfi386mips64elmipselppc64el

Lintian issues: amd64arm64armelarmhfi386mips64elmipselppc64elsource

plinth 19.1+deb10u2 Installability problems Built: source ?
samba 2:4.9.5+dfsg-5+deb10u1 Installability problems Built: allsource Missing: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x Ok

DSA: 4513

CVEs referenced: CVE-2019-10197

Blocked by #939419; cannot be accepted
         
thunderbird 1:78.9.0-1~deb10u1 Installability problems Built: allamd64arm64i386mips64elppc64els390xsource Missing: armelarmhf Ok

DSA: 4876

Binary debdiffs: amd64arm64i386mips64elppc64els390x

thunderbird 1:78.8.0-1~deb10u1 Installability problems Built: allamd64arm64armhfi386mips64elppc64els390xsource Missing: armel Ok

DSA: 4866

Binary debdiffs: amd64arm64armhfi386mips64elppc64els390x

Lintian issues: source

thunderbird 1:78.7.0-1~deb10u1 Installability problems Built: allamd64arm64i386mips64elppc64els390xsource Missing: armelarmhf Ok

DSA: 4842

xfce4-weather-plugin 0.8.10-1+deb10u1 Installability problems Built: source ?

Closes: 969747 970259

Pending Processing (0 uploads for 0 packages)

Processed (35 uploads for 30 packages)

Package Version Version Problems Installability Problems Action
apt 1.8.2.3 Installability problems ACCEPTED

Reason: accept suite name changes for repositories by default (e.g. stable -> oldstable)

Request: 987210

Closes: 931566

Binary debdiffs: amd64i386

awstats 7.6+dfsg-2+deb10u1 Installability problems ACCEPTED

Reason: fix remote file access issues [CVE-2020-29600 CVE-2020-35176]

Request: 982996

Closes: 891469 977190

CVEs referenced: CVE-2017-1000501 CVE-2020-29600 CVE-2020-35176

chromium 89.0.4389.114-1~deb10u1 Installability problems ACCEPTED

DSA: 4886

CVEs referenced: CVE-2021-21159 CVE-2021-21160 CVE-2021-21161 CVE-2021-21162 CVE-2021-21163 CVE-2021-21165 CVE-2021-21166 CVE-2021-21167 CVE-2021-21168 CVE-2021-21169 CVE-2021-21170 CVE-2021-21171 CVE-2021-21172 CVE-2021-21173 CVE-2021-21174 CVE-2021-21175 CVE-2021-21176 CVE-2021-21177 CVE-2021-21178 CVE-2021-21179 CVE-2021-21180 CVE-2021-21181 CVE-2021-21182 CVE-2021-21183 CVE-2021-21184 CVE-2021-21185 CVE-2021-21186 CVE-2021-21187 CVE-2021-21188 CVE-2021-21189 CVE-2021-21190 CVE-2021-21191 CVE-2021-21192 CVE-2021-21193 CVE-2021-21194 CVE-2021-21195 CVE-2021-21196 CVE-2021-21197 CVE-2021-21198 CVE-2021-21199

Lintian issues: allamd64arm64armhfi386source

curl 7.64.0-4+deb10u2 Installability problems ACCEPTED

DSA: 4881

Closes: 965280 965281 968831 977161 977162 977163

CVEs referenced: CVE-2020-8169 CVE-2020-8177 CVE-2020-8231 CVE-2020-8284 CVE-2020-8285 CVE-2020-8286 CVE-2021-22876 CVE-2021-22890

Lintian issues: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390xsource

dnspython 1.16.0-1+deb10u1 Installability problems ACCEPTED

Reason: XFR: do not attempt to compare to a non-existent "expiration" value

Request: 986673

Closes: 986645

docker.io 18.09.1+dfsg1-7.1+deb10u3 Installability problems ACCEPTED

Missing builds: amd64 arm64 armel armhf i386 ppc64el s390x

DSA: 4865

CVEs referenced: CVE-2020-15157 CVE-2020-15257 CVE-2021-21284 CVE-2021-21285

dput-ng 1.25+deb10u2 Installability problems ACCEPTED

Reason: fix crash in the sftp uploader in case of EACCES from the server; update codenames; make "dcut dm" work for non-uploading DMs; fix a TypeError in http upload exception handling; don't try and construct uploader email from system hostname in .dak-commands files

Request: 985792

Closes: 953357 984466 985618

Binary debdiffs: all

firefox-esr 78.9.0esr-1~deb10u1 Installability problems ACCEPTED

DSA: 4874

CVEs referenced: CVE-2021-23981 CVE-2021-23982 CVE-2021-23984 CVE-2021-23987

Lintian issues: armhfi386mipsmipsel

golang-github-docker-docker-credential-helpers 0.6.1-2+deb10u1 Installability problems ACCEPTED

Reason: fix double free issue [CVE-2019-1020014]

Request: 934206

Closes: 933801

CVEs referenced: CVE-2019-1020014

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

ipmitool 1.8.18-6+deb10u1 Installability problems ACCEPTED

Reason: fix buffer overflow issues [CVE-2020-5208]

Request: 983110

Closes: 950761

CVEs referenced: CVE-2020-5208

Binary debdiffs: amd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

ldb 2:1.5.1+really1.4.6-3+deb10u1 Installability problems ACCEPTED

DSA: 4884

Closes: 985935 985936

CVEs referenced: CVE-2020-10730 CVE-2020-27840 CVE-2021-20277

lib3mf 1.8.1+ds-3+deb10u1 Installability problems ACCEPTED

DSA: 4887

Closes: 985092

CVEs referenced: CVE-2021-21772

librsvg 2.44.10-2.1+deb10u3 Installability problems ACCEPTED

Reason: fix another build failure with rustc 1.41

Missing builds: ppc64el

Binary debdiffs: amd64arm64armhfi386mipsmips64elmipsels390x

librsvg 2.44.10-2.1+deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: fix build failures with newer rustc, and ppc64el and s390x with the fix for CVE-2019-20446

Request: 966028

CVEs referenced: CVE-2019-20446

librsvg 2.44.10-2.1+deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: fix denial of service via "billion laughs" attack [CVE-2019-20446]

Request: 966028

CVEs referenced: CVE-2019-20446

lxml 4.3.2-1+deb10u3 Installability problems ACCEPTED

DSA: 4880

Closes: 985643

CVEs referenced: CVE-2021-28957

mediawiki 1:1.31.14-1~deb10u1 Installability problems ACCEPTED

DSA: 4889

CVEs referenced: CVE-2021-20270 CVE-2021-27291 CVE-2021-30152 CVE-2021-30153 CVE-2021-30154 CVE-2021-30155 CVE-2021-30157 CVE-2021-30158 CVE-2021-30159

netty 1:4.1.33-1+deb10u2 Installability problems ACCEPTED

DSA: 4885

CVEs referenced: CVE-2019-20444 CVE-2019-20445 CVE-2020-11612 CVE-2020-7238 CVE-2021-21290 CVE-2021-21295 CVE-2021-21409

Lintian issues: all

openjpeg2 2.3.0-2+deb10u2 Installability problems ACCEPTED

DSA: 4882

Closes: 950000 950184 965220 983663

CVEs referenced: CVE-2020-15389 CVE-2020-27814 CVE-2020-27823 CVE-2020-27824 CVE-2020-27841 CVE-2020-27842 CVE-2020-27843 CVE-2020-27845 CVE-2020-6851 CVE-2020-8112

openssl 1.1.1d-0+deb10u6 Installability problems ACCEPTED

DSA: 4875

┬Ádebs: present

CVEs referenced: CVE-2021-3449

pygments 2.3.1+dfsg-1+deb10u2 Installability problems ACCEPTED

DSA: 4878

Closes: 985574

CVEs referenced: CVE-2021-27291

python-bleach 3.1.2-0+deb10u2 Installability problems ACCEPTED

DSA: 4892

Closes: 986251

CVEs referenced: CVE-2021-23980

Lintian issues: allsource

ruby-kramdown 1.17.0-1+deb10u2 Installability problems ACCEPTED

DSA: 4890

Closes: 985569

CVEs referenced: CVE-2021-28834

sabnzbdplus 2.3.6+dfsg-1+deb10u1 Installability problems ACCEPTED

Reason: fix code execution vulnerability [CVE-2020-13124]

Request: 984604

CVEs referenced: CVE-2020-13124

shim 15.4-1~deb10u1 Version problems testing (15+1533136590.3beb971-10) Installability problems ACCEPTED

Reason: new upstream release; fix SBAT and ARM64 support; fix i386 binary relocations

Missing lock-step packages: shim-helpers-amd64-signed shim-helpers-arm64-signed shim-helpers-i386-signed shim-signed

Binary debdiffs: amd64arm64i386

Lintian issues: amd64arm64i386

shim 15.3-1~deb10u3 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: only include the upstream version in the Debian SBAT metadata, helping reproducibility

Binary debdiffs: amd64arm64i386

Lintian issues: amd64arm64i386

shim 15.3-1~deb10u2 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: new upstream release; add SBAT support

Binary debdiffs: amd64arm64i386

Lintian issues: amd64arm64i386

shim 15.3-1~deb10u1 Installability problems ACCEPTED

This upload was superseded by a more current one.

Reason: new upstream release; add SBAT support

spamassassin 3.4.2-1+deb10u3 Installability problems ACCEPTED

DSA: 4879

Closes: 985962

CVEs referenced: CVE-2020-1946

squid 4.6-1+deb10u5 Installability problems ACCEPTED

DSA: 4873

Closes: 985068

CVEs referenced: CVE-2020-25097

tomcat9 9.0.31-1~deb10u4 Installability problems ACCEPTED

DSA: 4891

CVEs referenced: CVE-2021-25122 CVE-2021-25329

underscore 1.9.1~dfsg-1+deb10u1 Installability problems ACCEPTED

DSA: 4883

Closes: 986171

webkit2gtk 2.30.6-1~deb10u1 Installability problems ACCEPTED

DSA: 4877

CVEs referenced: CVE-2020-27918 CVE-2020-29623 CVE-2020-9947 CVE-2021-1765 CVE-2021-1789 CVE-2021-1799 CVE-2021-1801 CVE-2021-1870

Binary debdiffs: allamd64arm64armelarmhfi386mipsmips64elmipselppc64els390x

Lintian issues: mipsmips64elmipsel

xen 4.11.4+99-g8bce4698f6-1 Installability problems ACCEPTED

DSA: 4888

CVEs referenced: CVE-2021-26933 CVE-2021-27379

Lintian issues: source

xorg-server 2:1.20.4-1+deb10u3 Installability problems c-i failed: baloo-kf5/5.54.0-1 [amd64] bambam/1.0.1+dfsg-1 [amd64] onioncircuits/0.5-4 [arm64] purpose/blacklisted [ppc64el] ACCEPTED

DSA: 4893

┬Ádebs: present

CVEs referenced: CVE-2021-3472

Lintian issues: source