diffoscope - Debian Package Tracker

general

source: diffoscope (main)
version: 321
maintainer: Reproducible builds folks (archive) (DMD)
uploaders: Chris Lamb [DMD] – Holger Levsen [DMD] – Mattia Rizzolo [DMD]
arch: all
std-ver: 4.7.4
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 177
oldstable: 240+deb12u1
stable: 297+deb13u1
stable-bpo: 306~bpo13+1
testing: 319
unstable: 321

versioned links

177: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
240+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
297+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
306~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
321: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

diffoscope (29 bugs: 0, 12, 17, 0)
diffoscope-minimal (1 bugs: 0, 0, 1, 0)

action needed

Debci reports failed tests high

unstable: pass (log)
The tests ran in 0:07:10
Last run: 2026-06-12T23:02:01.000Z
Previous status: unknown

testing: fail (log)
The tests ran in 0:02:51
Last run: 2026-06-18T04:21:37.000Z
Previous status: unknown

stable: pass (log)
The tests ran in 0:04:41
Last run: 2025-11-09T12:05:38.000Z
Previous status: unknown

Created: 2026-06-17 Last update: 2026-06-25 02:30

Marked for autoremoval on 22 July due to utf8-locale: #1139436 high

Version 319 of diffoscope is marked for autoremoval from testing on Wed 22 Jul 2026. It depends (transitively) on utf8-locale, affected by #1139436. You should try to prevent the removal by fixing these RC bugs.

Created: 2026-06-16 Last update: 2026-06-25 02:03

lintian reports 1 error and 1 warning high

Lintian reports 1 error and 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2026-04-11 Last update: 2026-04-11 03:01

Depends on packages which need a new maintainer normal

The packages that diffoscope depends on which need a new maintainer are:

db-defaults (#1055344)
- Recommends: db-util db-util
- Build-Depends: db-util

Created: 2019-11-22 Last update: 2026-06-25 02:30

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 322, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 2af9e134cbeaa36de0c92d540e8e865ffb5450ad
Author: Zbigniew Jędrzejewski-Szmek <zbyszek@amutable.com>
Date:   Sun Jun 21 16:49:52 2026 +0200

    Add open-coded version of deprecated os.path.commonprefix
    
    https://github.com/python/cpython/pull/144436 deprecated it.
    Add a slightly simplified version as a local function to avoid
    the deprecation warning.

commit 50a5e078b67830538eb323725088c10f64130b56
Author: Chris Lamb <lamby@debian.org>
Date:   Fri Jun 19 10:57:05 2026 -0700

    Open new changelog entry for version 322.
    
    Gbp-Dch: ignore

Created: 2019-05-22 Last update: 2026-06-22 21:50

9 open merge requests in Salsa normal

There are 9 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-08-19 Last update: 2026-04-20 18:30

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2024-25711: (needs triaging) diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of any file, such as ../.ssh/id_rsa, may be disclosed to an attacker. This occurs because the value of the gpg --use-embedded-filenames option is trusted.

You can find information about how to handle this issue in the security team's documentation.

Created: 2024-02-10 Last update: 2026-06-20 00:30

testing migrations

excuses:
- Migration status for diffoscope (319 to 321): Will attempt migration (Any information below is purely informational)
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/d/diffoscope.html
- ∙ ∙ Autopkgtest for diffoscope/321: amd64: Pass, arm64: Pass, i386: Failed (not a regression) ♻ (reference ♻), loong64: Failed (not a regression) ♻ (reference ♻), ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Reproduced on amd64 - info
- ∙ ∙ Reproduced on arm64 - info
- ∙ ∙ Reproduced on armhf - info
- ∙ ∙ Reproduced on i386 - info
- ∙ ∙ 5 days old (needed 5 days)

news

[rss feed]

[2026-06-19] Accepted diffoscope 321 (source) into unstable (Chris Lamb)
[2026-06-19] Accepted diffoscope 320 (source) into unstable (Chris Lamb)
[2026-06-18] diffoscope 319 MIGRATED to testing (Debian testing watch)
[2026-06-12] Accepted diffoscope 319 (source) into unstable (Chris Lamb)
[2026-05-07] diffoscope 318 MIGRATED to testing (Debian testing watch)
[2026-05-01] Accepted diffoscope 318 (source) into unstable (Chris Lamb)
[2026-04-13] diffoscope 317 MIGRATED to testing (Debian testing watch)
[2026-04-10] Accepted diffoscope 317 (source) into unstable (Chris Lamb)
[2026-04-05] diffoscope 316 MIGRATED to testing (Debian testing watch)
[2026-04-02] Accepted diffoscope 316 (source) into unstable (Chris Lamb)
[2026-03-24] diffoscope 315 MIGRATED to testing (Debian testing watch)
[2026-03-20] Accepted diffoscope 315 (source) into unstable (Chris Lamb)
[2026-03-17] diffoscope 314 MIGRATED to testing (Debian testing watch)
[2026-03-13] Accepted diffoscope 314 (source) into unstable (Chris Lamb)
[2026-02-24] diffoscope 313 MIGRATED to testing (Debian testing watch)
[2026-02-20] Accepted diffoscope 313 (source) into unstable (Chris Lamb)
[2026-02-10] diffoscope 312 MIGRATED to testing (Debian testing watch)
[2026-02-06] Accepted diffoscope 312 (source) into unstable (Chris Lamb)
[2026-01-26] diffoscope 311 MIGRATED to testing (Debian testing watch)
[2026-01-23] Accepted diffoscope 311 (source) into unstable (Chris Lamb)
[2026-01-14] diffoscope 310 MIGRATED to testing (Debian testing watch)
[2026-01-09] Accepted diffoscope 310 (source) into unstable (Chris Lamb)
[2025-12-20] Accepted diffoscope 297+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Chris Lamb)
[2025-11-18] diffoscope 309 MIGRATED to testing (Debian testing watch)
[2025-11-14] Accepted diffoscope 309 (source) into unstable (Chris Lamb)
[2025-11-10] diffoscope 308 MIGRATED to testing (Debian testing watch)
[2025-11-07] Accepted diffoscope 308 (source) into unstable (Chris Lamb)
[2025-11-03] diffoscope 307 MIGRATED to testing (Debian testing watch)
[2025-11-01] Accepted diffoscope 306~bpo13+1 (source all) into stable-backports (Debian FTP Masters) (signed by: Mattia Rizzolo)
[2025-10-31] Accepted diffoscope 307 (source) into unstable (Chris Lamb)

bugs [bug history graph]

all: 32 33
RC: 0
I&N: 12
M&W: 20 21
F&P: 0
patch: 0

links

homepage
lintian (1, 1)
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 319