dnsjava - Debian Package Tracker

general

source: dnsjava (main)
version: 3.6.2-2
maintainer: Debian Java Maintainers (archive) (DMD)
uploaders: Graziano Obertelli [DMD] – Chris Grzegorczyk [DMD] – Kyo Lee [DMD]
arch: all
std-ver: 4.7.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.1.8-2
oldstable: 2.1.8-2
stable: 3.6.2-2
testing: 3.6.2-2
unstable: 3.6.2-2

versioned links

2.1.8-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.6.2-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libdnsjava-java

action needed

A new upstream version is available: 3.6.3 high

A new upstream version 3.6.3 is available, you should consider packaging it.

Created: 2025-01-28 Last update: 2025-11-03 08:30

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

libdnsjava-java could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2025-11-03 04:00

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 3.6.3-1, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 6b9b00d6ae9ae3b8d1cc68c2444668469e1f80b5
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 10:22:01 2025 +0200

    Build-Depends: libmaven-enforcer-plugin-java, libproperties-maven-plugin-java  is reducing some build errors ... but I have no idea how to solve the lombok issue

commit 969594428adf964633301277706a815cbc3b51b8
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:53:07 2025 +0200

    debputy lint --auto-fix (routine-update)

commit 69f270d700207b4fdcb409c9ed21b368603ee662
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:52:20 2025 +0200

    Standards-Version: 4.7.2 (routine-update)

commit a70032bf0d8260258653713ca4607bae97eb3a04
Merge: ff86914 11b8992
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:52:20 2025 +0200

    Update upstream source from tag 'upstream/3.6.3'
    
    Update to upstream version '3.6.3'
    with Debian dir 99aa718c02958961128f866bdad05230ca71fa2e

commit ff8691491f063bc3596ade934b28d9f7249fafcb
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:52:10 2025 +0200

    New upstream version

commit 11b8992d52c1df48d7310f19fd566e70b99f0a42
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:52:10 2025 +0200

    New upstream version 3.6.3

commit 16f0ee58c550a79322273f918bb376f351952955
Author: Andreas Tille <tille@debian.org>
Date:   Mon Oct 20 09:52:01 2025 +0200

    d/watch: version=5

Created: 2025-10-20 Last update: 2025-10-27 09:00

1 open merge request in Salsa normal

There is 1 open merge request for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-22 Last update: 2025-09-22 04:02

3 low-priority security issues in bookworm low

There are 3 open security issues in bookworm.

3 issues left for the package maintainer to handle:

CVE-2023-50387: (needs triaging) Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
CVE-2023-50868: (needs triaging) The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.
CVE-2024-25638: (needs triaging) dnsjava is an implementation of DNS in Java. Records in DNS replies are not checked for their relevance to the query, allowing an attacker to respond with RRs from different zones. This vulnerability is fixed in 3.6.0.

You can find information about how to handle these issues in the security team's documentation.

Created: 2024-07-23 Last update: 2025-10-25 22:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).

Created: 2025-02-21 Last update: 2025-02-27 13:25

news

[rss feed]

[2025-02-06] dnsjava 3.6.2-2 MIGRATED to testing (Debian testing watch)
[2025-02-01] Accepted dnsjava 3.6.2-2 (source) into unstable (tony mancill)
[2025-01-25] dnsjava 3.6.2-1 MIGRATED to testing (Debian testing watch)
[2025-01-19] Accepted dnsjava 3.6.2-1 (source) into unstable (Andreas Tille)
[2024-09-14] dnsjava REMOVED from testing (Debian testing watch)
[2018-03-18] dnsjava 2.1.8-2 MIGRATED to testing (Debian testing watch)
[2018-03-12] Accepted dnsjava 2.1.8-2 (source) into unstable (Emmanuel Bourg)
[2017-01-19] dnsjava 2.1.8-1 MIGRATED to testing (Debian testing watch)
[2017-01-08] Accepted dnsjava 2.1.8-1 (source all) into unstable (Emmanuel Bourg)
[2016-01-11] dnsjava 2.1.7+dfsg-1 MIGRATED to testing (Debian testing watch)
[2016-01-05] Accepted dnsjava 2.1.7+dfsg-1 (source all) into unstable (Emmanuel Bourg)
[2016-01-03] dnsjava REMOVED from testing (Debian testing watch)
[2015-04-27] dnsjava 2.1.7-0.1 MIGRATED to testing (Britney)
[2015-04-13] Accepted dnsjava 2.1.7-0.1 (source all) into unstable (Damian Minkov) (signed by: Raphaël Hertzog)
[2013-08-06] dnsjava 2.1.5-0.1 MIGRATED to testing (Debian testing watch)
[2013-07-26] Accepted dnsjava 2.1.5-0.1 (source all) (Damian Minkov) (signed by: Raphaël Hertzog)
[2013-07-08] dnsjava REMOVED from testing (Debian testing watch)
[2013-05-05] dnsjava 2.1.4-0.1 MIGRATED to testing (Debian testing watch)
[2013-03-26] Accepted dnsjava 2.1.4-0.1 (source all) (Damian Minkov) (signed by: Raphaël Hertzog)
[2010-01-08] dnsjava 2.0.8-1 MIGRATED to testing (Debian testing watch)
[2009-12-28] Accepted dnsjava 2.0.8-1 (source all) (Chris Grzegorczyk)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 3.6.2-2
1 bug