Debian Package Tracker

general

source: adplug (main)
version: 2.2.1+dfsg3-1
maintainer: Debian QA Group (DMD)
arch: any
std-ver: 3.9.2
VCS: unknown (QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.2.1+dfsg3-0.1
o-o-sec: 2.2.1+dfsg3-0.1+deb8u1
oldstable: 2.2.1+dfsg3-0.4
stable: 2.2.1+dfsg3-1
unstable: 2.2.1+dfsg3-1
exp: 2.3.1+dfsg-1

versioned links

2.2.1+dfsg3-0.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-0.1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-0.4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.3.1+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

adplug-utils
libadplug-2.2.1-0v5
libadplug-dev

action needed

Standards version of the package is outdated. high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 3.9.2).

Created: 2015-05-23 Last update: 2019-09-29 23:40

7 security issues in sid high

There are 7 open security issues in sid.

7 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-15151: AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-09-16 17:42

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2019-09-15 Last update: 2019-10-14 08:01

2 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 7ee10c3f00ee93e8819e0985520c1bed5ad3dc9e
Author: yangfl <yangfl@users.noreply.github.com>
Date:   Fri Oct 4 16:53:32 2019 +0800

    debian: new maintainer

commit f26e83793dc777dbf8948f2a13958403e26db2f9
Author: yangfl <yangfl@users.noreply.github.com>
Date:   Thu Oct 10 09:47:03 2019 +0800

    New upstream version 2.3.1+dfsg

Created: 2019-10-13 Last update: 2019-10-13 16:42

lintian reports 13 warnings normal

Lintian reports 13 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-01-12 Last update: 2019-08-12 06:05

7 ignored security issues in buster low

There are 7 open security issues in buster.

7 issues skipped by the security teams:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-15151: AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-09-16 17:42

7 ignored security issues in jessie low

There are 7 open security issues in jessie.

7 issues skipped by the security teams:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-15151: AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-09-16 17:42

8 ignored security issues in stretch low

There are 8 open security issues in stretch.

8 issues skipped by the security teams:

CVE-2018-17825: An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructor's two OPLDestroy calls, each of which frees TL_TABLE, SIN_TABLE, AMS_TABLE, and VIB_TABLE.
CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-15151: AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.

Please fix them.

Created: 2018-10-04 Last update: 2019-09-16 17:42

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2014-07-02 Last update: 2017-03-07 19:10

testing migrations

excuses:
- Migration status for adplug (- to 2.2.1+dfsg3-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- Updating adplug introduces new bugs: #925627
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/a/adplug.html
- 282 days old (needed 5 days)
- Not considered

news

[rss feed]

[2019-10-13] Accepted adplug 2.3.1+dfsg-1 (source amd64) into experimental, experimental (Yangfl) (signed by: Boyuan Yang)
[2019-09-16] adplug REMOVED from testing (Debian testing watch)
[2019-01-10] adplug 2.2.1+dfsg3-1 MIGRATED to testing (Debian testing watch)
[2019-01-04] Accepted adplug 2.2.1+dfsg3-1 (source amd64) into unstable (Moritz Muehlenhoff) (signed by: Moritz Mühlenhoff)
[2018-10-07] Accepted adplug 2.2.1+dfsg3-0.1+deb8u1 (source amd64) into oldstable (Chris Lamb)
[2017-03-13] adplug 2.2.1+dfsg3-0.4 MIGRATED to testing (Debian testing watch)
[2017-03-07] Accepted adplug 2.2.1+dfsg3-0.4 (source amd64) into unstable (John Paul Adrian Glaubitz)
[2015-09-07] adplug 2.2.1+dfsg3-0.3 MIGRATED to testing (Britney)
[2015-08-24] Accepted adplug 2.2.1+dfsg3-0.3 (amd64 source) into unstable, unstable (Simon McVittie)
[2015-05-28] adplug 2.2.1+dfsg3-0.2 MIGRATED to testing (Britney)
[2015-05-23] Accepted adplug 2.2.1+dfsg3-0.2 (source amd64) into unstable (Wookey)
[2013-02-10] adplug 2.2.1+dfsg3-0.1 MIGRATED to testing (Debian testing watch)
[2013-01-30] Accepted adplug 2.2.1+dfsg3-0.1 (source amd64) (gregor herrmann)
[2013-01-03] adplug 2.2.1+dfsg2-1.1 MIGRATED to testing (Debian testing watch)
[2012-12-23] Accepted adplug 2.2.1+dfsg2-1.1 (source amd64) (Jelmer Vernooij)
[2011-06-17] adplug 2.2.1+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2011-05-29] Accepted adplug 2.2.1+dfsg1-1 (source amd64) (Артём Попов) (signed by: Ralf Treinen)
[2009-08-07] adplug 2.0.1.dfsg-1 MIGRATED to testing (Debian testing watch)
[2009-07-27] Accepted adplug 2.0.1.dfsg-1 (source i386) (Chris Lamb)
[2008-03-28] adplug 2.0.1-7 MIGRATED to testing (Debian testing watch)
[2008-03-17] Accepted adplug 2.0.1-7 (source amd64) (Cyril Brulebois) (signed by: Pierre Habouzit)
[2008-01-10] adplug 2.0.1-6 MIGRATED to testing (Debian testing watch)
[2007-12-05] Accepted adplug 2.0.1-6 (source i386) (Ana Beatriz Guerrero Lopez) (signed by: Ana Beatriz Guerrero López)
[2007-06-01] adplug 2.0.1-5 MIGRATED to testing (Debian testing watch)
[2007-04-16] Accepted adplug 2.0.1-5 (source i386) (Gürkan Sengün) (signed by: Daniel Baumann)
[2007-04-09] adplug 2.0.1-4 MIGRATED to testing (Debian testing watch)
[2007-01-20] Accepted adplug 2.0.1-4 (source i386) (Daniel Baumann)
[2007-01-19] Accepted adplug 2.0.1-3 (source i386) (Daniel Baumann)
[2006-09-29] adplug 2.0.1-2 MIGRATED to testing (Debian testing watch)
[2006-09-17] Accepted adplug 2.0.1-2 (source i386) (Daniel Baumann)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 13)
buildd: logs, exp, checks, clang, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.2.1+dfsg3-1