Debian Package Tracker

general

source: adplug (main)
version: 2.2.1+dfsg3-1
maintainer: Debian QA Group (DMD)
arch: any
std-ver: 3.9.2
VCS: unknown

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.2.1+dfsg3-0.1
o-o-sec: 2.2.1+dfsg3-0.1+deb8u1
oldstable: 2.2.1+dfsg3-0.4
stable: 2.2.1+dfsg3-1
testing: 2.2.1+dfsg3-1
unstable: 2.2.1+dfsg3-1

versioned links

2.2.1+dfsg3-0.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-0.1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-0.4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1+dfsg3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

adplug-utils
libadplug-2.2.1-0v5
libadplug-dev (1 bugs: 0, 1, 0, 0)

action needed

Marked for autoremoval on 14 September: #925627 high

Version 2.2.1+dfsg3-1 of adplug is marked for autoremoval from testing on Sat 14 Sep 2019. It is affected by #925627. The removal of adplug will also cause the removal of (transitive) reverse dependencies: adplay, libaudio-mpd-perl, libpoe-component-client-mpd-perl, libtest-corpus-audio-mpd-perl, mpd, mpdtoys, ocp. You should try to prevent the removal by fixing these RC bugs.

Created: 2019-08-15 Last update: 2019-08-18 09:02

6 security issues in sid high

There are 6 open security issues in sid.

6 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-08-15 08:49

6 security issues in bullseye high

There are 6 open security issues in bullseye.

6 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-08-15 08:49

7 security issues in stretch high

There are 7 open security issues in stretch.

6 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.

1 issue skipped by the security teams:

CVE-2018-17825: An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructor's two OPLDestroy calls, each of which frees TL_TABLE, SIN_TABLE, AMS_TABLE, and VIB_TABLE.

Please fix them.

Created: 2018-10-04 Last update: 2019-08-15 08:49

6 security issues in jessie high

There are 6 open security issues in jessie.

6 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-08-15 08:49

6 security issues in buster high

There are 6 open security issues in buster.

6 important issues:

CVE-2019-14732: AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
CVE-2019-14734: AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
CVE-2019-14733: AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
CVE-2019-14692: AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
CVE-2019-14690: AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
CVE-2019-14691: AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.

Please fix them.

Created: 2019-08-07 Last update: 2019-08-15 08:49

Standards version of the package is outdated. high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.0 instead of 3.9.2).

Created: 2015-05-23 Last update: 2019-07-08 20:08

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-06-08 Last update: 2019-08-18 09:11

lintian reports 13 warnings normal

Lintian reports 13 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2019-01-12 Last update: 2019-08-12 06:05

O: This package has been orphaned and needs a maintainer. normal

This package has been orphaned. This means that it does not have a real maintainer at the moment. Please consider adopting this package if you are interested in it. Please see bug number #918955 for more information.

Created: 2019-01-11 Last update: 2019-01-11 01:51

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2014-07-02 Last update: 2017-03-07 19:10

news

[rss feed]

[2019-01-10] adplug 2.2.1+dfsg3-1 MIGRATED to testing (Debian testing watch)
[2019-01-04] Accepted adplug 2.2.1+dfsg3-1 (source amd64) into unstable (Moritz Muehlenhoff) (signed by: Moritz Mühlenhoff)
[2018-10-07] Accepted adplug 2.2.1+dfsg3-0.1+deb8u1 (source amd64) into oldstable (Chris Lamb)
[2017-03-13] adplug 2.2.1+dfsg3-0.4 MIGRATED to testing (Debian testing watch)
[2017-03-07] Accepted adplug 2.2.1+dfsg3-0.4 (source amd64) into unstable (John Paul Adrian Glaubitz)
[2015-09-07] adplug 2.2.1+dfsg3-0.3 MIGRATED to testing (Britney)
[2015-08-24] Accepted adplug 2.2.1+dfsg3-0.3 (amd64 source) into unstable, unstable (Simon McVittie)
[2015-05-28] adplug 2.2.1+dfsg3-0.2 MIGRATED to testing (Britney)
[2015-05-23] Accepted adplug 2.2.1+dfsg3-0.2 (source amd64) into unstable (Wookey)
[2013-02-10] adplug 2.2.1+dfsg3-0.1 MIGRATED to testing (Debian testing watch)
[2013-01-30] Accepted adplug 2.2.1+dfsg3-0.1 (source amd64) (gregor herrmann)
[2013-01-03] adplug 2.2.1+dfsg2-1.1 MIGRATED to testing (Debian testing watch)
[2012-12-23] Accepted adplug 2.2.1+dfsg2-1.1 (source amd64) (Jelmer Vernooij)
[2011-06-17] adplug 2.2.1+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2011-05-29] Accepted adplug 2.2.1+dfsg1-1 (source amd64) (Артём Попов) (signed by: Ralf Treinen)
[2009-08-07] adplug 2.0.1.dfsg-1 MIGRATED to testing (Debian testing watch)
[2009-07-27] Accepted adplug 2.0.1.dfsg-1 (source i386) (Chris Lamb)
[2008-03-28] adplug 2.0.1-7 MIGRATED to testing (Debian testing watch)
[2008-03-17] Accepted adplug 2.0.1-7 (source amd64) (Cyril Brulebois) (signed by: Pierre Habouzit)
[2008-01-10] adplug 2.0.1-6 MIGRATED to testing (Debian testing watch)
[2007-12-05] Accepted adplug 2.0.1-6 (source i386) (Ana Beatriz Guerrero Lopez) (signed by: Ana Beatriz Guerrero López)
[2007-06-01] adplug 2.0.1-5 MIGRATED to testing (Debian testing watch)
[2007-04-16] Accepted adplug 2.0.1-5 (source i386) (Gürkan Sengün) (signed by: Daniel Baumann)
[2007-04-09] adplug 2.0.1-4 MIGRATED to testing (Debian testing watch)
[2007-01-20] Accepted adplug 2.0.1-4 (source i386) (Daniel Baumann)
[2007-01-19] Accepted adplug 2.0.1-3 (source i386) (Daniel Baumann)
[2006-09-29] adplug 2.0.1-2 MIGRATED to testing (Debian testing watch)
[2006-09-17] Accepted adplug 2.0.1-2 (source i386) (Daniel Baumann)
[2006-08-05] adplug 2.0.1-1 MIGRATED to testing (Debian testing watch)
[2006-07-17] Accepted adplug 2.0.1-1 (source i386) (Daniel Baumann)

bugs [bug history graph]

all: 2
RC: 1
I&N: 1
M&W: 0
F&P: 0
patch: 1

links

homepage
lintian (0, 13)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.2.1+dfsg3-1
1 bug