axis - Debian Package Tracker

general

source: axis (main)
version: 1.4-29
maintainer: Debian Java Maintainers (archive) (DMD)
uploaders: Torsten Werner [DMD] – Jakub Adam [DMD] – Emmanuel Bourg [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.4-28+deb11u1
oldstable: 1.4-28+deb12u1
stable: 1.4-29
testing: 1.4-29
unstable: 1.4-29

versioned links

1.4-28+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.4-28+deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.4-29: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libaxis-java
libaxis-java-doc

action needed

lintian reports 709 warnings high

Lintian reports 709 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2025-09-10 19:32

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2023-51441: ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1.3. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis 2/Java. Alternatively you could use a build of Axis with the patch from https://github.com/apache/axis-axis1-java/commit/685c309febc64aa393b2d64a05f90e7eb9f73e06 applied. The Apache Axis project does not expect to create an Axis 1.x release fixing this problem, though contributors that would like to work towards this are welcome.

Created: 2024-01-06 Last update: 2025-08-10 06:32

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2023-51441: ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1.3. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis 2/Java. Alternatively you could use a build of Axis with the patch from https://github.com/apache/axis-axis1-java/commit/685c309febc64aa393b2d64a05f90e7eb9f73e06 applied. The Apache Axis project does not expect to create an Axis 1.x release fixing this problem, though contributors that would like to work towards this are welcome.

Created: 2025-08-09 Last update: 2025-08-10 06:32

2 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit cee428f3a001d86a9613f2447d6f5c266294c7dc
Merge: 6867c25 704b20a
Author: Alexandre Detiste <alexandre.detiste@gmail.com>
Date:   Fri Sep 5 11:25:19 2025 +0200

    Merge branch 'multiarch-fixes' into 'master'
    
    Apply multi-arch hints
    
    See merge request java-team/axis!1

commit 704b20a56ca5810a3cac8f0c53e7ce80fac3c6f9
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Tue Jan 24 13:52:45 2023 +0000

    Apply multi-arch hints.
    + libaxis-java-doc: Add Multi-Arch: foreign.
    
    Changes-By: apply-multiarch-hints

Created: 2025-09-05 Last update: 2025-09-10 15:06

Multiarch hinter reports 1 issue(s) low

There are issues with the multiarch metadata for this package.

libaxis-java-doc could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2025-09-12 16:00

debian/patches: 10 patches to forward upstream low

Among the 11 debian patches available in version 1.4-29 of the package, we noticed the following issues:

10 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2023-10-17 12:25

No known security issue in trixie wishlist

There is 1 open security issue in trixie.

1 ignored issue:

CVE-2023-51441: ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1.3. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis 2/Java. Alternatively you could use a build of Axis with the patch from https://github.com/apache/axis-axis1-java/commit/685c309febc64aa393b2d64a05f90e7eb9f73e06 applied. The Apache Axis project does not expect to create an Axis 1.x release fixing this problem, though contributors that would like to work towards this are welcome.

Created: 2025-08-09 Last update: 2025-08-10 06:32

No known security issue in bookworm wishlist

There is 1 open security issue in bookworm.

1 ignored issue:

CVE-2023-51441: ** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1.3. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis 2/Java. Alternatively you could use a build of Axis with the patch from https://github.com/apache/axis-axis1-java/commit/685c309febc64aa393b2d64a05f90e7eb9f73e06 applied. The Apache Axis project does not expect to create an Axis 1.x release fixing this problem, though contributors that would like to work towards this are welcome.

Created: 2024-01-06 Last update: 2025-08-10 06:32

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.2).

Created: 2024-04-07 Last update: 2025-02-27 13:25

news

[rss feed]

[2023-11-12] Accepted axis 1.4-28+deb11u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Markus Koschany)
[2023-11-05] Accepted axis 1.4-28+deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Markus Koschany)
[2023-10-22] axis 1.4-29 MIGRATED to testing (Debian testing watch)
[2023-10-17] Accepted axis 1.4-28+deb10u1 (source) into oldoldstable (Markus Koschany)
[2023-10-16] Accepted axis 1.4-29 (source) into unstable (Markus Koschany)
[2021-11-17] Accepted axis 1.4-25+deb9u1 (source all) into oldoldstable (Thorsten Alteholz)
[2018-12-08] axis 1.4-28 MIGRATED to testing (Debian testing watch)
[2018-12-03] Accepted axis 1.4-28 (source) into unstable (Emmanuel Bourg)
[2018-06-14] axis 1.4-27 MIGRATED to testing (Debian testing watch)
[2018-06-08] Accepted axis 1.4-27 (source) into unstable (Emmanuel Bourg)
[2018-06-07] Accepted axis 1.4-26 (source) into unstable (Emmanuel Bourg)
[2017-01-23] axis 1.4-25 MIGRATED to testing (Debian testing watch)
[2017-01-12] Accepted axis 1.4-25 (source all) into unstable (Emmanuel Bourg)
[2016-01-21] axis 1.4-24 MIGRATED to testing (Debian testing watch)
[2016-01-15] Accepted axis 1.4-24 (source all) into unstable (Emmanuel Bourg)
[2015-11-23] axis 1.4-23 MIGRATED to testing (Britney)
[2015-11-17] Accepted axis 1.4-23 (source all) into unstable (Markus Koschany)
[2015-03-10] Accepted axis 1.4-12+deb6u1 (source all amd64) into squeeze-lts (Holger Levsen)
[2014-10-28] axis 1.4-22 MIGRATED to testing (Britney)
[2014-10-17] Accepted axis 1.4-22 (source all) into unstable (Emmanuel Bourg)
[2014-10-03] axis 1.4-21 MIGRATED to testing (Britney)
[2014-10-03] Accepted axis 1.4-16.2+deb7u1 (source all) into proposed-updates->stable-new, proposed-updates (Markus Koschany) (signed by: Miguel Landaeta)
[2014-10-01] Accepted axis 1.4-21 (source all) into unstable (Markus Koschany) (signed by: Miguel Landaeta)
[2013-06-07] axis 1.4-20 MIGRATED to testing (Debian testing watch)
[2013-05-27] Accepted axis 1.4-20 (source all) (Emmanuel Bourg) (signed by: Sylvestre Ledru)
[2013-05-24] axis 1.4-19 MIGRATED to testing (Debian testing watch)
[2013-05-14] Accepted axis 1.4-19 (source all) (tony mancill)
[2013-04-09] Accepted axis 1.4-18 (source all) (Emmanuel Bourg) (signed by: tony mancill)
[2013-02-05] Accepted axis 1.4-17 (source all) (tony mancill)
[2012-12-18] axis 1.4-16.2 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 3
RC: 0
I&N: 3
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 709)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.4-29
2 bugs