Debian Package Tracker

general

versioned links

2.1.5+ds-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

action needed

Multiarch hinter reports 1 issue(s) high

There are issues with the multiarch metadata for this package.

libaxtls-dev conflicts on /usr/share/doc/libaxtls-dev/samples/c/axssl.o.gz on any two of arm64, armel, armhf, i386, and 4 more

Created: 2020-01-15 Last update: 2020-10-28 19:05

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2019-10013: The asn1_signature function in asn1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has a Buffer Overflow that allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted certificate in the TLS certificate handshake message, because the result of get_asn1_length() is not checked for a minimum or maximum size.
CVE-2019-9689: process_certificate in tls1.c in Cameron Hamilton-Rich axTLS through 2.1.5 has a Buffer Overflow via a crafted TLS certificate handshake message with zero certificates.

Please fix them.

Created: 2020-01-13 Last update: 2020-08-07 06:08

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 2-day delay is over. Check why.

Created: 2020-04-06 Last update: 2020-10-28 23:34

lintian reports 4 warnings normal

Lintian reports 4 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-08-22 06:03

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2020-01-14 Last update: 2020-01-14 21:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2020-01-21 Last update: 2020-01-21 05:06

testing migrations

This package will soon be part of the perl-5.32 transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
This package will soon be part of the auto-perl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Migration status for axtls (- to 2.1.5+ds-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- Updating axtls introduces new bugs: #953326
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/a/axtls.html
- Required age reduced by 3 days because of autopkgtest
- 289 days old (needed 2 days)
- Not considered

[2020-04-07] axtls REMOVED from testing (Debian testing watch)
[2020-02-01] axtls 2.1.5+ds-1 MIGRATED to testing (Debian testing watch)
[2020-01-13] Accepted axtls 2.1.5+ds-1 (source amd64) into unstable, unstable (Yangfl) (signed by: Adam Borowski)

bugs [bug history graph]

links

ubuntu