batik - Debian Package Tracker

general

source: batik (main)
version: 1.12-4
maintainer: Debian Java Maintainers (archive) (DMD)
uploaders: Vincent Fourmond [DMD] – Onkar Shinde [DMD] – Wolfgang Baer [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.8-4+deb9u2
o-o-sec: 1.8-4+deb9u1
oldstable: 1.10-2+deb10u1
stable: 1.12-4
testing: 1.12-4
unstable: 1.12-4

versioned links

1.8-4+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.8-4+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.10-2+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.12-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libbatik-java (2 bugs: 0, 1, 1, 0)

action needed

A new upstream version is available: 1.14 high

A new upstream version 1.14 is available, you should consider packaging it.

Created: 2020-06-29 Last update: 2021-09-25 02:05

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-11987: Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

Created: 2021-02-25 Last update: 2021-08-15 00:00

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2020-11987: Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

Created: 2021-08-15 Last update: 2021-08-15 00:00

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2021-08-14 Last update: 2021-09-25 07:00

lintian reports 40 warnings normal

Lintian reports 40 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2021-01-27 03:01

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2020-11987: (needs triaging) Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-25 Last update: 2021-08-15 00:00

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2020-11987: (needs triaging) Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulnerability to cause the underlying server to make arbitrary GET requests.

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-08-14 Last update: 2021-08-15 00:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.5.0).

Created: 2020-11-17 Last update: 2021-08-18 14:03

news

[rss feed]

[2020-09-28] batik 1.12-4 MIGRATED to testing (Debian testing watch)
[2020-09-23] Accepted batik 1.12-4 (source) into unstable (Sudip Mukherjee)
[2020-09-11] batik 1.12-3 MIGRATED to testing (Debian testing watch)
[2020-09-05] Accepted batik 1.12-3 (source) into unstable (Sudip Mukherjee)
[2020-09-04] Accepted batik 1.12-2 (source) into unstable (Sudip Mukherjee)
[2020-07-22] batik 1.12-1.1 MIGRATED to testing (Debian testing watch)
[2020-07-15] Accepted batik 1.12-1.1 (source) into unstable (Emilio Pozuelo Monfort)
[2020-07-11] Accepted batik 1.10-2+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Emilio Pozuelo Monfort)
[2020-07-11] Accepted batik 1.8-4+deb9u2 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Emilio Pozuelo Monfort)
[2020-02-22] batik 1.12-1 MIGRATED to testing (Debian testing watch)
[2020-02-16] Accepted batik 1.12-1 (source) into unstable (Mathieu Malaterre)
[2018-12-25] batik 1.10-2 MIGRATED to testing (Debian testing watch)
[2018-12-19] Accepted batik 1.10-2 (source) into unstable (Emmanuel Bourg)
[2018-06-03] Accepted batik 1.7+dfsg-5+deb8u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Markus Koschany)
[2018-06-03] Accepted batik 1.8-4+deb9u1 (source all) into proposed-updates->stable-new, proposed-updates (Markus Koschany)
[2018-06-02] Accepted batik 1.8-4+deb9u1 (source all) into stable->embargoed, stable (Markus Koschany)
[2018-06-02] Accepted batik 1.7+dfsg-5+deb8u1 (source all) into oldstable->embargoed, oldstable (Markus Koschany)
[2018-05-30] batik 1.10-1 MIGRATED to testing (Debian testing watch)
[2018-05-25] Accepted batik 1.7+dfsg-3+deb7u3 (source all) into oldoldstable (Markus Koschany)
[2018-05-25] Accepted batik 1.10-1 (source) into unstable (Markus Koschany)
[2017-10-08] batik 1.9-3 MIGRATED to testing (Debian testing watch)
[2017-10-02] Accepted batik 1.9-3 (source) into unstable (Emmanuel Bourg)
[2017-09-18] batik 1.9-2 MIGRATED to testing (Debian testing watch)
[2017-09-13] Accepted batik 1.9-2 (source) into unstable (Christopher Hoskin)
[2017-09-09] batik 1.9-1 MIGRATED to testing (Debian testing watch)
[2017-09-04] Accepted batik 1.9-1 (source) into unstable (Christopher Hoskin)
[2017-04-29] Accepted batik 1.7+dfsg-3+deb7u2 (source all) into oldstable (Antoine Beaupré)
[2016-10-12] batik 1.8-4 MIGRATED to testing (Debian testing watch)
[2016-10-07] Accepted batik 1.8-4 (source) into unstable (Mathieu Malaterre)
[2015-10-26] batik 1.8-3 MIGRATED to testing (Britney)

bugs [bug history graph]

all: 3
RC: 0
I&N: 2
M&W: 1
F&P: 0
patch: 1

links

homepage
lintian (0, 40)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.12-4
3 bugs