Debian Package Tracker

general

source: bro (main)
version: 2.6.4+ds1-2
maintainer: Hilko Bengen (DMD)
arch: all any
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 2.5-1
stable: 2.5.5-1+deb10u1
stable-sec: 2.5.5-1+deb10u1
unstable: 2.6.4+ds1-2

versioned links

2.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.5.5-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.6.4+ds1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

bro
bro-common
bro-dev

action needed

3 binary packages have unsatisfiable dependencies high

The dependencies of bro=2.5.5-1+deb10u1 cannot be satisfied in unstable on armhf and s390x because: unsatisfied dependency on bro-common
The dependencies of bro=2.6.4+ds1-2 cannot be satisfied in unstable on mips64el, mipsel, ppc64el, i386, amd64, and arm64 because: unsatisfied dependency on libbroker0 (>= 1.1.2+ds1)
The dependencies of bro=2.5.5-1+deb10u1 cannot be satisfied in unstable on armel because: unsatisfied dependency on libc6 (< 2.29)

Created: 2020-02-05 Last update: 2020-08-04 23:35

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://www.bro.org/downloads/ bro-(\d.*)-minimal\.tar\.gz

Created: 2020-06-29 Last update: 2020-08-04 19:30

lintian reports 1 error and 3 warnings high

Lintian reports 1 error and 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-07-29 12:30

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2019-10-22 Last update: 2020-08-04 23:34

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

bro-common could be marked Multi-Arch: foreign
bro-dev could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2020-08-04 19:33

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2019-12175: In Zeek Network Security Monitor (formerly known as Bro) before 2.6.2, a NULL pointer dereference in the Kerberos (aka KRB) protocol parser leads to DoS because a case-type index is mishandled.

Please fix it.

Created: 2019-09-16 Last update: 2020-07-06 05:01

4 ignored security issues in stretch low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2018-16807: In Bro through 2.5.5, there is a memory leak potentially leading to DoS in scripts/base/protocols/krb/main.bro in the Kerberos protocol parser.
CVE-2019-12175: In Zeek Network Security Monitor (formerly known as Bro) before 2.6.2, a NULL pointer dereference in the Kerberos (aka KRB) protocol parser leads to DoS because a case-type index is mishandled.
CVE-2017-1000458: Bro before Bro v2.5.2 is vulnerable to an out of bounds write in the ContentLine analyzer allowing remote attackers to cause a denial of service (crash) and possibly other exploitation.
CVE-2018-17019: In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc.

Please fix them.

Created: 2018-01-03 Last update: 2020-07-06 05:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.3.0).

Created: 2018-08-20 Last update: 2020-01-21 05:06

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
This package will soon be part of the auto-actor-framework transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Migration status for bro (- to 2.6.4+ds1-2): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- bro/amd64 has unsatisfiable dependency
- bro/arm64 has unsatisfiable dependency
- bro/i386 has unsatisfiable dependency
- bro/mips64el has unsatisfiable dependency
- bro/mipsel has unsatisfiable dependency
- bro/ppc64el has unsatisfiable dependency
- Updating bro introduces new bugs: #949043
- missing build on armel
- missing build on armhf
- missing build on s390x
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/b/bro.html
- uninstallable on arch amd64, not running autopkgtest there
- uninstallable on arch arm64, not running autopkgtest there
- 293 days old (needed 5 days)
- Not considered

news

[rss feed]

[2019-10-17] Accepted bro 2.6.4+ds1-2 (source) into unstable (Hilko Bengen)
[2019-09-03] Accepted bro 2.6.4+ds1-1 (source) into unstable (Hilko Bengen)
[2019-08-21] Accepted bro 2.6.1+ds1-1 (source all amd64) into unstable, unstable (Hilko Bengen)
[2019-08-05] bro REMOVED from testing (Debian testing watch)
[2019-07-04] Accepted bro 2.5.5-1+deb10u1 (source) into testing->embargoed, testing (Hilko Bengen)
[2019-07-04] Accepted bro 2.5.5-1+deb10u1 (source) into testing-proposed-updates (Hilko Bengen)
[2018-09-16] bro 2.5.5-1 MIGRATED to testing (Debian testing watch)
[2018-09-10] Accepted bro 2.5.5-1 (source) into unstable (Hilko Bengen)
[2018-08-03] bro 2.5.4-1 MIGRATED to testing (Debian testing watch)
[2018-06-17] Accepted bro 2.5.4-1 (source) into unstable (Hilko Bengen)
[2018-02-21] bro 2.5.3-1 MIGRATED to testing (Debian testing watch)
[2018-02-16] Accepted bro 2.5.3-1 (source) into unstable (Hilko Bengen)
[2017-12-05] bro 2.5.2-2 MIGRATED to testing (Debian testing watch)
[2017-11-29] Accepted bro 2.5.2-2 (source) into unstable (Hilko Bengen)
[2017-10-22] bro 2.5.2-1 MIGRATED to testing (Debian testing watch)
[2017-10-17] Accepted bro 2.5.2-1 (source) into unstable (Hilko Bengen)
[2017-07-23] bro 2.5.1-1 MIGRATED to testing (Debian testing watch)
[2017-07-16] Accepted bro 2.5.1-1 (source) into unstable (Hilko Bengen)
[2017-01-03] bro 2.5-1 MIGRATED to testing (Debian testing watch)
[2016-12-23] Accepted bro 2.5-1 (source) into unstable (Hilko Bengen)
[2016-11-28] bro 2.4.1+dfsg-4 MIGRATED to testing (Debian testing watch)
[2016-11-22] Accepted bro 2.4.1+dfsg-4 (source) into unstable (Hilko Bengen)
[2016-11-15] Accepted bro 2.4.1+dfsg-3 (source) into unstable (Hilko Bengen)
[2015-11-11] bro 2.4.1+dfsg-2 MIGRATED to testing (Britney)
[2015-11-05] Accepted bro 2.4.1+dfsg-2 (source all amd64) into unstable (Hilko Bengen)
[2015-11-04] bro 2.4.1+dfsg-1 MIGRATED to testing (Britney)
[2015-10-29] Accepted bro 2.4.1+dfsg-1 (source all amd64) into unstable (Hilko Bengen)
[2015-07-04] bro 2.4+dfsg-1 MIGRATED to testing (Britney)
[2015-06-28] Accepted bro 2.4+dfsg-1 (source all amd64) into unstable (Hilko Bengen)
[2015-04-27] bro 2.3.2+dfsg-1 MIGRATED to testing (Britney)

bugs [bug history graph]

all: 1
RC: 1
I&N: 0
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (1, 3)
buildd: logs, clang, debcheck, cross
popcon
browse source code
edit tags
security tracker
screenshots