Debian Package Tracker

general

source: cairo (source, libs)
version: 1.14.8-1
maintainer: Debian GNOME Maintainers (archive) [DMD]
uploaders: Dave Beckett [DMD] – Sebastian Dröge [DMD] – Emilio Pozuelo Monfort [DMD] – Michael Biebl [DMD]
arch: all any
std-ver: 3.9.6
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.12.2-3
o-o-sec: 1.12.2-3+deb7u1
oldstable: 1.14.0-2.1+deb8u2
stable: 1.14.8-1
testing: 1.14.8-1
unstable: 1.14.8-1

versioned links

1.12.2-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.12.2-3+deb7u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.14.0-2.1+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.14.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

cairo-perf-utils
libcairo-gobject2
libcairo-script-interpreter2
libcairo2
libcairo2-dev
libcairo2-doc
libcairo2-udeb

action needed

A new upstream version is available: 1.14.10

high

A new upstream version 1.14.10 is available, you should consider packaging it.

Created: 2017-06-16 Last update: 2017-06-24 01:18

1 security issue in sid

high

There is 1 open security issue in sid.

1 important issue:

CVE-2017-7475: Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

Please fix it.

Created: 2017-04-29 Last update: 2017-06-18 08:29

2 security issues in wheezy

high

There are 2 open security issues in wheezy.

1 important issue:

CVE-2017-7475: Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

1 issue skipped by the security teams:

CVE-2016-3190: The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length.

Please fix them.

Created: 2016-03-18 Last update: 2017-06-18 08:29

1 security issue in jessie

high

There is 1 open security issue in jessie.

1 important issue:

CVE-2017-7475: Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

Please fix it.

Created: 2017-04-29 Last update: 2017-06-18 08:29

1 security issue in stretch

high

There is 1 open security issue in stretch.

1 important issue:

CVE-2017-7475: Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

Please fix it.

Created: 2017-04-29 Last update: 2017-06-18 08:29

1 security issue in buster

high

There is 1 open security issue in buster.

1 important issue:

CVE-2017-7475: Cairo version 1.15.4 is vulnerable to a NULL pointer dereference related to the FT_Load_Glyph and FT_Render_Glyph resulting in an application crash.

Please fix it.

Created: 2017-06-18 Last update: 2017-06-18 08:29

Multiarch hinter reports 2 issue(s)

normal

There are issues with the multiarch metadata for this package.

libcairo2-doc could be marked Multi-Arch: foreign
libcairo2-dev could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2017-06-24 01:28

5 bugs tagged patch in the BTS

normal

The BTS contains patches fixing 5 bugs, consider including or untagging them.

Created: 2017-01-17 Last update: 2017-06-24 01:03

lintian reports 17 warnings

normal

Lintian reports 17 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2015-03-03 Last update: 2016-09-13 06:45

Standards version of the package is outdated.

wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 3.9.8 instead of 3.9.6).

Created: 2016-03-23 Last update: 2017-01-03 00:57

news

[rss feed]

[2017-01-02] Accepted cairo 1.14.0-2.1+deb8u2 (all source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2016-12-24] cairo 1.14.8-1 MIGRATED to testing (Debian testing watch)
[2016-12-13] Accepted cairo 1.14.8-1 (source) into unstable (Emilio Pozuelo Monfort)
[2016-11-14] cairo 1.14.6-1.1 MIGRATED to testing (Debian testing watch)
[2016-11-04] Accepted cairo 1.14.6-1.1 (all source) into unstable (Salvatore Bonaccorso)
[2016-10-28] Accepted cairo 1.12.2-3+deb7u1 (source all amd64) into oldstable (Chris Lamb)
[2016-10-10] Accepted cairo 1.14.0-2.1+deb8u1~kbsd8u1 (source all) into stable-kfreebsd-proposed-updates (Steven Chamberlain)
[2016-03-21] Accepted cairo 1.14.0-2.1+deb8u1 (source amd64 all) into proposed-updates->stable-new, proposed-updates (Moritz Mühlenhoff)
[2016-01-15] cairo 1.14.6-1 MIGRATED to testing (Debian testing watch)
[2016-01-09] Accepted cairo 1.14.6-1 (source) into unstable (Michael Biebl)
[2015-11-05] cairo 1.14.4-1 MIGRATED to testing (Britney)
[2015-10-30] Accepted cairo 1.14.4-1 (source) into unstable (Michael Biebl)
[2015-05-19] cairo 1.14.2-2 MIGRATED to testing (Britney)
[2015-05-14] Accepted cairo 1.14.2-2 (source amd64 all) into unstable (Michael Biebl)
[2015-04-20] Accepted cairo 1.8.10-6+build1 (source all amd64) into squeeze-lts (Raphaël Hertzog)
[2015-04-08] Accepted cairo 1.14.2-1 (source amd64 all) into experimental (Iain Lane)
[2014-11-03] cairo 1.14.0-2.1 MIGRATED to testing (Britney)
[2014-10-27] Accepted cairo 1.14.0-2.1 (source amd64 all) into unstable (Yaroslav Halchenko)
[2014-10-22] Accepted cairo 1.14.0-2 (source amd64 all) into unstable (Michael Biebl)
[2014-10-21] Accepted cairo 1.14.0-1 (source all amd64) into unstable (Michael Biebl)
[2014-09-12] cairo 1.12.16-5 MIGRATED to testing (Britney)
[2014-09-06] Accepted cairo 1.12.16-5 (source all amd64) into unstable (Emilio Pozuelo Monfort)
[2014-09-05] Accepted cairo 1.12.16-4 (source all amd64) into unstable (Emilio Pozuelo Monfort)
[2014-08-30] cairo 1.12.16-3 MIGRATED to testing (Britney)
[2014-08-24] Accepted cairo 1.12.16-3 (source all amd64) into unstable (Andreas Henriksson)
[2013-09-28] cairo 1.12.16-2 MIGRATED to testing (Debian testing watch)
[2013-09-17] Accepted cairo 1.12.16-2 (source all amd64) (Michael Biebl)
[2013-09-13] Accepted cairo 1.12.16-1 (source all amd64) (Michael Biebl)
[2013-06-12] Accepted cairo 1.12.14-5 (source all amd64) (Emilio Pozuelo Monfort)
[2013-05-24] cairo 1.12.14-4 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 51 54
RC: 0
I&N: 49 52
M&W: 2
F&P: 0

links

homepage
lintian (0, 17)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.14.8-1
34 bugs (2 patches)