Debian Package Tracker

general

source: calibre (main)
version: 4.99.3+dfsg-2
maintainer: Norbert Preining (DMD)
uploaders: Martin Pitt [DMD] – Nicholas D Steeves [DMD] [DM] – YOKOTA Hiroshi [DMD]
arch: all any
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.5.0+dfsg-1
oldstable: 2.75.1+dfsg-1
old-bpo: 3.39.1+dfsg-3~bpo9+1
stable: 3.39.1+dfsg-3
stable-bpo: 3.48.0+dfsg-1~bpo10+1
testing: 4.7.0+dfsg-1
unstable: 4.99.3+dfsg-2
exp: 4.99.3+dfsg-1

versioned links

2.5.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.75.1+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.39.1+dfsg-3~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.39.1+dfsg-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.48.0+dfsg-1~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.6.0+dfsg-1+exp1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.7.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.99.2+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.99.3+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.99.3+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

calibre (32 bugs: 0, 21, 11, 0)
calibre-bin

action needed

Marked for autoremoval on 16 February due to cssutils, html5-parser, pyqt5webengine, python-apsw, python-css-parser, python-cssselect, python-regex: #936710, #937578, #937677, #937678, #938127, #942978, #943173 high

Version 4.7.0+dfsg-1 of calibre is marked for autoremoval from testing on Sun 16 Feb 2020. It depends (transitively) on cssutils, html5-parser, pyqt5webengine, python-apsw, python-css-parser, python-cssselect, python-regex, affected by #936710, #937578, #937677, #937678, #938127, #942978, #943173. You should try to prevent the removal by fixing these RC bugs.

Created: 2020-01-16 Last update: 2020-01-18 12:34

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2019-12-09 Last update: 2020-01-18 08:32

5 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 78e0fbe535b0cee17e98f8e2315289acd2e84027
Author: YOKOTA Hiroshi <yokota.hgml@gmail.com>
Date:   Sat Jan 18 01:26:41 2020 +0900

    Reset locale to "C" instead of erase them

commit e5f98974ebd11f2afd78c0d42a3c6407fb47c893
Author: YOKOTA Hiroshi <yokota.hgml@gmail.com>
Date:   Fri Jan 17 23:09:35 2020 +0900

    Use "C" locale for testing
    
    According to src/calibre/utils/localization.py:get_system_locale() ,
    set "C" is the best way to reset locale functionality.

commit 9ef28ac25b1c6e2637b35deb0fb35acb227a0371
Author: YOKOTA Hiroshi <yokota.hgml@gmail.com>
Date:   Sat Jan 18 02:20:02 2020 +0900

    Revert "Add debhelper compatible "nocheck" option"
    
    This reverts commit dd6636e4c9450e4502762f605aa71dd4b1fe7ee8.

commit dd6636e4c9450e4502762f605aa71dd4b1fe7ee8
Author: YOKOTA Hiroshi <yokota.hgml@gmail.com>
Date:   Fri Jan 17 05:27:09 2020 +0900

    Add debhelper compatible "nocheck" option
    
    This option will skip test to help maintainer.
    Add "nocheck" to DEB_BUIlD_MAINT_OPTIONS or DEB_BUILD_OPTIONS to work.
    See also dh_auto_test(1) manual.

commit 42db04a9fc177612ff70f7d3d9e1204d32f101d1
Author: Norbert Preining <norbert@preining.info>
Date:   Fri Jan 17 08:50:27 2020 +0900

    fix bibtex export (Closes: #949095)

Created: 2019-10-16 Last update: 2020-01-17 23:05

AppStream hints: 3 warnings normal

AppStream found metadata issues for packages:

calibre: 3 warnings

You should get rid of them to provide more metadata about this software.

Created: 2018-06-04 Last update: 2020-01-05 03:40

3 ignored security issues in jessie low

There are 3 open security issues in jessie.

3 issues skipped by the security teams:

CVE-2016-10187: The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript.
CVE-2018-7889: gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.
CVE-2010-1028: Integer overflow in the decompression functionality in the Web Open Fonts Format (WOFF) decoder in Mozilla Firefox 3.6 before 3.6.2 and 3.7 before 3.7 alpha 3 allows remote attackers to execute arbitrary code via a crafted WOFF file that triggers a buffer overflow, as demonstrated by the vd_ff module in VulnDisco 9.0.

Please fix them.

Created: 2017-01-29 Last update: 2020-01-16 23:30

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-7889: gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call.

Please fix it.

Created: 2018-03-09 Last update: 2020-01-16 23:30

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2020-01-14 21:00

testing migrations

This package will soon be part of the auto-icu transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
excuses:
- Migrates after: pyqt5
- Migration status for calibre (4.7.0+dfsg-1 to 4.99.3+dfsg-2): BLOCKED: Maybe temporary, maybe blocked but Britney is missing information (check below)
- Issues preventing migration:
- missing build on arm64
- missing build on armhf
- missing build on mipsel
- arch:arm64 not built yet, autopkgtest delayed there
- Too young, only 1 of 5 days old
- Additional info:
- Piuparts tested OK - https://piuparts.debian.org/sid/source/c/calibre.html
- Not considered

news

[rss feed]

[2020-01-16] Accepted calibre 4.99.3+dfsg-2 (source) into unstable (Norbert Preining)
[2020-01-10] Accepted calibre 4.99.3+dfsg-1 (source) into experimental (Norbert Preining)
[2020-01-04] calibre 4.7.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-12-27] Accepted calibre 4.7.0+dfsg-1 (source) into unstable (Norbert Preining)
[2019-12-27] Accepted calibre 4.99.2+dfsg-1 (source) into experimental (Norbert Preining)
[2019-12-18] calibre 4.6.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-12-13] Accepted calibre 4.6.0+dfsg-1+exp1 (source) into experimental (Norbert Preining)
[2019-12-13] Accepted calibre 4.6.0+dfsg-1 (source) into unstable (Norbert Preining)
[2019-12-08] calibre 4.5.0+dfsg-3 MIGRATED to testing (Debian testing watch)
[2019-12-03] Accepted calibre 4.5.0+dfsg-3+exp1 (source) into experimental (Norbert Preining)
[2019-12-03] Accepted calibre 4.5.0+dfsg-3 (source) into unstable (Norbert Preining)
[2019-11-29] Accepted calibre 4.5.0+dfsg-2+exp1 (source) into experimental (Norbert Preining)
[2019-11-29] Accepted calibre 4.5.0+dfsg-2 (source) into unstable (Norbert Preining)
[2019-11-29] Accepted calibre 4.5.0+dfsg-1+exp1 (source) into experimental (Norbert Preining)
[2019-11-29] Accepted calibre 4.5.0+dfsg-1 (source) into unstable (Norbert Preining)
[2019-11-27] calibre 4.4.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-11-22] Accepted calibre 4.4.0+dfsg-1+exp1 (source) into experimental (Norbert Preining)
[2019-11-22] Accepted calibre 4.4.0+dfsg-1 (source) into unstable (Norbert Preining)
[2019-11-16] calibre 4.3.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2019-11-11] Accepted calibre 4.3.0+dfsg-2+exp1 (source) into experimental (Norbert Preining)
[2019-11-11] Accepted calibre 4.3.0+dfsg-2 (source) into unstable (Norbert Preining)
[2019-11-08] Accepted calibre 4.3.0+dfsg-1+exp1 (source) into experimental (Norbert Preining)
[2019-11-08] Accepted calibre 4.3.0+dfsg-1 (source) into unstable (Norbert Preining)
[2019-11-04] calibre 4.2.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2019-10-31] Accepted calibre 4.2.0+dfsg-2+exp2 (source) into experimental (Norbert Preining)
[2019-10-28] Accepted calibre 4.2.0+dfsg-2+exp1 (source) into experimental (Norbert Preining)
[2019-10-28] Accepted calibre 4.2.0+dfsg-2 (source) into unstable (Norbert Preining)
[2019-10-25] Accepted calibre 4.2.0+dfsg-1 (source) into experimental (Norbert Preining)
[2019-10-11] calibre 4.0.0+really3.48.dfsg-1 MIGRATED to testing (Debian testing watch)
[2019-10-06] Accepted calibre 4.0.0+really3.48.dfsg-1 (source) into unstable (Norbert Preining)

bugs [bug history graph]

all: 34
RC: 0
I&N: 22
M&W: 11
F&P: 1
patch: 0

links

homepage
buildd: logs, exp, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.7.0+dfsg-1
52 bugs