commons-configuration2 - Debian Package Tracker

general

source: commons-configuration2 (main)
version: 2.11.0-3
maintainer: Debian Java Maintainers (archive) (DMD)
uploaders: Emmanuel Bourg [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.8.0-1~deb11u1
o-o-sec: 2.8.0-1~deb11u1
oldstable: 2.8.0-2
stable: 2.11.0-2
testing: 2.11.0-2
unstable: 2.11.0-3

versioned links

2.8.0-1~deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.8.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.11.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.11.0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libcommons-configuration2-java

action needed

Marked for autoremoval on 01 December: #1117946 high

Version 2.11.0-2 of commons-configuration2 is marked for autoremoval from testing on Mon 01 Dec 2025. It is affected by #1117946. The removal of commons-configuration2 will also cause the removal of (transitive) reverse dependencies: icb-utils, igv, libdsiutils-java, libgoby-java, mediathekview, rockhopper. You should try to prevent the removal by fixing these RC bugs.

Created: 2025-10-28 Last update: 2025-11-08 23:00

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2025-11-02 Last update: 2025-11-08 22:31

Depends on packages which need a new maintainer normal

The packages that commons-configuration2 depends on which need a new maintainer are:

javacc-maven-plugin (#922602)
- Build-Depends: libjavacc-maven-plugin-java

Created: 2019-11-22 Last update: 2025-11-08 20:30

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-10-28 Last update: 2025-10-28 23:00

2 low-priority security issues in bookworm low

There are 2 open security issues in bookworm.

2 issues left for the package maintainer to handle:

CVE-2024-29131: (needs triaging) Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fixes the issue.
CVE-2024-29133: (needs triaging) Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade to version 2.10.1, which fixes the issue.

You can find information about how to handle these issues in the security team's documentation.

Created: 2024-03-21 Last update: 2025-10-28 19:02

testing migrations

excuses:
- Migration status: Blocked. Can't migrate due to a non-migratable dependency. Check status below.
- Blocked by: snakeyaml
- Migration status for commons-configuration2 (2.11.0-2 to 2.11.0-3): BLOCKED: Cannot migrate due to another item, which is blocked (please check which dependencies are stuck)
- Issues preventing migration:
- ∙ ∙ Build-Depends(-Arch): commons-configuration2 snakeyaml (not considered)
- ∙ ∙ Invalidated by build-dependency
- Additional info (not blocking):
- ∙ ∙ Updating commons-configuration2 will fix bugs in testing: #1117946
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/c/commons-configuration2.html
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- ∙ ∙ 12 days old (needed 5 days)
- Not considered

news

[rss feed]

[2025-10-28] Accepted commons-configuration2 2.11.0-3 (source) into unstable (Pierre Gruet)
[2024-11-05] commons-configuration2 2.11.0-2 MIGRATED to testing (Debian testing watch)
[2024-10-30] Accepted commons-configuration2 2.11.0-2 (source) into unstable (Emmanuel Bourg)
[2024-10-30] commons-configuration2 2.11.0-1 MIGRATED to testing (Debian testing watch)
[2024-10-23] Accepted commons-configuration2 2.11.0-1 (source) into unstable (Emmanuel Bourg)
[2024-03-30] commons-configuration2 2.10.1-1 MIGRATED to testing (Debian testing watch)
[2024-03-25] Accepted commons-configuration2 2.10.1-1 (source) into unstable (tony mancill)
[2023-01-13] commons-configuration2 2.8.0-2 MIGRATED to testing (Debian testing watch)
[2023-01-08] Accepted commons-configuration2 2.8.0-2 (source) into unstable (tony mancill)
[2022-12-03] Accepted commons-configuration2 2.8.0-1~deb11u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Markus Koschany)
[2022-11-28] Accepted commons-configuration2 2.8.0-1~deb11u1 (source) into stable-security (Debian FTP Masters) (signed by: Markus Koschany)
[2022-07-22] commons-configuration2 2.8.0-1 MIGRATED to testing (Debian testing watch)
[2022-07-16] Accepted commons-configuration2 2.8.0-1 (source) into unstable (tony mancill)
[2020-07-25] Accepted commons-configuration2 2.2-1+deb10u1 (source all) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Moritz Mühlenhoff)
[2020-04-11] commons-configuration2 2.7-2 MIGRATED to testing (Debian testing watch)
[2020-04-05] Accepted commons-configuration2 2.7-2 (source) into unstable (Markus Koschany)
[2020-04-03] commons-configuration2 2.7-1 MIGRATED to testing (Debian testing watch)
[2020-03-29] Accepted commons-configuration2 2.7-1 (source) into unstable (tony mancill)
[2018-01-04] commons-configuration2 2.2-1 MIGRATED to testing (Debian testing watch)
[2017-12-29] Accepted commons-configuration2 2.2-1 (source) into unstable (Emmanuel Bourg)
[2017-07-26] commons-configuration2 2.1.1-1 MIGRATED to testing (Debian testing watch)
[2017-07-23] Accepted commons-configuration2 2.1.1-1 (source all) into unstable, unstable (Emmanuel Bourg)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 2)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.11.0-3