Register | Log in

dulwich

Choose email to subscribe with

general

source: dulwich (main)
version: 0.19.15-1
maintainer: Debian Python Modules Team (archive) (DMD)
uploaders: Jelmer Vernooĳ [DMD]
arch: any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.9.7-3
oldstable: 0.16.3-1
old-bpo: 0.19.9-2~bpo9+1
stable: 0.19.11-2
testing: 0.19.15-1
unstable: 0.19.15-1

versioned links

0.9.7-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.16.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.6-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.9-2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.11-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.13-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.14-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.15-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

pypy-dulwich
python3-dulwich

action needed

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2014-9390: Git before 1.8.5.6, 1.9.x before 1.9.5, 2.0.x before 2.0.5, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 on Windows and OS X; Mercurial before 3.2.3 on Windows and OS X; Apple Xcode before 6.2 beta 3; mine; libgit2; Egit; and JGit allow remote Git servers to execute arbitrary commands via a tree containing a crafted .git/config file with (1) an ignorable Unicode codepoint, (2) a git~1/config representation, or (3) mixed case that is improperly handled on a case-insensitive filesystem.
CVE-2017-16228: Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-1000116, and CVE-2017-1000117.

Please fix them.

Created: 2015-07-12 Last update: 2020-02-13 06:00

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2017-16228: Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-1000116, and CVE-2017-1000117.

Please fix it.

Created: 2017-10-29 Last update: 2020-02-13 06:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2020-01-27 05:04

news

[2020-01-29] dulwich 0.19.15-1 MIGRATED to testing (Debian testing watch)
[2020-01-26] Accepted dulwich 0.19.15-1 (source) into unstable (Jelmer Vernooĳ) (signed by: Jelmer Vernooij)
[2020-01-08] dulwich 0.19.14-4 MIGRATED to testing (Debian testing watch)
[2019-12-26] Accepted dulwich 0.19.14-4 (source) into unstable (Stefano Rivera)
[2019-12-25] Accepted dulwich 0.19.14-3 (source) into unstable (Sandro Tosi)
[2019-12-15] Accepted dulwich 0.19.14-2 (source) into unstable (Jelmer Vernooĳ) (signed by: Jelmer Vernooij)
[2019-11-30] Accepted dulwich 0.19.14-1 (source) into unstable (Jelmer Vernooĳ) (signed by: Jelmer Vernooij)
[2019-08-22] dulwich 0.19.13-1 MIGRATED to testing (Debian testing watch)
[2019-08-19] Accepted dulwich 0.19.13-1 (source) into unstable (Jelmer Vernooĳ)
[2019-08-16] dulwich 0.19.12-1 MIGRATED to testing (Debian testing watch)
[2019-08-13] Accepted dulwich 0.19.12-1 (source) into unstable (Jelmer Vernooĳ)
[2019-02-26] dulwich 0.19.11-2 MIGRATED to testing (Debian testing watch)
[2019-02-12] Accepted dulwich 0.19.11-2 (source) into unstable (Jelmer Vernooĳ)
[2019-02-07] Accepted dulwich 0.19.11-1 (source) into unstable (Jelmer Vernooĳ)
[2019-01-17] dulwich 0.19.10-1 MIGRATED to testing (Debian testing watch)
[2019-01-15] Accepted dulwich 0.19.10-1 (source) into unstable (Jelmer Vernooĳ)
[2018-12-06] Accepted dulwich 0.19.9-2~bpo9+1 (source amd64) into stretch-backports, stretch-backports (Jelmer Vernooĳ)
[2018-11-23] dulwich 0.19.9-2 MIGRATED to testing (Debian testing watch)
[2018-11-20] Accepted dulwich 0.19.9-2 (source) into unstable (Jelmer Vernooĳ)
[2018-11-17] Accepted dulwich 0.19.9-1 (source) into unstable (Jelmer Vernooĳ)
[2018-11-07] Accepted dulwich 0.19.8-1 (source) into unstable (Jelmer Vernooĳ)
[2018-11-05] Accepted dulwich 0.19.7-1 (source) into unstable (Jelmer Vernooĳ)
[2018-09-16] dulwich 0.19.6-2 MIGRATED to testing (Debian testing watch)
[2018-09-05] Accepted dulwich 0.19.6-2 (source) into unstable (Jelmer Vernooĳ)
[2018-08-14] dulwich 0.19.6-1 MIGRATED to testing (Debian testing watch)
[2018-08-11] Accepted dulwich 0.19.6-1 (source) into unstable (Jelmer Vernooĳ)
[2018-07-25] dulwich 0.19.5-1 MIGRATED to testing (Debian testing watch)
[2018-07-08] Accepted dulwich 0.19.5-1 (source) into unstable (Jelmer Vernooĳ)
[2018-06-24] Accepted dulwich 0.19.4-1 (source) into unstable (Jelmer Vernooĳ)
[2018-06-19] Accepted dulwich 0.19.3-1 (source) into unstable (Jelmer Vernooĳ)

1
2

bugs [bug history graph]

all: 0

links

homepage
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.19.15-1build1

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing