Debian Package Tracker

general

source: fossil (main)
version: 1:2.13-2
maintainer: Barak A. Pearlmutter (DMD) (LowNMU)
arch: any
std-ver: 4.5.0
VCS: unknown

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:1.29-1
oldstable: 1:1.37-1
old-bpo: 1:2.8-1~bpo9+1
stable: 1:2.8-1
testing: 1:2.13-2
unstable: 1:2.13-2

versioned links

1:1.29-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.37-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:2.8-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:2.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:2.13-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

fossil

action needed

A new upstream version is available: 2.14-preview-20210113 high

A new upstream version 2.14-preview-20210113 is available, you should consider packaging it.

Created: 2020-11-23 Last update: 2021-01-21 05:00

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2020-10-19 Last update: 2021-01-21 08:30

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2020-09-21 Last update: 2020-09-21 06:02

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2017-17459: http_transport.c in Fossil before 2.4, when the SSH sync protocol is used, allows user-assisted remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-12976, CVE-2017-14176, CVE-2017-16228, CVE-2017-1000116, and CVE-2017-1000117.
CVE-2020-24614: Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.

Please fix them.

Created: 2017-12-08 Last update: 2020-11-16 07:05

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2020-24614: Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.

Please fix it.

Created: 2020-08-21 Last update: 2020-11-16 07:05

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2020-11-11 Last update: 2020-11-11 16:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2020-11-16] fossil 1:2.13-2 MIGRATED to testing (Debian testing watch)
[2020-11-11] Accepted fossil 1:2.13-2 (source) into unstable (Barak A. Pearlmutter)
[2020-11-09] Accepted fossil 1:2.13-1 (source) into unstable (Barak A. Pearlmutter)
[2020-08-26] fossil 1:2.12.1-1 MIGRATED to testing (Debian testing watch)
[2020-08-20] Accepted fossil 1:2.12.1-1 (source) into unstable (Barak A. Pearlmutter)
[2020-06-17] fossil 1:2.11.1-1 MIGRATED to testing (Debian testing watch)
[2020-06-11] Accepted fossil 1:2.11.1-1 (source) into unstable (Barak A. Pearlmutter)
[2020-06-01] fossil 1:2.11-1 MIGRATED to testing (Debian testing watch)
[2020-05-26] Accepted fossil 1:2.11-1 (source) into unstable (Barak A. Pearlmutter)
[2019-10-13] fossil 1:2.10-1 MIGRATED to testing (Debian testing watch)
[2019-10-07] Accepted fossil 1:2.10-1 (source) into unstable (Barak A. Pearlmutter)
[2019-09-02] fossil 1:2.9-1 MIGRATED to testing (Debian testing watch)
[2019-08-28] Accepted fossil 1:2.9-1 (source) into unstable (Barak A. Pearlmutter)
[2019-03-04] Accepted fossil 1:2.8-1~bpo9+1 (source amd64) into stretch-backports (Sylvain Beucler)
[2019-03-04] fossil 1:2.8-1 MIGRATED to testing (Debian testing watch)
[2019-02-22] Accepted fossil 1:2.8-1 (source) into unstable (Barak A. Pearlmutter)
[2018-10-31] Accepted fossil 1:2.7-1~bpo9+1 (source amd64) into stretch-backports, stretch-backports (Sylvain Beucler)
[2018-10-07] fossil 1:2.7-1 MIGRATED to testing (Debian testing watch)
[2018-10-01] Accepted fossil 1:2.7-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2018-07-03] fossil 1:2.6-1 MIGRATED to testing (Debian testing watch)
[2018-06-27] Accepted fossil 1:2.6-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2018-02-19] fossil 1:2.5-1 MIGRATED to testing (Debian testing watch)
[2018-02-14] Accepted fossil 1:2.5-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2017-12-12] fossil 1:2.4-1 MIGRATED to testing (Debian testing watch)
[2017-12-07] Accepted fossil 1:2.4-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2017-06-20] fossil 1:2.2-1 MIGRATED to testing (Debian testing watch)
[2017-05-02] Accepted fossil 1:2.2-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2017-03-13] Accepted fossil 1:2.0-1 (source amd64) into unstable (Barak A. Pearlmutter)
[2017-01-29] fossil 1:1.37-1 MIGRATED to testing (Debian testing watch)
[2017-01-18] Accepted fossil 1:1.37-1 (source amd64) into unstable (Barak A. Pearlmutter)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 1

links

homepage
lintian (0, 1)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:2.13-2
1 bug