ghostwriter - Debian Package Tracker

general

source: ghostwriter (main)
version: 2.1.1-1
maintainer: Sebastien CHAVAUX (DMD)
uploaders: ghost [DMD]
arch: amd64 arm64 armhf i386 mips64el mipsel
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 1.7.4-2
stable: 1.8.1-2
stable-bpo: 2.0.2-2~bpo11+1
unstable: 2.1.1-1

versioned links

1.7.4-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.8.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.0.2-2~bpo11+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.1.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ghostwriter

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/wereturtle/ghostwriter/releases .*/v?(\d\S+)\.tar\.gz debian uupdate

Created: 2022-09-23 Last update: 2022-12-05 14:44

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2022-24724: cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruption when parsing tables who's marker rows contain more than UINT16_MAX columns. The impact of this heap corruption ranges from Information Leak to Arbitrary Code Execution depending on how and where `cmark-gfm` is used. If `cmark-gfm` is used for rendering remote user controlled markdown, this vulnerability may lead to Remote Code Execution (RCE) in applications employing affected versions of the `cmark-gfm` library. This vulnerability has been patched in the following cmark-gfm versions 0.29.0.gfm.3 and 0.28.3.gfm.21. A workaround is available. The vulnerability exists in the table markdown extensions of cmark-gfm. Disabling the table extension will prevent this vulnerability from being triggered.

Created: 2022-07-04 Last update: 2022-10-30 12:37

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2022-24724: cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruption when parsing tables who's marker rows contain more than UINT16_MAX columns. The impact of this heap corruption ranges from Information Leak to Arbitrary Code Execution depending on how and where `cmark-gfm` is used. If `cmark-gfm` is used for rendering remote user controlled markdown, this vulnerability may lead to Remote Code Execution (RCE) in applications employing affected versions of the `cmark-gfm` library. This vulnerability has been patched in the following cmark-gfm versions 0.29.0.gfm.3 and 0.28.3.gfm.21. A workaround is available. The vulnerability exists in the table markdown extensions of cmark-gfm. Disabling the table extension will prevent this vulnerability from being triggered.

Created: 2022-07-04 Last update: 2022-10-05 19:08

lintian reports 67 errors and 37 warnings high

Lintian reports 67 errors and 37 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2022-07-30 12:13

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2022-10-21 Last update: 2022-12-05 18:54

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2.1.6+dfsg-1, distribution unstable) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit edfd4f378d02f57be41b67d397532a5710ae4361
Merge: 70a8f38 f596463
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Nov 30 10:55:56 2022 +0000

    Merge branch 'seb95-guest-master-patch-35982' into 'master'
    
    Mettre à jour debian/changelog, debian/compat, debian/control,...
    
    See merge request seb95-guest/ghostwriter!1

commit f59646362c368cbb89246c8ad86295552798a712
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Nov 30 10:55:56 2022 +0000

    Mettre à jour debian/changelog, debian/compat, debian/control,...

commit 70a8f38c26f5135e4dfc408f9727682577f3d6e1
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:19:51 2019 +0000

    Replace watch

commit df6604eeb7dfe6f239b41ffb7dea42a6254731b9
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:19:32 2019 +0000

    Replace rules

commit 6672289742607e416a05db5f0c6afaac5150da5d
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:18:49 2019 +0000

    Replace copyright

commit da1bad6ed770aec0e01b9e3530e88a641f0234d3
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:17:47 2019 +0000

    Replace control

commit 55912216f4c1f822c7d68351e2e9fc9c9ca6b1f6
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:17:14 2019 +0000

    Replace changelog

commit 4860b1cbca16c19c672e3c2259b521dba16db1a1
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:16:40 2019 +0000

    Replace series

commit 3041ae80db3199198f4b264ff1f46cdc0ae26dff
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Oct 16 17:15:56 2019 +0000

    Delete clean-deps.patch

commit 2f1fe636065672dd1f8db3ab857a6ccd0858473b
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 01:01:56 2019 +0000

    Update control

commit b6f6da62e64f494b6558df72666e9621fed74efc
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 01:01:31 2019 +0000

    Update compat

commit f5e6a1f81fe860bdefef251e27eaecf7d4313d5d
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 01:00:57 2019 +0000

    Replace changelog

commit 84f1dc75ac427481d8243e3ca99ec7708b58d864
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 00:29:54 2019 +0000

    Replace changelog

commit 249866b5fac89da78c9d141ce19cfe096ee497b5
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 00:28:27 2019 +0000

    Replace control

commit 5f75482a0c8c1f014c1e9bdc9c4392ccd89a3a6f
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 00:27:57 2019 +0000

    Replace compat

commit f7fe7e4c64424624120a8051562d8a3d4f8db4af
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 00:22:36 2019 +0000

    Replace changelog

commit 5be1f79f785596001c9e7b9a59b8090c30f11ee5
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Wed Mar 6 00:00:51 2019 +0000

    Replace copyright

commit 99a21acc497146d3ff67bbb820c127dc9b6db072
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Tue Mar 5 23:41:48 2019 +0000

    Replace copyright

commit aca116663162fe5f14a1a55737428cca4c980e1e
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Tue Mar 5 23:41:17 2019 +0000

    Replace control

commit d7b60658c343df49f186dd7e976cbd0d2799eca4
Author: Sebastien CHAVAUX <passiongnulinux@gmail.com>
Date:   Tue Mar 5 23:40:44 2019 +0000

    Replace compat

commit 44cf620d306f57beb9296c9079ffb4f5d8887d63
Author: Passionlinux <33764341+Passionlinux@users.noreply.github.com>
Date:   Mon Feb 25 23:20:17 2019 +0100

    debianisation

Created: 2018-12-25 Last update: 2022-11-30 12:47

RFS: A sponsor is needed to update this package. normal

A Debian contributor is looking for a sponsor to upload a package update. It might be the regular maintainer who does not have any upload right yet, or it might be someone who just wants to help for a bugfix or a new upstream version. In any case, if you have upload rights and care about this package and Debian in general, you should look into sponsoring this update. Please see bug number #1021364 for more information.

Created: 2022-10-06 Last update: 2022-10-06 21:02

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

ghostwriter: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2019-03-07 Last update: 2021-10-30 04:36

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2022-05-11 23:25

testing migrations

excuses:
- Migration status for ghostwriter (- to 2.1.1-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- ∙ ∙ Updating ghostwriter would introduce bugs in testing: #1006757
- Additional info:
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/g/ghostwriter.html
- ∙ ∙ 341 days old (needed 5 days)
- Not considered

news

[rss feed]

[2022-10-22] ghostwriter REMOVED from testing (Debian testing watch)
[2022-01-03] ghostwriter 2.1.1-1 MIGRATED to testing (Debian testing watch)
[2021-12-29] Accepted ghostwriter 2.1.1-1 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2021-12-06] Accepted ghostwriter 2.0.2-2~bpo11+1 (source amd64) into bullseye-backports, bullseye-backports (Debian FTP Masters) (signed by: Adam Borowski)
[2021-12-01] ghostwriter 2.1.0-2 MIGRATED to testing (Debian testing watch)
[2021-11-25] Accepted ghostwriter 2.1.0-2 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2021-11-05] ghostwriter 2.0.2-2 MIGRATED to testing (Debian testing watch)
[2021-10-30] Accepted ghostwriter 2.0.2-2 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2021-10-29] Accepted ghostwriter 2.0.2-1 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2020-11-29] ghostwriter 1.8.1-2 MIGRATED to testing (Debian testing watch)
[2020-11-24] Accepted ghostwriter 1.8.1-2 (source) into unstable (Sebastien CHAVAUX) (signed by: Bart Martens)
[2020-03-07] ghostwriter 1.8.1-1 MIGRATED to testing (Debian testing watch)
[2020-03-02] Accepted ghostwriter 1.8.1-1 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2020-01-10] ghostwriter 1.8.0-2 MIGRATED to testing (Debian testing watch)
[2019-07-27] Accepted ghostwriter 1.8.0-2 (source) into unstable (Sebastien CHAVAUX) (signed by: Bart Martens)
[2019-05-03] Accepted ghostwriter 1.8.0-1 (source) into experimental (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2019-03-28] ghostwriter 1.7.4-2 MIGRATED to testing (Debian testing watch)
[2019-03-06] Accepted ghostwriter 1.7.4-2 (source amd64) into unstable (Sebastien CHAVAUX) (signed by: Bart Martens)
[2019-01-02] ghostwriter 1.7.4-1 MIGRATED to testing (Debian testing watch)
[2018-12-28] Accepted ghostwriter 1.7.4-1 (source) into unstable (Sebastien CHAVAUX) (signed by: Adam Borowski)
[2018-12-24] Accepted ghostwriter 1.7.3-1 (source amd64) into unstable, unstable (ghost)

bugs [bug history graph]

all: 1
RC: 1
I&N: 0
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (67, 37)
buildd: logs, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.1.1-1
1 bug