golang-github-graph-gophers-graphql-go

general

source: golang-github-graph-gophers-graphql-go (main)
version: 1.4.0-1
maintainer: Debian Go Packaging Team (archive) (DMD)
uploaders: Sascha Steinbiss [DMD]
arch: all
std-ver: 4.6.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 0.0~git20180609.bb97385-2~bpo9+1
oldstable: 0.0~git20180609.bb97385-2
stable: 0.0~git20180609.bb97385-2.1
testing: 1.4.0-1
unstable: 1.4.0-1

versioned links

0.0~git20180609.bb97385-2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.0~git20180609.bb97385-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.0~git20180609.bb97385-2.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.4.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

golang-github-graph-gophers-graphql-go-dev

action needed

Marked for autoremoval on 30 June due to nvidia-graphics-drivers-tesla-470: #1011146 high

Version 1.4.0-1 of golang-github-graph-gophers-graphql-go is marked for autoremoval from testing on Thu 30 Jun 2022. It depends (transitively) on nvidia-graphics-drivers-tesla-470, affected by #1011146. You should try to prevent the removal by fixing these RC bugs.

Created: 2022-05-24 Last update: 2022-05-25 22:38

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2022-21708: (needs triaging) graphql-go is a GraphQL server with a focus on ease of use. In versions prior to 1.3.0 there exists a DoS vulnerability that is possible due to a bug in the library that would allow an attacker with specifically designed queries to cause stack overflow panics. Any user with access to the GraphQL handler can send these queries and cause stack overflows. This in turn could potentially compromise the ability of the server to serve data to its users. The issue has been patched in version `v1.3.0`. The only known workaround for this issue is to disable the `graphql.MaxDepth` option from your schema which is not recommended.

You can find information about how to handle this issue in the security team's documentation.

Created: 2022-02-03 Last update: 2022-04-18 07:10

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2022-21708: (needs triaging) graphql-go is a GraphQL server with a focus on ease of use. In versions prior to 1.3.0 there exists a DoS vulnerability that is possible due to a bug in the library that would allow an attacker with specifically designed queries to cause stack overflow panics. Any user with access to the GraphQL handler can send these queries and cause stack overflows. This in turn could potentially compromise the ability of the server to serve data to its users. The issue has been patched in version `v1.3.0`. The only known workaround for this issue is to disable the `graphql.MaxDepth` option from your schema which is not recommended.

You can find information about how to handle this issue in the security team's documentation.

Created: 2022-02-03 Last update: 2022-04-18 07:10

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.1 instead of 4.6.0).

Created: 2022-05-11 Last update: 2022-05-11 23:25

news

[rss feed]

[2022-04-18] golang-github-graph-gophers-graphql-go 1.4.0-1 MIGRATED to testing (Debian testing watch)
[2022-04-16] Accepted golang-github-graph-gophers-graphql-go 1.4.0-1 (source) into unstable (Sascha Steinbiss)
[2022-01-29] golang-github-graph-gophers-graphql-go 1.3.0-1 MIGRATED to testing (Debian testing watch)
[2022-01-26] Accepted golang-github-graph-gophers-graphql-go 1.3.0-1 (source) into unstable (Sascha Steinbiss)
[2021-09-25] golang-github-graph-gophers-graphql-go 1.2.0-1 MIGRATED to testing (Debian testing watch)
[2021-09-23] Accepted golang-github-graph-gophers-graphql-go 1.2.0-1 (source) into unstable (Sascha Steinbiss)
[2021-08-20] golang-github-graph-gophers-graphql-go 1.1.0-2 MIGRATED to testing (Debian testing watch)
[2021-08-17] Accepted golang-github-graph-gophers-graphql-go 1.1.0-2 (source) into unstable (Sascha Steinbiss)
[2021-05-04] Accepted golang-github-graph-gophers-graphql-go 1.1.0-1 (source all) into experimental (Sascha Steinbiss)
[2021-01-12] golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-2.1 MIGRATED to testing (Debian testing watch)
[2021-01-09] Accepted golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-2.1 (source) into unstable (Holger Levsen)
[2018-08-12] Accepted golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-2~bpo9+1 (source all) into stretch-backports, stretch-backports (Sascha Steinbiss)
[2018-08-03] golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-2 MIGRATED to testing (Debian testing watch)
[2018-08-01] Accepted golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-2 (source all) into unstable (Sascha Steinbiss)
[2018-08-01] Accepted golang-github-graph-gophers-graphql-go 0.0~git20180609.bb97385-1 (source all) into unstable, unstable (Sascha Steinbiss)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.4.0-1