Debian Package Tracker - haskell-cmark-gfm

A new upstream version is available: 0.2.2 high

A new upstream version 0.2.2 is available, you should consider packaging it.

Created: 2020-09-20 Last update: 2021-01-16 01:06

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-10-17 07:06

1 security issue in bullseye high

There is 1 open security issue in bullseye.

1 important issue:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-10-17 07:06

lintian reports 4 warnings normal

Lintian reports 4 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-09-21 06:02

1 ignored security issue in buster low

There is 1 open security issue in buster.

1 issue skipped by the security teams:

CVE-2020-5238: The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long time to process, causing a denial of service. This issue does not affect the upstream cmark project. The issue has been fixed in version 0.29.0.gfm.1.

Please fix it.

Created: 2020-07-08 Last update: 2020-10-17 07:06

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2020-09-04 Last update: 2020-09-04 17:25

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41