hotspot - Debian Package Tracker

general

source: hotspot (main)
version: 1.3.0-2
maintainer: Yanhao Mo (DMD)
arch: any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 1.1.0+git20190211-1
stable: 1.3.0-2
testing: 1.3.0-2
unstable: 1.3.0-2

versioned links

1.1.0+git20190211-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

hotspot

action needed

A new upstream version is available: 1.4.1 high

A new upstream version 1.4.1 is available, you should consider packaging it.

Created: 2022-12-04 Last update: 2023-03-29 07:01

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2023-28144: KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

Created: 2023-03-15 Last update: 2023-03-27 11:06

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2023-28144: KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

Created: 2023-03-15 Last update: 2023-03-27 11:06

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2023-28144: KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

Created: 2023-03-15 Last update: 2023-03-27 11:06

lintian reports 2 errors and 1 warning high

Lintian reports 2 errors and 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2021-04-11 Last update: 2023-02-02 11:50

5 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit ded0b419fe65103a13f6bcbb21d6b56994a81c43
Merge: 1a3e849 0e0f609
Author: Jelmer Vernooĳ <jelmer@debian.org>
Date:   Tue Nov 1 16:10:08 2022 +0000

    Merge branch 'lintian-fixes' into 'master'
    
    Fix some issues reported by lintian
    
    See merge request debian/hotspot!1

commit 0e0f609ee8552713485cf676ec22584f460b38e4
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sat Sep 11 07:36:39 2021 +0000

    Avoid explicitly specifying -Wl,--as-needed linker flag.
    
    Changes-By: lintian-brush
    Fixes: lintian: debian-rules-uses-as-needed-linker-flag
    See-also: https://lintian.debian.org/tags/debian-rules-uses-as-needed-linker-flag.html

commit 3078da898626ac1f3dabc046bc51058cde233132
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sat Sep 11 07:36:13 2021 +0000

    Set upstream metadata fields: Bug-Database, Bug-Submit, Repository, Repository-Browse.
    
    Changes-By: lintian-brush
    Fixes: lintian: upstream-metadata-file-is-missing
    See-also: https://lintian.debian.org/tags/upstream-metadata-file-is-missing.html
    Fixes: lintian: upstream-metadata-missing-bug-tracking
    See-also: https://lintian.debian.org/tags/upstream-metadata-missing-bug-tracking.html
    Fixes: lintian: upstream-metadata-missing-repository
    See-also: https://lintian.debian.org/tags/upstream-metadata-missing-repository.html

commit e0a5bcf18f43ec3700b308105b61487ff7d999be
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sat Sep 11 07:35:54 2021 +0000

    Set debhelper-compat version in Build-Depends.
    
    Changes-By: lintian-brush
    Fixes: lintian: uses-debhelper-compat-file
    See-also: https://lintian.debian.org/tags/uses-debhelper-compat-file.html

commit 326161e1dbcdc08493476bd217075e5204661219
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sat Sep 11 07:35:35 2021 +0000

    Bump debhelper from old 11 to 13.
    
    Changes-By: lintian-brush
    Fixes: lintian: package-uses-old-debhelper-compat-version
    See-also: https://lintian.debian.org/tags/package-uses-old-debhelper-compat-version.html

Created: 2022-11-01 Last update: 2023-03-24 03:06

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

hotspot: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2018-11-22 Last update: 2021-01-09 22:00

1 low-priority security issue in bullseye low

There is 1 open security issue in bullseye.

1 issue left for the package maintainer to handle:

CVE-2023-28144: (needs triaging) KDAB Hotspot 1.3.x and 1.4.x through 1.4.1, in a non-default configuration, allows privilege escalation because of race conditions involving symlinks and elevate_perf_privileges.sh chown calls.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-03-15 Last update: 2023-03-27 11:06

debian/patches: 2 patches to forward upstream low

Among the 2 debian patches available in version 1.3.0-2 of the package, we noticed the following issues:

2 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2023-02-26 15:54

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2021-01-09 Last update: 2021-01-09 19:37

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.2 instead of 4.2.1).

Created: 2018-12-23 Last update: 2022-12-17 19:17

news

[rss feed]

[2021-03-03] hotspot 1.3.0-2 MIGRATED to testing (Debian testing watch)
[2021-02-21] Accepted hotspot 1.3.0-2 (source) into unstable (Yanhao Mo)
[2021-01-09] Accepted hotspot 1.3.0-1 (source) into unstable (Yanhao Mo)
[2019-02-24] hotspot 1.1.0+git20190211-1 MIGRATED to testing (Debian testing watch)
[2019-02-13] Accepted hotspot 1.1.0+git20190211-1 (source amd64) into unstable (Yanhao Mo)
[2019-01-12] hotspot 1.1.0+git20180816-2 MIGRATED to testing (Debian testing watch)
[2019-01-07] Accepted hotspot 1.1.0+git20180816-2 (source amd64) into unstable (Yanhao Mo)
[2018-11-22] Accepted hotspot 1.1.0+git20180816-1 (source amd64) into unstable, unstable (Yanhao Mo) (signed by: Boyuan Yang)

bugs [bug history graph]

all: 2
RC: 0
I&N: 2
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (2, 1)
buildd: logs, checks, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.3.0-2ubuntu1
patches for 1.3.0-2ubuntu1