jabberd2 - Debian Package Tracker

general

source: jabberd2 (main)
version: 2.7.0-2
maintainer: Debian XMPP Maintainers (archive) (DMD)
uploaders: Simon Josefsson [DMD]
arch: any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.4.0-3+deb9u1
o-o-sec: 2.4.0-3+deb9u1
oldstable: 2.7.0-1
stable: 2.7.0-2
testing: 2.7.0-2
unstable: 2.7.0-2
exp: 2.7.0-3

versioned links

2.4.0-3+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.0-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

jabberd2 (3 bugs: 0, 2, 1, 0)

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/jabberd2/jabberd2/releases .*/archive/jabberd-(.*).tar.gz

Created: 2021-03-22 Last update: 2021-09-26 04:02

lintian reports 5 errors and 7 warnings high

Lintian reports 5 errors and 7 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2021-01-27 Last update: 2021-09-06 18:32

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2017-18226: The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM `cat /var/run/jabber/filename.pid`" command.

Created: 2021-02-19 Last update: 2021-08-15 00:00

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2017-18226: The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM `cat /var/run/jabber/filename.pid`" command.

Created: 2021-08-15 Last update: 2021-08-15 00:00

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2021-08-14 Last update: 2021-09-26 10:01

6 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 68ad4a81bc87c5bc039b4b4b5fde314665e4afe7
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 18:17:51 2021 +0200

    Upload to experimental.

commit 4cbd7dc4bd731dd54a5fe5076ee16fb0f0b08517
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 18:04:35 2021 +0200

    Update changelog for 2.7.0-3 release

commit 95cabf7cee95bbabe2841f028867af4878a4758f
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 18:04:31 2021 +0200

    Drop patches/mariadb10.3.diff since it was merged upstream.

commit c061b8075c13bb80d76e12cf03f8563ed213b584
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 17:57:31 2021 +0200

    Use v4 watch file.

commit f20ea01ea2386c2322a0ce6935e6d9f7f4a43408
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 17:56:59 2021 +0200

    Use gbp dch id-length.

commit 113d65b62c93f12302024c0183688be1015361c5
Author: Simon Josefsson <simon@josefsson.org>
Date:   Wed Aug 11 17:56:20 2021 +0200

    Use Standards-Version: 4.5.1.

Created: 2021-08-11 Last update: 2021-09-18 16:05

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.5.0).

Created: 2020-11-17 Last update: 2021-08-18 14:02

No known security issue in buster wishlist

There is 1 open security issue in buster.

1 ignored issue:

CVE-2017-18226: The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM `cat /var/run/jabber/filename.pid`" command.

Created: 2021-02-19 Last update: 2021-08-15 00:00

No known security issue in bullseye wishlist

There is 1 open security issue in bullseye.

1 ignored issue:

CVE-2017-18226: The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of /var/run/jabber to the jabber account, which might allow local users to kill arbitrary processes by leveraging access to this account for PID file modification before a root script executes a "kill -TERM `cat /var/run/jabber/filename.pid`" command.

Created: 2021-08-14 Last update: 2021-08-15 00:00

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.
This package will soon be part of the auto-openldap transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2021-08-11] Accepted jabberd2 2.7.0-3 (source) into experimental (Simon Josefsson)
[2020-11-07] jabberd2 2.7.0-2 MIGRATED to testing (Debian testing watch)
[2020-11-01] Accepted jabberd2 2.7.0-2 (source) into unstable (Simon Josefsson)
[2019-02-03] jabberd2 2.7.0-1 MIGRATED to testing (Debian testing watch)
[2019-01-28] Accepted jabberd2 2.7.0-1 (source amd64) into unstable (Simon Josefsson)
[2018-01-28] jabberd2 2.6.1-3 MIGRATED to testing (Debian testing watch)
[2018-01-22] Accepted jabberd2 2.6.1-3 (source amd64) into unstable (Simon Josefsson)
[2018-01-22] Accepted jabberd2 2.6.1-2 (source amd64) into unstable (Simon Josefsson)
[2017-11-30] jabberd2 REMOVED from testing (Debian testing watch)
[2017-07-14] jabberd2 2.6.1-1 MIGRATED to testing (Debian testing watch)
[2017-07-09] Accepted jabberd2 2.4.0-3+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2017-07-09] Accepted jabberd2 2.6.1-1 (source amd64) into unstable (Simon Josefsson)
[2017-06-20] jabberd2 2.5.0-1 MIGRATED to testing (Debian testing watch)
[2017-03-16] Accepted jabberd2 2.5.0-1 (source amd64) into unstable (Simon Josefsson)
[2017-01-18] jabberd2 2.4.0-3 MIGRATED to testing (Debian testing watch)
[2016-12-27] Accepted jabberd2 2.4.0-3 (source amd64) into unstable (Simon Josefsson)
[2016-11-11] jabberd2 REMOVED from testing (Debian testing watch)
[2016-10-01] jabberd2 2.4.0-2 MIGRATED to testing (Debian testing watch)
[2016-09-25] Accepted jabberd2 2.4.0-2 (source amd64) into unstable (Simon Josefsson)
[2016-07-24] jabberd2 2.4.0-1 MIGRATED to testing (Debian testing watch)
[2016-07-18] Accepted jabberd2 2.4.0-1~bpo8+1 (source amd64) into jessie-backports (Simon Josefsson)
[2016-07-18] Accepted jabberd2 2.4.0-1 (source) into unstable (Simon Josefsson)
[2015-11-11] jabberd2 2.3.4-1 MIGRATED to testing (Britney)
[2015-11-01] Accepted jabberd2 2.3.4-1 (source) into unstable (Simon Josefsson)
[2015-08-06] jabberd2 2.3.3-3 MIGRATED to testing (Britney)
[2015-07-31] Accepted jabberd2 2.3.3-3 (source) into unstable (Simon Josefsson)
[2015-07-29] jabberd2 REMOVED from testing (Britney)
[2015-05-10] jabberd2 2.3.3-2 MIGRATED to testing (Britney)
[2015-04-29] Accepted jabberd2 2.3.3-2 (source amd64) into unstable (Simon Josefsson)
[2015-04-28] jabberd2 2.3.3-1 MIGRATED to testing (Britney)

bugs [bug history graph]

all: 3
RC: 0
I&N: 2
M&W: 1
F&P: 0
patch: 1

links

homepage
lintian (5, 7)
buildd: logs, exp, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.7.0-2ubuntu2
2 bugs (1 patch)
patches for 2.7.0-2ubuntu2