jupyter-server - Debian Package Tracker

general

source: jupyter-server (main)
version: 2.15.0-1
maintainer: Debian Python Team (DMD)
uploaders: Julien Puydt [DMD] – Julian Gilbey [DMD] – Roland Mas [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 1.2.2-1
stable: 1.23.3-1
testing: 2.15.0-1
unstable: 2.15.0-1

versioned links

1.2.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.23.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.15.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

jupyter-server
python-jupyter-server-doc
python3-jupyter-server

action needed

A new upstream version is available: 2.16.0 high

A new upstream version 2.16.0 is available, you should consider packaging it.

Created: 2025-05-15 Last update: 2025-07-09 07:02

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2024-08-30 Last update: 2025-07-09 12:22

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-04-10 Last update: 2025-04-10 00:31

2 low-priority security issues in bookworm low

There are 2 open security issues in bookworm.

2 issues left for the package maintainer to handle:

CVE-2023-39968: (needs triaging) jupyter-server is the backend for Jupyter web applications. Open Redirect Vulnerability. Maliciously crafted login links to known Jupyter Servers can cause successful login or an already logged-in session to be redirected to arbitrary sites, which should be restricted to Jupyter Server-served URLs. This issue has been addressed in commit `29036259` which is included in release 2.7.2. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVE-2023-40170: (needs triaging) jupyter-server is the backend for Jupyter web applications. Improper cross-site credential checks on `/files/` URLs could allow exposure of certain file contents, or accessing files when opening untrusted files via "Open image in new tab". This issue has been addressed in commit `87a49272728` which has been included in release `2.7.2`. Users are advised to upgrade. Users unable to upgrade may use the lower performance `--ContentsManager.files_handler_class=jupyter_server.files.handlers.FilesHandler`, which implements the correct checks.

You can find information about how to handle these issues in the security team's documentation.

Created: 2023-09-04 Last update: 2025-04-05 10:30

news

[rss feed]

[2025-04-06] jupyter-server 2.15.0-1 MIGRATED to testing (Debian testing watch)
[2025-04-01] Accepted jupyter-server 2.15.0-1 (source) into unstable (Julian Gilbey)
[2024-12-18] jupyter-server 2.14.2-5 MIGRATED to testing (Debian testing watch)
[2024-12-16] Accepted jupyter-server 2.14.2-5 (source) into unstable (Colin Watson)
[2024-08-31] jupyter-server 2.14.2-4 MIGRATED to testing (Debian testing watch)
[2024-08-13] Accepted jupyter-server 2.14.2-4 (source) into unstable (Julian Gilbey)
[2024-08-10] Accepted jupyter-server 2.14.2-3 (source) into unstable (Julian Gilbey)
[2024-08-09] Accepted jupyter-server 2.14.2-2 (source) into unstable (Julian Gilbey)
[2024-08-08] Accepted jupyter-server 2.14.2-1 (source all) into unstable (Debian FTP Masters) (signed by: Julian Gilbey)
[2024-05-12] Accepted jupyter-server 2.14.0-1 (source) into experimental (Roland Mas)
[2024-01-07] jupyter-server 1.23.3-2 MIGRATED to testing (Debian testing watch)
[2024-01-01] Accepted jupyter-server 1.23.3-2 (source) into unstable (Julian Gilbey)
[2023-11-10] Accepted jupyter-server 2.9.1-1 (source) into experimental (Roland Mas)
[2022-11-30] jupyter-server 1.23.3-1 MIGRATED to testing (Debian testing watch)
[2022-11-25] Accepted jupyter-server 1.23.3-1 (source) into unstable (Julien Puydt)
[2022-11-19] jupyter-server 1.23.2-1 MIGRATED to testing (Debian testing watch)
[2022-11-14] Accepted jupyter-server 1.23.2-1 (source) into unstable (Julien Puydt)
[2022-11-03] jupyter-server 1.21.0-1 MIGRATED to testing (Debian testing watch)
[2022-11-03] jupyter-server 1.21.0-1 MIGRATED to testing (Debian testing watch)
[2022-10-28] Accepted jupyter-server 1.21.0-1 (source) into unstable (Julien Puydt)
[2022-09-29] jupyter-server 1.18.1-2 MIGRATED to testing (Debian testing watch)
[2022-09-24] Accepted jupyter-server 1.18.1-2 (source) into unstable (Julien Puydt)
[2022-07-16] jupyter-server 1.18.1-1 MIGRATED to testing (Debian testing watch)
[2022-07-11] Accepted jupyter-server 1.18.1-1 (source) into unstable (Julien Puydt)
[2022-06-19] jupyter-server 1.17.1-1 MIGRATED to testing (Debian testing watch)
[2022-06-13] Accepted jupyter-server 1.17.1-1 (source) into unstable (Julien Puydt)
[2022-05-07] jupyter-server 1.17.0-1 MIGRATED to testing (Debian testing watch)
[2022-05-01] Accepted jupyter-server 1.17.0-1 (source) into unstable (Julien Puydt)
[2022-04-26] jupyter-server 1.16.0-1 MIGRATED to testing (Debian testing watch)
[2022-04-20] Accepted jupyter-server 1.16.0-1 (source) into unstable (Julien Puydt)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (0, 2)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (-, 85)
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.15.0-1