kitty - Debian Package Tracker

general

source: kitty (main)
version: 0.40.0-1
maintainer: Nilesh Patra (DMD)
uploaders: Maytham Alsudany [DMD]
arch: all any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.13.3-1+deb10u1
o-o-sec: 0.13.3-1+deb10u1
oldstable: 0.19.3-1
stable: 0.26.5-5
testing: 0.39.1-1
unstable: 0.40.0-1

versioned links

0.13.3-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.19.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.26.5-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.39.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.40.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

kitty
kitty-doc
kitty-shell-integration
kitty-terminfo

action needed

A new upstream version is available: 0.41.1 high

A new upstream version 0.41.1 is available, you should consider packaging it.

Created: 2025-03-21 Last update: 2025-04-24 04:33

1 security issue in trixie high

There is 1 open security issue in trixie.

1 important issue:

CVE-2025-43929: open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).

Created: 2025-04-20 Last update: 2025-04-20 20:02

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-43929: open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).

Created: 2025-04-20 Last update: 2025-04-20 20:02

2 security issues in bullseye high

There are 2 open security issues in bullseye.

1 important issue:

CVE-2025-43929: open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).

1 issue postponed or untriaged:

CVE-2022-41322: (needs triaging) In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.

Created: 2025-04-20 Last update: 2025-04-20 20:02

1 security issue in bookworm high

There is 1 open security issue in bookworm.

1 important issue:

CVE-2025-43929: open_actions.py in kitty before 0.41.0 does not ask for user confirmation before running a local executable file that may have been linked from an untrusted document (e.g., a document opened in KDE ghostwriter).

Created: 2025-04-20 Last update: 2025-04-20 20:02

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 10-day delay is over. Check why.

Created: 2025-03-22 Last update: 2025-04-24 06:02

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2024-01-01 Last update: 2025-04-24 01:02

AppStream hints: 1 warning normal

AppStream found metadata issues for packages:

kitty: 1 warning

You should get rid of them to provide more metadata about this software.

Created: 2020-06-01 Last update: 2020-06-01 01:13

debian/patches: 5 patches to forward upstream low

Among the 13 debian patches available in version 0.40.0-1 of the package, we noticed the following issues:

5 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2023-02-26 Last update: 2025-03-17 18:01

testing migrations

excuses:
- Migration status for kitty (0.39.1-1 to 0.40.0-1): BLOCKED: Rejected/violates migration policy/introduces a regression
- Issues preventing migration:
- ∙ ∙ Updating kitty would introduce bugs in testing: #1103595
- ∙ ∙ missing build on s390x
- ∙ ∙ arch:s390x not built yet, autopkgtest delayed there
- Additional info:
- ∙ ∙ Updating kitty will fix bugs in testing: #1103423
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/k/kitty.html
- ∙ ∙ Ignoring non-reproducibility on amd64 (not a regression) - info ♻
- ∙ ∙ Ignoring non-reproducibility on arm64 (not a regression) - info ♻
- ∙ ∙ Waiting for reproducibility test results on armhf - info ♻
- ∙ ∙ Ignoring non-reproducibility on i386 (not a regression) - info ♻
- ∙ ∙ 38 days old (needed 10 days)
- Not considered

news

[rss feed]

[2025-03-17] Accepted kitty 0.40.0-1 (source) into unstable (Maytham Alsudany)
[2025-02-21] kitty 0.39.1-1 MIGRATED to testing (Debian testing watch)
[2025-02-16] Accepted kitty 0.39.1-1 (source) into unstable (Nilesh Patra)
[2025-01-27] kitty 0.39.0-1 MIGRATED to testing (Debian testing watch)
[2025-01-18] Accepted kitty 0.39.0-1 (source) into unstable (Maytham Alsudany)
[2025-01-04] Accepted kitty 0.38.1-1 (source) into unstable (Maytham Alsudany)
[2024-11-29] kitty 0.37.0-1 MIGRATED to testing (Debian testing watch)
[2024-11-24] Accepted kitty 0.37.0-1 (source) into unstable (Nilesh Patra)
[2024-10-24] kitty 0.36.4-3 MIGRATED to testing (Debian testing watch)
[2024-10-18] Accepted kitty 0.36.4-3 (source) into unstable (Nilesh Patra)
[2024-10-07] kitty 0.36.4-2 MIGRATED to testing (Debian testing watch)
[2024-10-02] Accepted kitty 0.36.4-2 (source) into unstable (Nilesh Patra)
[2024-09-28] Accepted kitty 0.36.4-1 (source) into unstable (Nilesh Patra)
[2024-08-29] kitty 0.36.1-1 MIGRATED to testing (Debian testing watch)
[2024-08-24] Accepted kitty 0.36.1-1 (source) into unstable (Nilesh Patra)
[2024-07-08] kitty 0.35.2-1 MIGRATED to testing (Debian testing watch)
[2024-06-24] Accepted kitty 0.35.2-1 (source) into unstable (Maytham Alsudany)
[2024-06-10] kitty 0.35.1-1 MIGRATED to testing (Debian testing watch)
[2024-06-04] Accepted kitty 0.35.1-1 (source) into unstable (Nilesh Patra)
[2024-05-06] kitty 0.34.1-1 MIGRATED to testing (Debian testing watch)
[2024-05-01] Accepted kitty 0.34.1-1 (source) into unstable (Nilesh Patra)
[2024-04-29] kitty 0.33.1-1 MIGRATED to testing (Debian testing watch)
[2024-03-21] Accepted kitty 0.33.1-1 (source) into unstable (Nilesh Patra)
[2024-03-16] Accepted kitty 0.33.0-2 (source) into unstable (Nilesh Patra)
[2024-03-16] Accepted kitty 0.33.0-1 (source) into unstable (Nilesh Patra)
[2024-02-23] kitty 0.32.2-1 MIGRATED to testing (Debian testing watch)
[2024-02-17] Accepted kitty 0.32.2-1 (source) into unstable (Nilesh Patra)
[2024-02-02] kitty 0.32.1-1 MIGRATED to testing (Debian testing watch)
[2024-01-28] Accepted kitty 0.32.1-1 (source) into unstable (Nilesh Patra)
[2024-01-20] Accepted kitty 0.32.0-1 (source) into unstable (Maytham Alsudany) (signed by: Nilesh Patra)

bugs [bug history graph]

all: 2
RC: 1
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.39.1-1
5 bugs