Debian Package Tracker

general

source: knot (source, net)
version: 2.5.3-3
maintainer: Debian DNS Packaging (archive) [DMD]
uploaders: Ondřej Surý [DMD]
arch: all any
std-ver: 3.9.8
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 1.5.3-1~bpo70+1
oldstable: 1.6.0-1+deb8u1
old-sec: 1.6.0-1+deb8u1
old-bpo: 2.3.2-1~bpo8+1
stable: 2.4.0-3+deb9u1
stable-sec: 2.4.0-3+deb9u1
testing: 2.5.1-4
unstable: 2.5.3-3

versioned links

1.5.3-1~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.0-1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.3.2-1~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.4.0-3+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.5.1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.5.3-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

knot
knot-dnsutils
knot-doc
knot-host
libdnssec4
libknot-dev
libknot6
libzscanner1

action needed

Marked for autoremoval on 20 August: 865678

high

Version of knot is marked for autoremoval from testing on Sun 20 Aug 2017. It is affected by 865678. You should try to prevent the removal by fixing these RC bugs.

Created: 2017-06-30 Last update: 2017-08-18 13:36

lintian reports 2 errors and 3 warnings

high

Lintian reports 2 errors and 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2015-03-04 Last update: 2017-08-18 01:16

1 security issue in buster

high

There is 1 open security issue in buster.

1 important issue:

CVE-2017-11104: Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.

Please fix it.

Created: 2017-06-23 Last update: 2017-08-17 07:26

Standards version of the package is outdated.

high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.0.1 instead of 3.9.8).

Created: 2017-07-13 Last update: 2017-08-17 07:08

Multiarch hinter reports 5 issue(s)

normal

There are issues with the multiarch metadata for this package.

knot-doc could be marked Multi-Arch: foreign
libdnssec4 could be marked Multi-Arch: same
libknot-dev could be marked Multi-Arch: same
libknot6 could be marked Multi-Arch: same
libzscanner1 could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2017-08-18 13:41

Does not build reproducibly during testing

normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2016-05-25 Last update: 2017-08-18 13:38

1 ignored security issue in jessie

low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2016-6171: Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.

Please fix it.

Created: 2016-07-06 Last update: 2017-08-17 07:26

testing migrations

excuses:
- Migration status: WAITING: Waiting for test results, another package or too young (no action required now - check later)
- Too young, only 1 of 5 days old
- Updating knot fixes old bugs: #865678
- Piuparts tested OK - https://piuparts.debian.org/sid/source/k/knot.html
- Not considered

news

[rss feed]

[2017-08-16] Accepted knot 2.5.3-3 (source amd64) into unstable, unstable (Ondřej Surý)
[2017-08-16] Accepted knot 2.5.3-2 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2017-07-23] Accepted knot 2.5.3-1 (source) into unstable (Ondřej Surý)
[2017-07-23] knot 2.5.1-4 MIGRATED to testing (Debian testing watch)
[2017-07-15] Accepted knot 2.4.0-3+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Yves-Alexis Perez)
[2017-07-15] Accepted knot 1.6.0-1+deb8u1 (source amd64 all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Yves-Alexis Perez)
[2017-07-13] Accepted knot 2.5.1-1 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2017-07-13] Accepted knot 2.5.1-4 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2017-07-13] Accepted knot 2.5.1-3 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2017-06-20] knot 2.4.3-1 MIGRATED to testing (Debian testing watch)
[2017-04-11] Accepted knot 2.4.3-1 (source) into unstable (Ondřej Surý)
[2017-03-23] Accepted knot 2.4.2-1 (source) into unstable (Ondřej Surý)
[2017-02-27] Accepted knot 2.4.1-2 (source) into unstable (Ondřej Surý)
[2017-02-10] Accepted knot 2.4.1-1 (source) into unstable (Ondřej Surý)
[2017-02-05] knot 2.4.0-3 MIGRATED to testing (Debian testing watch)
[2017-01-25] Accepted knot 2.4.0-3 (source) into unstable (Ondřej Surý)
[2017-01-23] Accepted knot 2.4.0-2 (source) into unstable (Ondřej Surý)
[2017-01-23] Accepted knot 2.4.0-1 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2016-12-19] knot 2.3.3-1 MIGRATED to testing (Debian testing watch)
[2016-12-08] Accepted knot 2.3.3-1 (source) into unstable (Ondřej Surý)
[2016-11-14] Accepted knot 2.3.2-1~bpo8+1 (source amd64 all) into jessie-backports (Ondřej Surý)
[2016-11-10] knot 2.3.2-1 MIGRATED to testing (Debian testing watch)
[2016-11-04] Accepted knot 2.3.2-1 (source) into unstable (Ondřej Surý)
[2016-11-02] Accepted knot 2.3.1-1~bpo8+1 (source amd64 all) into jessie-backports, jessie-backports (Ondřej Surý)
[2016-10-16] knot 2.3.1-1 MIGRATED to testing (Debian testing watch)
[2016-10-10] Accepted knot 2.3.1-1 (source amd64 all) into unstable, unstable (Ondřej Surý)
[2016-09-21] knot 2.3.0-4 MIGRATED to testing (Debian testing watch)
[2016-09-15] Accepted knot 2.3.0-3~bpo8+1 (source amd64 all) into jessie-backports, jessie-backports (Ondřej Surý)
[2016-09-15] Accepted knot 2.3.0-4 (source) into unstable (Ondřej Surý)
[2016-08-18] knot 2.3.0-3 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 6
RC: 0
I&N: 4
M&W: 2
F&P: 0

links

homepage
lintian (2, 3)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.5.3-3