libgepub - Debian Package Tracker

general

source: libgepub (main)
version: 0.7.3-1
maintainer: Debian GNOME Maintainers (archive) (DMD)
uploaders: Jeremy Bícha [DMD]
arch: any
std-ver: 4.7.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.6.0-2
oldstable: 0.7.0-2
stable: 0.7.3-1
testing: 0.7.3-1
unstable: 0.7.3-1

versioned links

0.6.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.7.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.7.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

gir1.2-gepub-0.7
libgepub-0.7-0
libgepub-0.7-dev

action needed

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 0.7.3-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 94fa2d672e1949a593c3ebed133c54e162d913d2
Author: Simon McVittie <smcv@debian.org>
Date:   Sun Sep 7 17:59:44 2025 +0100

    Update changelog

commit 7b3570743299f6675a1caac7f860dffda06a5899
Author: Simon McVittie <smcv@debian.org>
Date:   Sun Sep 7 17:19:38 2025 +0100

    Replace libgirepository1.0-dev B-D with gobject-introspection

commit b2a1334e5a8fe6cead98689ee57d07f582f8a744
Author: Simon McVittie <smcv@debian.org>
Date:   Sun Sep 7 17:18:36 2025 +0100

    d/control: Standards-Version: 4.7.2 (no changes required)

commit ba879ad3f1129657e7d1d81f58efe6625b551cd2
Author: Simon McVittie <smcv@debian.org>
Date:   Sun Sep 7 17:18:21 2025 +0100

    d/control: Remove Rules-Requires-Root, unnecessary since trixie

Created: 2025-09-07 Last update: 2025-09-07 18:03

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-6196: (needs triaging) A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash. Known affected usage includes desktop services like Tumbler, which may process malicious files automatically when browsing directories. While no direct remote attack vectors are confirmed, any application using libgepub to parse user-supplied EPUB content could be vulnerable to a denial of service.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-06-17 Last update: 2025-08-10 06:32

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).

Created: 2024-04-07 Last update: 2025-04-08 01:27

news

[rss feed]

[2025-04-10] libgepub 0.7.3-1 MIGRATED to testing (Debian testing watch)
[2025-04-07] Accepted libgepub 0.7.3-1 (source) into unstable (Jeremy Bícha) (signed by: Jeremy Bicha)
[2024-01-29] libgepub 0.7.1-2 MIGRATED to testing (Debian testing watch)
[2024-01-26] Accepted libgepub 0.7.1-2 (source) into unstable (Jeremy Bícha) (signed by: Jeremy Bicha)
[2023-06-20] libgepub 0.7.1-1 MIGRATED to testing (Debian testing watch)
[2023-06-13] Accepted libgepub 0.7.1-1 (source) into unstable (Jeremy Bícha) (signed by: Jeremy Bicha)
[2022-09-07] libgepub 0.7.0-2 MIGRATED to testing (Debian testing watch)
[2022-09-04] Accepted libgepub 0.7.0-2 (source) into unstable (Jeremy Bicha)
[2022-09-04] Accepted libgepub 0.7.0-1 (source amd64) into unstable, unstable (Debian FTP Masters) (signed by: Jeremy Bicha)
[2018-12-30] libgepub 0.6.0-2 MIGRATED to testing (Debian testing watch)
[2018-12-28] Accepted libgepub 0.6.0-2 (source) into unstable (Jeremy Bicha)
[2018-03-26] libgepub 0.6.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-21] Accepted libgepub 0.6.0-1 (source amd64) into unstable, unstable (Jeremy Bicha)
[2018-01-26] libgepub 0.5.3-1 MIGRATED to testing (Debian testing watch)
[2018-01-21] Accepted libgepub 0.5.3-1 (source) into unstable (Jeremy Bicha)
[2017-12-22] libgepub 0.5.2-2 MIGRATED to testing (Debian testing watch)
[2017-12-16] Accepted libgepub 0.5.2-2 (source) into unstable (Jeremy Bicha)
[2017-09-03] libgepub 0.5.2-1 MIGRATED to testing (Debian testing watch)
[2017-08-29] Accepted libgepub 0.5.2-1 (source amd64) into unstable, unstable (Jeremy Bicha)
[2016-09-11] libgepub 0.4-1 MIGRATED to testing (Debian testing watch)
[2016-09-05] Accepted libgepub 0.4-1 (source amd64) into unstable, unstable (Andreas Henriksson)

bugs [bug history graph]

all: 0

links

lintian
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.7.3-1build1