Register | Log in

libksba

Choose email to subscribe with

general

source: libksba (source, libs)
version: 1.3.5-2
maintainer: Debian GnuTLS Maintainers (archive) [DMD]
uploaders: James Westby [DMD] – Peter Eisentraut [DMD] – Andreas Metzler [DMD] – Eric Dorland [DMD]
arch: all any
std-ver: 3.9.8
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.2.0-2+deb7u1
o-o-sec: 1.2.0-2+deb7u2
oldstable: 1.3.2-1+deb8u1
old-bpo: 1.3.5-2~bpo8+1
stable: 1.3.5-2
testing: 1.3.5-2
unstable: 1.3.5-2

versioned links

1.2.0-2+deb7u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.2.0-2+deb7u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.2-1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.5-2~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.5-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libksba-dev
libksba-mingw-w64-dev
libksba8

action needed

lintian reports 2 errors and 2 warnings

high

Lintian reports 2 errors and 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2015-03-08 Last update: 2016-09-04 00:50

Multiarch hinter reports 1 issue(s)

low

There are issues with the multiarch metadata for this package.

libksba-mingw-w64-dev could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2017-08-21 07:42

4 ignored security issues in wheezy

low

There are 4 open security issues in wheezy.

4 issues skipped by the security teams:

CVE-2016-4356: The append_utf8_value function in the DN decoder (dn.c) in Libksba before 1.3.3 allows remote attackers to cause a denial of service (out-of-bounds read) by clearing the high bit of the byte after invalid utf-8 encoded data.
CVE-2016-4354: ber-decoder.c in Libksba before 1.3.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.
CVE-2016-4355: Multiple integer overflows in ber-decoder.c in Libksba before 1.3.3 allow remote attackers to cause a denial of service (crash) via crafted BER data, which leads to a buffer overflow.
CVE-2016-4353: ber-decoder.c in Libksba before 1.3.3 does not properly handle decoder stack overflows, which allows remote attackers to cause a denial of service (abort) via crafted BER data.

Please fix them.

Created: 2015-07-12 Last update: 2017-08-11 01:20

Build log checks report 2 warnings

low

Build log checks report 2 warnings

Created: 2014-07-02 Last update: 2015-08-27 13:03

news

[2017-02-06] Accepted libksba 1.3.5-2~bpo8+1 (source amd64) into jessie-backports, jessie-backports (Luca Capello)
[2016-09-09] libksba 1.3.5-2 MIGRATED to testing (Debian testing watch)
[2016-09-03] Accepted libksba 1.3.5-2 (source) into unstable (Andreas Metzler)
[2016-08-27] Accepted libksba 1.3.5-1 (source) into experimental (Andreas Metzler)
[2016-08-12] libksba 1.3.4-4 MIGRATED to testing (Debian testing watch)
[2016-08-06] Accepted libksba 1.3.4-4 (source) into unstable (Andreas Metzler)
[2016-05-25] Accepted libksba 1.3.2-1+deb8u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2016-05-14] libksba 1.3.4-3 MIGRATED to testing (Debian testing watch)
[2016-05-13] Accepted libksba 1.2.0-2+deb7u2 (source amd64) into oldstable (signed by: Chris Lamb)
[2016-05-08] Accepted libksba 1.3.4-3 (source) into unstable (Andreas Metzler)
[2016-05-04] Accepted libksba 1.3.4-2 (source) into experimental (Andreas Metzler)
[2016-05-03] Accepted libksba 1.3.4-1 (source) into experimental (Andreas Metzler)
[2016-03-03] libksba 1.3.3-3 MIGRATED to testing (Debian testing watch)
[2016-02-27] Accepted libksba 1.3.3-3 (source) into unstable (Andreas Metzler)
[2016-02-23] Accepted libksba 1.3.3-2 (source amd64 all) into experimental, experimental (Andreas Metzler)
[2015-05-03] libksba 1.3.3-1 MIGRATED to testing (Britney)
[2015-04-30] Accepted libksba 1.3.3-1 (source i386) into unstable (Andreas Metzler)
[2015-01-28] Accepted libksba 1.0.7-2+deb6u1 (source amd64) into squeeze-lts (Holger Levsen)
[2014-11-30] Accepted libksba 1.2.0-2+deb7u1 (source amd64) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2014-11-28] libksba 1.3.2-1 MIGRATED to testing (Britney)
[2014-11-25] Accepted libksba 1.3.2-1 (source i386) into unstable (Andreas Metzler)
[2014-10-02] libksba 1.3.1-1 MIGRATED to testing (Britney)
[2014-09-26] Accepted libksba 1.3.1-1 (source i386) into unstable (Andreas Metzler)
[2013-12-29] libksba 1.3.0-3 MIGRATED to testing (Debian testing watch)
[2013-12-23] Accepted libksba 1.3.0-3 (source i386) (Andreas Metzler)
[2013-05-22] libksba 1.3.0-2 MIGRATED to testing (Debian testing watch)
[2013-05-11] Accepted libksba 1.3.0-2 (source i386) (Andreas Metzler)
[2012-09-29] Accepted libksba 1.3.0-1 (source i386) (Andreas Metzler)
[2011-06-30] libksba 1.2.0-2 MIGRATED to testing (Debian testing watch)
[2011-06-19] Accepted libksba 1.2.0-2 (source i386) (Andreas Metzler)

1
2

links

homepage
lintian (2, 2)
buildd: logs, checks, clang, reproducibility
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.3.5-2
2 bugs

Debian Package Tracker — Copyright 2013-2016 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Git Repository — How to contribute