Debian Package Tracker

general

source: lxml (main)
version: 4.4.1-1
maintainer: Matthias Klose (DMD)
arch: all any
std-ver: 4.4.0
VCS: unknown

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 3.4.0-1
o-o-sec: 3.4.0-1+deb8u1
oldstable: 3.7.1-1
old-bpo: 4.2.5-1~bpo9+1
stable: 4.3.2-1
testing: 4.4.1-1
unstable: 4.4.1-1

versioned links

3.4.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.4.0-1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
3.7.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.2.5-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.3.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.4.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-lxml (4 bugs: 0, 3, 1, 0)
python-lxml-dbg
python-lxml-doc
python3-lxml (1 bugs: 0, 1, 0, 0)
python3-lxml-dbg

action needed

A new upstream version is available: 4.4.2 high

A new upstream version 4.4.2 is available, you should consider packaging it.

Created: 2019-11-29 Last update: 2019-12-10 13:49

lintian reports 1 error and 1 warning high

Lintian reports 1 error and 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2019-08-21 Last update: 2019-11-20 00:19

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-12-10 17:33

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-19787: An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by "j a v a s c r i p t:" in Internet Explorer. This is a similar issue to CVE-2014-3146.

Please fix it.

Created: 2018-12-01 Last update: 2019-10-21 00:30

Build log checks report 2 warnings low

Build log checks report 2 warnings

Created: 2017-10-26 Last update: 2018-06-30 18:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 4.4.0).

Created: 2019-09-29 Last update: 2019-09-29 23:40

testing migrations

This package is part of the ongoing testing transition known as python3.8. Please avoid uploads unrelated to this transition, they would likely delay it and require supplementary work from the release managers. On the other hand, if your package has problems preventing it to migrate to testing, please fix them as soon as possible. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2019-10-05] lxml 4.4.1-1 MIGRATED to testing (Debian testing watch)
[2019-08-17] Accepted lxml 4.4.1-1 (source) into unstable (Matthias Klose)
[2019-07-09] lxml 4.3.3-2 MIGRATED to testing (Debian testing watch)
[2019-05-22] Accepted lxml 4.3.3-2 (source) into unstable (Matthias Klose)
[2019-04-10] Accepted lxml 4.3.3-1 (source) into unstable (Matthias Klose)
[2019-03-18] lxml 4.3.2-1 MIGRATED to testing (Debian testing watch)
[2019-03-05] Accepted lxml 4.3.2-1 (source) into unstable (Matthias Klose)
[2019-03-03] lxml 4.3.1-1 MIGRATED to testing (Debian testing watch)
[2019-02-20] Accepted lxml 4.3.1-1 (source) into unstable (Matthias Klose)
[2019-01-23] lxml 4.3.0-1 MIGRATED to testing (Debian testing watch)
[2019-01-23] lxml 4.3.0-1 MIGRATED to testing (Debian testing watch)
[2019-01-18] Accepted lxml 4.3.0-1 (source) into unstable (Matthias Klose)
[2018-12-10] Accepted lxml 3.4.0-1+deb8u1 (source all amd64) into oldstable (Chris Lamb)
[2018-12-01] Accepted lxml 4.2.5-1~bpo9+1 (source) into stretch-backports (Nicholas D Steeves) (signed by: Adam Borowski)
[2018-09-23] lxml 4.2.5-1 MIGRATED to testing (Debian testing watch)
[2018-09-17] Accepted lxml 4.2.5-1 (source) into unstable (Matthias Klose)
[2018-08-26] lxml 4.2.4-1 MIGRATED to testing (Debian testing watch)
[2018-08-20] Accepted lxml 4.2.4-1 (source) into unstable (Matthias Klose)
[2018-07-16] lxml 4.2.3-1 MIGRATED to testing (Debian testing watch)
[2018-07-11] Accepted lxml 4.2.3-1 (source) into unstable (Matthias Klose)
[2018-07-02] Accepted lxml 4.2.1-1~bpo9+1 (source amd64 all) into stretch-backports, stretch-backports (Nicholas D Steeves) (signed by: Chris Lamb)
[2018-04-07] lxml 4.2.1-1 MIGRATED to testing (Debian testing watch)
[2018-04-02] Accepted lxml 4.2.1-1 (source) into unstable (Matthias Klose)
[2018-03-22] lxml 4.2.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-16] Accepted lxml 4.2.0-1 (source) into unstable (Matthias Klose)
[2017-11-06] lxml 4.1.0-1 MIGRATED to testing (Debian testing watch)
[2017-11-01] Accepted lxml 4.1.0-1 (source) into unstable (Matthias Klose)
[2017-09-29] lxml 4.0.0-1 MIGRATED to testing (Debian testing watch)
[2017-09-23] Accepted lxml 4.0.0-1 (source) into unstable (Matthias Klose)
[2017-09-06] lxml 3.8.0-2 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 7
RC: 0
I&N: 5
M&W: 2
F&P: 0
patch: 1

links

homepage
lintian (1, 1)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 4.4.1-1build1
9 bugs