Register | Log in

nghttp2

server, proxy and client implementing HTTP/2

Choose email to subscribe with

general

source: nghttp2 (main)
version: 1.32.0-1
maintainer: Tomasz Buchert [DMD]
uploaders: Ondřej Surý [DMD]
arch: all any
std-ver: 4.1.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 0.6.4-2~bpo70+1
oldstable: 0.6.4-2
stable: 1.18.1-1
testing: 1.32.0-1
unstable: 1.32.0-1

versioned links

0.6.4-2~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.6.4-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.18.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.19.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.32.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libnghttp2-14
libnghttp2-dev
libnghttp2-doc
nghttp2
nghttp2-client
nghttp2-proxy
nghttp2-server

action needed

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

nghttp2 could be marked Multi-Arch: foreign
libnghttp2-dev could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2018-06-22 14:08

lintian reports 5 warnings normal

Lintian reports 5 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-05-21 Last update: 2018-05-21 07:48

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-1000168: nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerability appears to have been fixed in >= 1.31.1.

Please fix it.

Created: 2018-04-12 Last update: 2018-06-14 08:07

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2016-1544:

Please fix it.

Created: 2016-02-14 Last update: 2018-06-14 08:07

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.4 instead of 4.1.2).

Created: 2017-08-24 Last update: 2018-05-19 19:32

testing migrations

This package will soon be part of the auto-jemalloc transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[2018-05-22] nghttp2 1.32.0-1 MIGRATED to testing (Debian testing watch)
[2018-05-19] Accepted nghttp2 1.32.0-1 (source) into unstable (Tomasz Buchert)
[2018-04-27] nghttp2 1.31.1-1 MIGRATED to testing (Debian testing watch)
[2018-04-21] Accepted nghttp2 1.31.1-1 (source) into unstable (Tomasz Buchert)
[2018-03-11] nghttp2 1.31.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-05] Accepted nghttp2 1.31.0-1 (source) into unstable (Tomasz Buchert)
[2018-02-17] nghttp2 1.30.0-1 MIGRATED to testing (Debian testing watch)
[2018-02-12] Accepted nghttp2 1.30.0-1 (source) into unstable (Tomasz Buchert)
[2018-01-07] nghttp2 1.29.0-1 MIGRATED to testing (Debian testing watch)
[2018-01-02] Accepted nghttp2 1.29.0-1 (source) into unstable (Tomasz Buchert)
[2017-12-08] nghttp2 1.28.0-1 MIGRATED to testing (Debian testing watch)
[2017-12-03] Accepted nghttp2 1.28.0-1 (source) into unstable (Tomasz Buchert)
[2017-11-02] nghttp2 1.27.0-1 MIGRATED to testing (Debian testing watch)
[2017-10-27] Accepted nghttp2 1.27.0-1 (source) into unstable (Tomasz Buchert)
[2017-09-26] nghttp2 1.26.0-1 MIGRATED to testing (Debian testing watch)
[2017-09-21] Accepted nghttp2 1.26.0-1 (source) into unstable (Tomasz Buchert)
[2017-08-29] nghttp2 1.25.0-1 MIGRATED to testing (Debian testing watch)
[2017-08-23] Accepted nghttp2 1.25.0-1 (source) into unstable (Tomasz Buchert)
[2017-07-11] nghttp2 1.24.0-1 MIGRATED to testing (Debian testing watch)
[2017-07-06] Accepted nghttp2 1.24.0-1 (source) into unstable (Tomasz Buchert)
[2017-06-20] nghttp2 1.23.1-1 MIGRATED to testing (Debian testing watch)
[2017-06-03] Accepted nghttp2 1.23.1-1 (source) into unstable (Tomasz Buchert)
[2017-05-30] Accepted nghttp2 1.23.0-1 (source) into unstable (Tomasz Buchert)
[2017-05-01] Accepted nghttp2 1.22.0-1 (source) into unstable (Tomasz Buchert)
[2017-04-14] Accepted nghttp2 1.21.1-1 (source) into unstable (Tomasz Buchert)
[2017-04-02] Accepted nghttp2 1.21.0-1 (source) into unstable (Tomasz Buchert)
[2017-03-19] Accepted nghttp2 1.20.0-1 (source) into unstable (Tomasz Buchert)
[2017-02-04] Accepted nghttp2 1.19.0-2 (source) into unstable (Tomasz Buchert)
[2017-01-30] Accepted nghttp2 1.19.0-1 (source) into unstable (Tomasz Buchert)
[2017-01-30] nghttp2 1.18.1-1 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0

links

homepage
lintian (0, 5)
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.30.0-1ubuntu1
patches for 1.30.0-1ubuntu1

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing