Debian Package Tracker

general

source: nghttp2 (main)
version: 1.41.0-2
maintainer: Tomasz Buchert (DMD)
uploaders: Ondřej Surý [DMD]
arch: all any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.6.4-2
oldstable: 1.18.1-1+deb9u1
old-sec: 1.18.1-1+deb9u1
stable: 1.36.0-2+deb10u1
stable-sec: 1.36.0-2+deb10u1
testing: 1.41.0-2
unstable: 1.41.0-2

versioned links

0.6.4-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.18.1-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.36.0-2+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.41.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libnghttp2-14
libnghttp2-dev (1 bugs: 0, 0, 1, 0)
libnghttp2-doc
nghttp2
nghttp2-client
nghttp2-proxy
nghttp2-server

action needed

Multiarch hinter reports 2 issue(s) normal

There are issues with the multiarch metadata for this package.

nghttp2 could be marked Multi-Arch: foreign
libnghttp2-dev could be marked Multi-Arch: same

Created: 2016-09-14 Last update: 2020-08-09 11:58

3 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 13af120f53f575f3086f530e18ed1177ce795929
Merge: 120f5793 78aa64b0
Author: Tomasz Buchert <tomasz@debian.org>
Date:   Thu Jun 4 08:21:35 2020 +0200

    Merge remote-tracking branch 'origin/master'

commit 78aa64b0b850469e7deede4f9f332ffa09053558
Author: Jérémy Lal <kapouer@melix.org>
Date:   Thu Jun 4 08:16:28 2020 +0200

    Update changelog

commit fe811f37f3f31288503506fc050e1be45cc741da
Author: Jérémy Lal <kapouer@melix.org>
Date:   Thu Jun 4 08:15:48 2020 +0200

    not-installed with wildcard arch

Created: 2020-06-04 Last update: 2020-08-03 13:05

lintian reports 3 warnings normal

Lintian reports 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-07-29 12:33

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-1000168: nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerability appears to have been fixed in >= 1.31.1.

Please fix it.

Created: 2018-04-12 Last update: 2020-08-07 06:08

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2020-06-06] nghttp2 1.41.0-2 MIGRATED to testing (Debian testing watch)
[2020-06-04] Accepted nghttp2 1.41.0-2 (source) into unstable (Tomasz Buchert)
[2020-06-03] Accepted nghttp2 1.41.0-1 (source) into unstable (Tomasz Buchert)
[2019-11-25] nghttp2 1.40.0-1 MIGRATED to testing (Debian testing watch)
[2019-11-23] Accepted nghttp2 1.40.0-1 (source) into unstable (Tomasz Buchert)
[2019-09-07] Accepted nghttp2 1.18.1-1+deb9u1 (source amd64 all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Tomasz Buchert)
[2019-09-07] Accepted nghttp2 1.36.0-2+deb10u1 (source amd64 all) into proposed-updates->stable-new, proposed-updates (Tomasz Buchert)
[2019-09-01] Accepted nghttp2 1.18.1-1+deb9u1 (source amd64 all) into oldstable->embargoed, oldstable (Tomasz Buchert)
[2019-09-01] Accepted nghttp2 1.36.0-2+deb10u1 (source amd64 all) into stable->embargoed, stable (Tomasz Buchert)
[2019-08-18] nghttp2 1.39.2-1 MIGRATED to testing (Debian testing watch)
[2019-08-15] Accepted nghttp2 1.39.2-1 (source) into unstable (Tomasz Buchert)
[2019-07-09] nghttp2 1.37.0-1 MIGRATED to testing (Debian testing watch)
[2019-06-22] Accepted nghttp2 1.39.1-1 (source) into experimental (Tomasz Buchert)
[2019-05-05] Accepted nghttp2 1.38.0-1 (source) into experimental (Tomasz Buchert)
[2019-03-17] Accepted nghttp2 1.37.0-1 (source) into unstable (Tomasz Buchert)
[2019-02-06] nghttp2 1.36.0-2 MIGRATED to testing (Debian testing watch)
[2019-02-03] Accepted nghttp2 1.36.0-2 (source) into unstable (Tomasz Buchert)
[2019-01-26] nghttp2 1.36.0-1 MIGRATED to testing (Debian testing watch)
[2019-01-23] Accepted nghttp2 1.36.0-1 (source) into unstable (Tomasz Buchert)
[2018-12-17] nghttp2 1.35.1-1 MIGRATED to testing (Debian testing watch)
[2018-12-15] Accepted nghttp2 1.35.1-1 (source) into unstable (Tomasz Buchert)
[2018-11-26] Accepted nghttp2 1.35.0-1 (source) into unstable (Tomasz Buchert)
[2018-10-28] nghttp2 1.34.0-1 MIGRATED to testing (Debian testing watch)
[2018-10-11] Accepted nghttp2 1.34.0-1 (source) into unstable (Tomasz Buchert)
[2018-09-06] Accepted nghttp2 1.33.0-1 (source) into unstable (Tomasz Buchert)
[2018-09-01] Accepted nghttp2 1.32.1-1 (source) into unstable (Tomasz Buchert)
[2018-05-22] nghttp2 1.32.0-1 MIGRATED to testing (Debian testing watch)
[2018-05-19] Accepted nghttp2 1.32.0-1 (source) into unstable (Tomasz Buchert)
[2018-04-27] nghttp2 1.31.1-1 MIGRATED to testing (Debian testing watch)
[2018-04-21] Accepted nghttp2 1.31.1-1 (source) into unstable (Tomasz Buchert)

bugs [bug history graph]

all: 2
RC: 0
I&N: 1
M&W: 1
F&P: 0
patch: 0

links

homepage
lintian (0, 3)
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.41.0-2